Network Lead

Role Overview

We are seeking a highly experienced and self-driven Senior Network Engineer to lead the design, implementation, and optimization of enterprise-level network infrastructure. The ideal candidate should possess deep hands-on expertise in Cisco Routing & Switching, Firewalls, Cisco SD-WAN, Cisco DNA Center (DNAC), and Wireless LAN Controllers (WLCs). This role demands a proactive approach to network performance, security, and scalability across large and complex environments.

Key Responsibilities

- Design and deploy robust network architecture using Cisco routing, switching, and wireless technologies. - Lead the configuration, troubleshooting, and optimization of Cisco routers and switches (OSPF, BGP, EIGRP, HSRP, QoS). - Plan, implement, and manage Cisco SD-WAN solutions (vManage, vSmart, vBond) for secure and scalable WAN connectivity. - Operate and maintain Cisco DNA Center (DNAC) for network automation, assurance, telemetry, and Software-Defined Access (SD-Access). - Manage and troubleshoot Wireless LAN Controllers (WLCs) and associated Access Points (APs), ensuring optimal wireless performance. - Administer and secure perimeter and internal network using Cisco ASA / Firepower NGFW (ACLs, NAT, VPN, IPS/IDS). - Lead incident response, root cause analysis (RCA), and implement permanent corrective actions. - Collaborate with security, cloud, and server teams for integrated IT infrastructure deployments. - Create and maintain high-quality network documentation including topologies, IP schemas, and SOPs. - Stay updated with the latest in Cisco technologies and recommend best practices for continuous improvement.

Required Technical Skills

- Cisco Routing & Switching: Deep understanding and hands-on experience with Layer 2/3 protocols (VLANs, STP, HSRP, VRRP, OSPF, BGP, etc.) - Cisco SD-WAN: Deployment, management, policy configuration, and monitoring via vManage. - Cisco DNAC: Experience with automation templates, device provisioning, assurance, and analytics. - Wireless Technologies: Strong experience with Cisco WLCs (e.g., 9800 series), RF tuning, SSID provisioning, and wireless security. - Firewalls: Proficiency in Cisco Firepower / ASA with experience in NAT, site-to-site VPNs, remote access VPNs, and firewall rule management. - Monitoring & Tools: Experience with SNMP, NetFlow, Syslog analysis, tools like SolarWinds, PRTG, or Cisco Prime Infrastructure. - Familiarity with network segmentation, zero-trust principles, and network access control (NAC) solutions.

Soft Skills & Expectations

- Strong analytical and troubleshooting skills in complex environments. - Ability to lead projects independently and mentor junior team members. - Effective communicator – able to convey technical information clearly to both technical and non-technical stakeholders. - Proficient in documentation, change management, and risk assessment. - Comfortable working in 24x7 mission-critical environments (with possible on-call support).

Education & Certifications

- Bachelor’s degree in Computer Science, Information Technology, or a related field. - Mandatory Certifications: CCNP Enterprise or equivalent. - Preferred Certifications: CCNP Security, Cisco SD-WAN Specialist, Cisco Certified DevNet Associate/Professional, or progress toward CCIE.

Nice to Have

- Experience with Cisco ISE and integration with DNAC for access policy enforcement. - Exposure to cloud networking (AWS, Azure) and hybrid network models. - Knowledge of scripting (Python), REST APIs, or automation tools (Ansible, Terraform) for network automation.