Vesta

Senior Network Engineer

Vesta

full-time

Posted on:

Location Type: Remote

Location: United States

Visit company website

Explore more

AI Apply
Apply

Job Level

Senior

Tech Stack

AWSAzureCloudDNSiOSSwitchingTCP/IP

About the role

  • Design, implement, and maintain scalable, secure network infrastructure across data centers, remote sites, and cloud environments (AWS and Azure).
  • Architect and operate routing and switching infrastructure including BGP, NAT, VLANs, Spanning Tree, IPsec VPNs, PBR, and HSRP.
  • Manage and tune enterprise firewall platforms (Cisco, pfSense, Check Point) in alignment with PCI DSS segmentation and access control requirements.
  • Administer and optimize F5 BIG-IP LTM/GTM for application delivery, load balancing, and traffic steering across production environments.
  • Manage Cloudflare DNS, WAF, and network security policies for internet-facing properties.
  • Maintain network security policy management via FireMon; contribute to access path analysis and rule lifecycle management.
  • Evaluate, deploy, and operationalize free open-source software (FOSS) as replacements for commercial products where appropriate (e.g., network monitoring, IPAM, configuration backup).
  • Manage Proxmox-based virtualization as it relates to network-adjacent workloads and VM/LXC networking.
  • Coordinate with vendors and carriers to manage WAN circuits, resolve outages, and drive cost optimization.
  • Maintain comprehensive documentation for network topology, configurations, and operational runbooks; support PCI DSS and SOC 1 Type 2 audit evidence collection.
  • Participate in on-call rotation and be available for after-hours work including unscheduled incidents.
  • Travel to domestic data center and office locations as needed to support deployments or incidents.

Requirements

  • 10+ years of hands-on enterprise networking experience in large-scale, multi-site environments.
  • Expert-level Cisco routing and switching: IOS/NX-OS, BGP, OSPF, EIGRP, VLANs, STP.
  • Enterprise firewall administration: Cisco ASA/FTD, pfSense, and Check Point — rule management, segmentation strategy, and change control.
  • F5 BIG-IP LTM/GTM: virtual servers, pools, iRules, traffic policies, GTM topology records.
  • Cloudflare: DNS management, WAF rulesets, and security policy administration.
  • FireMon: policy analysis, rule review workflows, access path validation.
  • Deep understanding of TCP/IP, DNS, DHCP, routing/switching protocols, and secure remote access.
  • Experience operating in PCI DSS-compliant environments including control implementation and audit evidence collection.
  • Strong troubleshooting capabilities with the ability to resolve complex outages under time pressure.
  • Bachelor's degree in Information Technology, Computer Science, or a related field, or equivalent professional experience.
Benefits
  • Health Insurance
  • Paid Time Off
  • Flexible Work Arrangements
  • Professional Development Opportunities
  • Remote Work Options
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools
network infrastructure designrouting and switchingBGPNATVLANsIPsec VPNsfirewall administrationF5 BIG-IP LTM/GTMTCP/IPDNS
Soft Skills
troubleshootingcommunicationvendor managementdocumentationteam collaborationtime managementproblem-solvingadaptabilityattention to detailorganizational skills
Certifications
Bachelor's degree in Information TechnologyBachelor's degree in Computer SciencePCI DSS compliance certificationCisco certification