Senior Network Engineer (Hands-On Technical Lead) at Rocket EMS
Santa Clara,CAFull-timeIT & CyberPosted about 1 month ago
Apply with PipelineAbout the Role
<h1 data-section-id="1q27xzj" data-start="539" data-end="590">Senior Network Engineer (Hands-On Technical Lead)</h1>
<p data-start="592" data-end="686"><strong data-start="592" data-end="605">Location:</strong> Santa Clara, CA (Onsite)<br data-start="630" data-end="633"><strong data-start="633" data-end="644">Travel:</strong> Occasional travel to remote company sites</p>
<h2 data-section-id="199339u" data-start="688" data-end="704">Role Overview</h2>
<p data-start="706" data-end="915">We are seeking a <strong data-start="723" data-end="776">Senior Network Engineer (Hands-On Technical Lead)</strong> to own and operate our enterprise network infrastructure across corporate offices, manufacturing facilities, and Azure cloud environments.</p>
<p data-start="917" data-end="1260">This role is responsible for the <strong data-start="950" data-end="1015">design, implementation, security, and operational reliability</strong> of the company’s network and firewall infrastructure. The position functions as both a <strong data-start="1103" data-end="1154">network architect and senior technical operator</strong>, providing Tier-3 support and ensuring high availability for mission-critical 24/7 manufacturing systems.</p>
<p data-start="1262" data-end="1490">The engineer in this role will work closely with <strong data-start="1311" data-end="1400">Cybersecurity, DevOps, Software Engineering, IAM, Automation, and IT Operations teams</strong> while maintaining strong relationships with vendors, partners, and internal stakeholders.</p>
<p data-start="1492" data-end="1574">This is a <strong data-start="1502" data-end="1543">high-impact technical leadership role</strong> reporting directly to the CIO.</p>
<hr data-start="1576" data-end="1579">
<h1 data-section-id="ls18e3" data-start="1581" data-end="1603">Key Responsibilities</h1>
<h3 data-section-id="r0ayyg" data-start="1605" data-end="1653">Enterprise Network Architecture & Operations</h3>
<ul data-start="1654" data-end="2208">
<li data-section-id="1noc1mu" data-start="1654" data-end="1795">
<p data-start="1656" data-end="1795">Architect, deploy, and support <strong data-start="1687" data-end="1733">Cisco Catalyst 9000 switching environments</strong> including VLANs, L2/L3 routing, LACP, and gateway redundancy.</p>
</li>
<li data-section-id="dz5fsp" data-start="1796" data-end="1917">
<p data-start="1798" data-end="1917">Design and maintain <strong data-start="1818" data-end="1855">enterprise routing infrastructure</strong> including BGP, OSPF, WAN failover, and redundancy strategies.</p>
</li>
<li data-section-id="5jbppg" data-start="1918" data-end="2025">
<p data-start="1920" data-end="2025">Manage enterprise <strong data-start="1938" data-end="2024">IP addressing standards, subnet allocation, NAT policies, and network segmentation</strong>.</p>
</li>
<li data-section-id="1euj57u" data-start="2026" data-end="2134">
<p data-start="2028" data-end="2134">Maintain and operate <strong data-start="2049" data-end="2084">air-gapped network environments</strong> requiring strict isolation and security controls.</p>
</li>
<li data-section-id="gju9hi" data-start="2135" data-end="2208">
<p data-start="2137" data-end="2208">Design and manage <strong data-start="2155" data-end="2207">DMZ architectures and partner network interfaces</strong>.</p>
</li>
</ul>
<h3 data-section-id="16fke7" data-start="2210" data-end="2248">Firewall & Security Infrastructure</h3>
<ul data-start="2249" data-end="2600">
<li data-section-id="4uwadm" data-start="2249" data-end="2408">
<p data-start="2251" data-end="2408">Engineer and maintain <strong data-start="2273" data-end="2321">Palo Alto next-generation firewall platforms</strong> including App-ID, User-ID, Content-ID, IPS/IDS, SSL decryption, and threat prevention.</p>
</li>
<li data-section-id="1ay30ao" data-start="2409" data-end="2516">
<p data-start="2411" data-end="2516">Manage <strong data-start="2418" data-end="2515">site-to-site VPNs, remote access VPN (GlobalProtect), and high-availability firewall clusters</strong>.</p>
</li>
<li data-section-id="b4efkw" data-start="2517" data-end="2600">
<p data-start="2519" data-end="2600">Support <strong data-start="2527" data-end="2556">Zero Trust network models</strong> including Zscaler ZIA and ZPA environments.</p>
</li>
</ul>
<h3 data-section-id="ja79h6" data-start="2602" data-end="2637">Azure Cloud & Hybrid Networking</h3>
<ul data-start="2638" data-end="3041">
<li data-section-id="1ufdju8" data-start="2638" data-end="2817">
<p data-start="2640" data-end="2708">Design and operate <strong data-start="2659" data-end="2697">Azure hybrid network architectures</strong> including:</p>
<ul data-start="2711" data-end="2817">
<li data-section-id="ff9by6" data-start="2711" data-end="2731">
<p data-start="2713" data-end="2731">Virtual WAN (vWAN)</p>
</li>
<li data-section-id="dydahf" data-start="2734" data-end="2758">
<p data-start="2736" data-end="2758">Hub-and-spoke networks</p>
</li>
<li data-section-id="17obqem" data-start="2761" data-end="2788">
<p data-start="2763" data-end="2788">ExpressRoute connectivity</p>
</li>
<li data-section-id="1wddtqs" data-start="2791" data-end="2817">
<p data-start="2793" data-end="2817">VNet peering and routing</p>
</li>
</ul>
</li>
<li data-section-id="23tsrm" data-start="2818" data-end="2950">
<p data-start="2820" data-end="2841">Configure and manage:</p>
<ul data-start="2844" data-end="2950">
<li data-section-id="19ydepr" data-start="2844" data-end="2860">
<p data-start="2846" data-end="2860">Azure Firewall</p>
</li>
<li data-section-id="622d8b" data-start="2863" data-end="2890">
<p data-start="2865" data-end="2890">Application Gateway (WAF)</p>
</li>
<li data-section-id="1gofpt2" data-start="2893" data-end="2911">
<p data-start="2895" data-end="2911">Azure Front Door</p>
</li>
<li data-section-id="zzcyi1" data-start="2914" data-end="2930">
<p data-start="2916" data-end="2930">Load Balancers</p>
</li>
<li data-section-id="crsw46" data-start="2933" data-end="2950">
<p data-start="2935" data-end="2950">Traffic Manager</p>
</li>
</ul>
</li>
<li data-section-id="bcfrke" data-start="2951" data-end="3041">
<p data-start="2953" data-end="3041">Implement network segmentation using <strong data-start="2990" data-end="3040">NSGs, ASGs, Private Endpoints, and Private DNS</strong>.</p>
</li>
</ul>
<h3 data-section-id="pf34s9" data-start="3043" data-end="3081">Infrastructure as Code (Terraform)</h3>
<ul data-start="3082" data-end="3303">
<li data-section-id="jodmhi" data-start="3082" data-end="3158">
<p data-start="3084" data-end="3158">Build and maintain <strong data-start="3103" data-end="3124">Terraform modules</strong> for Azure network infrastructure.</p>
</li>
<li data-section-id="1fhx8xy" data-start="3159" data-end="3233">
<p data-start="3161" data-end="3233">Manage <strong data-start="3168" data-end="3232">Terraform state, environments, and version control workflows</strong>.</p>
</li>
<li data-section-id="pmworr" data-start="3234" data-end="3303">
<p data-start="3236" data-end="3303">Enforce <strong data-start="3244" data-end="3302">Azure governance policies and configuration compliance</strong>.</p>
</li>
</ul>
<h3 data-section-id="pecocp" data-start="3305" data-end="3342">Network Support & Troubleshooting</h3>
<ul data-start="3343" data-end="3746">
<li data-section-id="c5llox" data-start="3343" data-end="3472">
<p data-start="3345" data-end="3472">Provide <strong data-start="3353" data-end="3382">Tier-3 escalation support</strong> for network incidents across switching, routing, firewall, WAN, and cloud infrastructure.</p>
</li>
<li data-section-id="36y6n4" data-start="3473" data-end="3571">
<p data-start="3475" data-end="3571">Perform <strong data-start="3483" data-end="3570">packet captures, log analysis, traffic flow analysis, and root cause investigations</strong>.</p>
</li>
<li data-section-id="1eg646t" data-start="3572" data-end="3655">
<p data-start="3574" data-end="3655">Lead incident resolution and produce <strong data-start="3611" data-end="3654">Root Cause Analysis (RCA) documentation</strong>.</p>
</li>
<li data-section-id="vhsj2q" data-start="3656" data-end="3746">
<p data-start="3658" data-end="3746">Maintain service levels and operational stability for <strong data-start="3712" data-end="3745">24/7 manufacturing operations</strong>.</p>
</li>
</ul>
<h3 data-section-id="9fp0cj" data-start="3748" data-end="3801">Infrastructure Deployment & Facilities Networking</h3>
<ul data-start="3802" data-end="4067">
<li data-section-id="1ge9num" data-start="3802" data-end="3882">
<p data-start="3804" data-end="3882">Own <strong data-start="3808" data-end="3881">IDF/MDF design, rack layout, cabling strategy, and patching standards</strong>.</p>
</li>
<li data-section-id="o3ufia" data-start="3883" data-end="3984">
<p data-start="3885" data-end="3984">Coordinate with <strong data-start="3901" data-end="3949">ISPs, cabling vendors, and field technicians</strong> during installations and upgrades.</p>
</li>
<li data-section-id="ne00ef" data-start="3985" data-end="4067">
<p data-start="3987" data-end="4067">Support infrastructure upgrades, site buildouts, and network expansion projects.</p>
</li>
</ul>
<h3 data-section-id="412f5o" data-start="4069" data-end="4099">Documentation & Governance</h3>
<ul data-start="4100" data-end="4420">
<li data-section-id="1908etd" data-start="4100" data-end="4233">
<p data-start="4102" data-end="4144">Maintain detailed documentation including:</p>
<ul data-start="4147" data-end="4233">
<li data-section-id="1ak9qs0" data-start="4147" data-end="4165">
<p data-start="4149" data-end="4165">Network diagrams</p>
</li>
<li data-section-id="1s03zgl" data-start="4168" data-end="4188">
<p data-start="4170" data-end="4188">IP address schemas</p>
</li>
<li data-section-id="10bptyf" data-start="4191" data-end="4208">
<p data-start="4193" data-end="4208">Rack elevations</p>
</li>
<li data-section-id="1tt7z43" data-start="4211" data-end="4233">
<p data-start="4213" data-end="4233">Operational runbooks</p>
</li>
</ul>
</li>
<li data-section-id="ip782j" data-start="4234" data-end="4329">
<p data-start="4236" data-end="4329">Manage <strong data-start="4243" data-end="4301">firmware updates, patch cycles, and lifecycle planning</strong> for network infrastructure.</p>
</li>
<li data-section-id="4f2ft2" data-start="4330" data-end="4420">
<p data-start="4332" data-end="4420">Follow established <strong data-start="4351" data-end="4382">change management processes</strong> and deployment validation procedures.</p>
</li>
</ul>
<hr data-start="4422" data-end="4425">
<h1 data-section-id="6uehu5" data-start="4427" data-end="4452">Required Qualifications</h1>
<ul data-start="4454" data-end="5289">
<li data-section-id="14zb4t3" data-start="4454" data-end="4549">
<p data-start="4456" data-end="4549"><strong data-start="4456" data-end="4511">7+ years of hands-on network engineering experience</strong> supporting enterprise infrastructure.</p>
</li>
<li data-section-id="r8m9xj" data-start="4550" data-end="4626">
<p data-start="4552" data-end="4626">Deep experience with <strong data-start="4573" data-end="4625">Cisco enterprise switching and routing platforms</strong>.</p>
</li>
<li data-section-id="168351k" data-start="4627" data-end="4688">
<p data-start="4629" data-end="4688">Strong operational experience with <strong data-start="4664" data-end="4687">Palo Alto firewalls</strong>.</p>
</li>
<li data-section-id="1jmomw6" data-start="4689" data-end="4771">
<p data-start="4691" data-end="4771">Experience designing and operating <strong data-start="4726" data-end="4770">hybrid cloud networks in Microsoft Azure</strong>.</p>
</li>
<li data-section-id="ufjb8q" data-start="4772" data-end="4851">
<p data-start="4774" data-end="4851">Hands-on experience with <strong data-start="4799" data-end="4850">Terraform or other Infrastructure-as-Code tools</strong>.</p>
</li>
<li data-section-id="syy6j8" data-start="4852" data-end="4952">
<p data-start="4854" data-end="4952">Strong troubleshooting experience across <strong data-start="4895" data-end="4951">routing, switching, firewall, and WAN infrastructure</strong>.</p>
</li>
<li data-section-id="vnqg42" data-start="4953" data-end="5048">
<p data-start="4955" data-end="5048">Experience supporting <strong data-start="4977" data-end="5047">high-availability environments and critical infrastructure systems</strong>.</p>
</li>
<li data-section-id="8jmz6r" data-start="5049" data-end="5166">
<p data-start="5051" data-end="5166">Ability to work onsite and perform <strong data-start="5086" data-end="5165">physical infrastructure tasks (rack/stack, cabling, equipment installation)</strong>.</p>
</li>
<li data-section-id="8kkx42" data-start="5167" data-end="5219">
<p data-start="5169" data-end="5219">Excellent written and verbal communication skills.</p>
</li>
<li data-section-id="tl726v" data-start="5220" data-end="5289">
<p data-start="5222" data-end="5289">Ability to collaborate effectively across multiple technical teams.</p>
</li>
</ul>
<hr data-start="5291" data-end="5294">
<h1 data-section-id="1yqgftt" data-start="5296" data-end="5322">Preferred Qualifications</h1>
<ul data-start="5324" data-end="5610">
<li data-section-id="jwkos4" data-start="5324" data-end="5364">
<p data-start="5326" data-end="5364"><strong data-start="5326" data-end="5364">CCIE, CCNP, or PCNSE certification</strong></p>
</li>
<li data-section-id="fypb76" data-start="5365" data-end="5402">
<p data-start="5367" data-end="5402">Experience with <strong data-start="5383" data-end="5402">Zscaler ZIA/ZPA</strong></p>
</li>
<li data-section-id="d3bqv9" data-start="5403" data-end="5471">
<p data-start="5405" data-end="5471">Experience supporting <strong data-start="5427" data-end="5471">manufacturing or industrial environments</strong></p>
</li>
<li data-section-id="ee73xh" data-start="5472" data-end="5534">
<p data-start="5474" data-end="5534">Familiarity with <strong data-start="5491" data-end="5534">Git-based workflows and CI/CD pipelines</strong></p>
</li>
<li data-section-id="12e5phi" data-start="5535" data-end="5610">
<p data-start="5537" data-end="5610">Experience with <strong data-start="5553" data-end="5610">SolarWinds or enterprise network monitoring platforms</strong></p>
</li>
</ul>
<hr data-start="5612" data-end="5615">
<h1 data-section-id="14xjtr3" data-start="5617" data-end="5640">Physical Requirements</h1>
<ul data-start="5642" data-end="5751">
<li data-section-id="u6osds" data-start="5642" data-end="5686">
<p data-start="5644" data-end="5686">Ability to lift and carry <strong data-start="5670" data-end="5686">up to 50 lbs</strong></p>
</li>
<li data-section-id="84qisp" data-start="5687" data-end="5751">
<p data-start="5689" data-end="5751">Ability to perform <strong data-start="5708" data-end="5751">data center and rack installation tasks</strong></p>
</li>
</ul>
<hr data-start="5753" data-end="5756">
<h1 data-section-id="1nyf2he" data-start="5758" data-end="5794">First 30 Days – Success Indicators</h1>
<p data-start="5796" data-end="5863">Within the first month, the Senior Network Engineer is expected to:</p>
<ul data-start="5865" data-end="6474">
<li data-section-id="qzjudd" data-start="5865" data-end="5960">
<p data-start="5867" data-end="5960">Assess the current <strong data-start="5886" data-end="5921">enterprise network architecture</strong> across on-prem and Azure environments.</p>
</li>
<li data-section-id="1a8uj8" data-start="5961" data-end="6037">
<p data-start="5963" data-end="6037">Review <strong data-start="5970" data-end="6036">WAN routing stability, ISP redundancy, and failover strategies</strong>.</p>
</li>
<li data-section-id="6h7e9r" data-start="6038" data-end="6101">
<p data-start="6040" data-end="6101">Document <strong data-start="6049" data-end="6100">air-gapped networks and segmentation boundaries</strong>.</p>
</li>
<li data-section-id="5xxrgk" data-start="6102" data-end="6178">
<p data-start="6104" data-end="6178">Begin supporting <strong data-start="6121" data-end="6149">Tier-3 network incidents</strong> and operational escalations.</p>
</li>
<li data-section-id="1ng4bhg" data-start="6179" data-end="6271">
<p data-start="6181" data-end="6271">Update <strong data-start="6188" data-end="6270">network diagrams, rack elevations, firewall policies, and operational runbooks</strong>.</p>
</li>
<li data-section-id="1v3tybm" data-start="6272" data-end="6374">
<p data-start="6274" data-end="6374">Establish working relationships with <strong data-start="6311" data-end="6373">Cybersecurity, DevOps, Automation, and IT Operations teams</strong>.</p>
</li>
<li data-section-id="1xqdr68" data-start="6375" data-end="6474">
<p data-start="6377" data-end="6474">Begin planning modernization efforts for <strong data-start="6418" data-end="6473">legacy network segments and firewall infrastructure</strong>.</p>
</li>
</ul>
<p> </p><div class="content-pay-transparency"><div class="pay-input"><div class="title">Pay Range</div><div class="pay-range"><span>$185,000</span><span class="divider">—</span><span>$210,000 USD</span></div></div></div>