Key skills
PythonBashAINode.jsAWSTerraformServerlessLambdaCloudWatchAthenaLoad BalancingNetwork SecurityWAFFirewall
About this role
Quantiphi is an award-winning, AI-First digital engineering and consulting company focused on delivering high-impact Services and Solutions that help organizations solve what truly matters. The Senior Network Engineer will be responsible for designing and implementing secure and scalable cloud network architectures on AWS, alongside managing advanced configurations and network security protocols.
Responsibilities:
- F5 BIG-IP LTM & iRules: Deep expertise in reading, parsing, and reverse-engineering complex TCL-based iRules, virtual servers, and pools
- AWS Load Balancing: Advanced configuration of ALB/NLB, including complex listener rules, target groups, and WAF integration
- AWS Network Firewall: Proven ability to design and implement stateful and stateless rule groups
- Cloud Network Architecture: Hands-on experience in designing and implementing secure and scalable cloud network architectures on AWS, including Inspection VPC patterns using Gateway Load Balancer (GWLB) and Transit Gateway. Strong expertise in establishing hybrid connectivity using Site-to-Site VPN, with a solid understanding of BGP and static routing. Experience with AWS Direct Connect for dedicated network connectivity and configuring private endpoints (AWS PrivateLink) to enable secure, private access to AWS services without traversing the public internet
- Traffic & Security Protocols: Deep understanding of L7 traffic inspection (header manipulation, URI rewriting) and TLS/mTLS certificate management
- Specific Migration Experience: Proven track record of migrating F5 appliances and Fortinet firewalls to AWS-native services
- Scripting & Serverless: Python or Bash scripting for automating F5 config extraction, and AWS Lambda (Python/Node.js) for replacing highly complex iRules
- Infrastructure as Code (IaC): Advanced Terraform skills specifically for developing AWS networking and security modules
- AWS Observability: Experience building reporting parity dashboards using Amazon Athena, CloudWatch Logs Insights, and QuickSight
Requirements:
- F5 BIG-IP LTM & iRules: Deep expertise in reading, parsing, and reverse-engineering complex TCL-based iRules, virtual servers, and pools
- AWS Load Balancing: Advanced configuration of ALB/NLB, including complex listener rules, target groups, and WAF integration
- AWS Network Firewall: Proven ability to design and implement stateful and stateless rule groups
- Cloud Network Architecture: Hands-on experience in designing and implementing secure and scalable cloud network architectures on AWS, including Inspection VPC patterns using Gateway Load Balancer (GWLB) and Transit Gateway. Strong expertise in establishing hybrid connectivity using Site-to-Site VPN, with a solid understanding of BGP and static routing. Experience with AWS Direct Connect for dedicated network connectivity and configuring private endpoints (AWS PrivateLink) to enable secure, private access to AWS services without traversing the public internet
- Traffic & Security Protocols: Deep understanding of L7 traffic inspection (header manipulation, URI rewriting) and TLS/mTLS certificate management
- Specific Migration Experience: Proven track record of migrating F5 appliances and Fortinet firewalls to AWS-native services
- Scripting & Serverless: Python or Bash scripting for automating F5 config extraction, and AWS Lambda (Python/Node.js) for replacing highly complex iRules
- Infrastructure as Code (IaC): Advanced Terraform skills specifically for developing AWS networking and security modules
- AWS Observability: Experience building reporting parity dashboards using Amazon Athena, CloudWatch Logs Insights, and QuickSight
- Certifications: AWS Certified Advanced Networking - Specialty or AWS Certified Security - Specialty