Senior Network Engineer
Location
United States
Posted
1 day ago
Salary
0
Seniority
Senior
Job Description
Senior Network Engineer
LeoLabs, Inc.
Role Description We are hiring a Senior Network Engineer to help design, implement, and operate the company’s next-generation secure network architecture. The Senior Network Engineer will own critical workstreams across: - SASE/ZTNA - NAC - IPSec connectivity - Network segmentation - Cloud network integration - Egress controls - Firewall policy - Telemetry forwarding The ideal candidate has strong hands-on experience securing hybrid environments that span corporate networks, cloud platforms, remote users, physical sites, and sensitive workloads. This role is well suited for an engineer who can operate at both the design and implementation levels: designing secure patterns, building them, validating them, documenting them, and supporting their transition into steady-state operations. Key Responsibilities - Secure Network Architecture and Zero Trust Access: - Design and implement secure network patterns that enforce identity, device posture, segmentation, logging, and policy-based access across users, sites, workloads, and administrative paths. - Implement and support SASE/ZTNA capabilities, including Cloudflare Government or comparable platforms, WARP/client access, private application access, gateway policies, DNS controls, and secure administrative access paths. - Help eliminate direct public administrative access to workloads by routing privileged access through approved identity-aware and policy-enforced access layers. - Develop network designs that support the principle that no workload, management interface, or privileged access path bypasses identity, policy, segmentation, and telemetry controls. - NAC and Physical Site Segmentation: - Lead the design and rollout of Network Access Control for office, edge, and remote site environments. - Implement or support 802.1X, RADIUS policy, device certificates, VLAN segmentation, and port-level admission control. - Segment remote site networks into appropriate zones, such as telemetry, management, vendor/service, and out-of-band management networks. - Assess switch, firewall, router, and edge-device readiness for NAC, IPSec, logging, and configuration baseline enforcement. - Remote Site and Edge Connectivity: - Design secure remote site connectivity using IPSec/private tunnels, certificate-based authentication, route controls, firewall policies, and deterministic telemetry paths. - Ensure edge and radar-site environments have no unnecessary public management exposure. - Implement firewall forwarding, tunnel telemetry, configuration backup, drift detection, and site-level logging into centralized monitoring and SIEM platforms. - Partner with Security, Cloud Engineering, SRE, and other Engineering teams to build detection and response use cases for tunnel anomalies, exposed management paths, unexpected peers, route changes, failed rekeys, and suspicious traffic patterns. - Cloud Network Integration: - Design and support cloud network connectivity patterns across multiple cloud hosts and restricted workload zones. - Implement or support hub-and-spoke architectures, transit gateways, vWAN, private endpoints, DNS resolver patterns, egress inspection, firewall policy, and workload security-group guardrails. - Partner with Cloud Engineering to define baseline network guardrails for landing zones, including deny-public-admin policies, centralized egress, private admin paths, flow logging, routing standards, and tagging requirements. - Support cloud network segmentation for Corporate IT, restricted workloads, and other uses. - Telemetry, Logging, and SOC Enablement: - Ensure network logs are consistently forwarded into centralized telemetry and SOC platforms. - Support data-source onboarding for firewall logs, VPN/IPSec logs, SASE logs, NAC events, DNS logs, VPC/NSG flow logs, and remote site device logs. - Collaborate with the Head of IT and Security team to create network-focused detection content, response workflows, evidence artifacts, and runbooks. - Help validate detection coverage through test events, tabletop exercises, port scans, tunnel checks, and configuration drift reviews. - Operations, Documentation, and Compliance Support: - Create and maintain network diagrams, firewall rule documentation, routing designs, NAC policies, tunnel inventories, access paths, and operational runbooks. - Support compliance evidence generation for government compliance, control areas related to access control, audit logging, communications protection, configuration management, and incident response. - Participate in change control, architecture decision records, incident response, and post-implementation reviews. - Work closely with Security, Cloud Engineering, SRE, IT Support, and other Engineering teams to ensure clean operational handoff. Qualifications - Must be eligible to obtain and maintain a U.S. personnel security clearance. - 5+ years of hands-on network engineering experience in enterprise, hybrid cloud, regulated, or security-focused environments. - Strong experience with routing, switching, firewalling, VPNs, segmentation, DNS, NAT, TLS, certificates, and secure network design. - Hands-on experience with firewall policy management, IPSec tunnels, site-to-site VPNs, route control, and secure edge connectivity. - Experience implementing or operating NAC technologies, including 802.1X, RADIUS, VLAN assignment, device profiling, or certificate-based access. - Experience supporting remote-access or Zero Trust access platforms such as Cloudflare, Zscaler, Palo Alto Prisma Access, Cisco Secure Access, or similar. - Experience integrating network logs into SIEM or monitoring platforms. - Working knowledge of cloud networking concepts in AWS and/or Azure, including VPCs/VNets, routing, security groups, NACLs, private endpoints, flow logs, transit gateways, vWAN, or cloud firewalls. - Ability to write clear technical documentation, diagrams, implementation plans, runbooks, and operational procedures. - Strong troubleshooting skills across network, identity, endpoint, cloud, and application access layers. Preferred Qualifications - Experience with Cloudflare Government, Cloudflare Zero Trust, WARP, Gateway, Access, or Magic WAN. - Experience supporting CUI, ITAR, NIST 800-171, CMMC, FedRAMP, or other regulated environments. - Experience with Microsoft Sentinel, Wiz, Dropzone AI, Splunk, Elastic, QRadar, or other SIEM/SOC platforms. - Experience with infrastructure-as-code or policy-as-code tooling such as Terraform, CloudFormation, Bicep, Ansible, GitHub Actions, GitLab CI, or Azure DevOps. - Experience building detection logic or response workflows for network anomalies, exposed admin services, tunnel failures, vendor access abuse, or cloud network drift. - Experience with vendor-access segmentation, just-in-time access, privileged access management, and session logging. Benefits - Global workforce: flexible remote/hybrid opportunities - Work on complex, meaningful missions with real-world impact - Unlimited paid time off for most roles - Competitive salary and equity packages - Comprehensive health, dental, and vision coverage - Access to the forefront of commercial space operations and defense innovation
Related Guides
Related Categories
Related Job Pages
More Network Engineer Jobs
Network Engineer
GovCIOGovCIO is a service-disabled-veteran-owned small business (SDVOSB) that offers technology services to improve business performance for government organizations.
Role Description GovCIO is seeking a remote Network Engineer with strong Zscaler, Palo Alto Networks firewall, Cisco routing/switching, and McAfee Web Security Proxy experience to design, implement, and maintain secure network architectures and security solutions. This will be fully remote Continental USA. - Design, implement, and operate next-generation firewall and web security proxy solutions, ensuring secure, high-availability network operations across data centers and nationwide field locations. - Design, implement, and maintain Palo Alto Networks next-generation firewall solutions, including security policies, NAT, VPNs, threat prevention, URL filtering, and decryption. - Engineer and support Cisco routing and switching infrastructure across LAN/WAN environments. - Design and maintain secure network architectures incorporating firewalls, web proxies, VPNs, and access control technologies. - Deploy, configure, and support McAfee Web Security Proxy (Web Gateway) to enforce web filtering, malware protection, and acceptable use policies. - Integrate firewall and proxy solutions with authentication systems (Active Directory, LDAP, RADIUS, TACACS+). - Monitor security platforms for threats, performance issues, and policy violations. - Analyze logs and alerts to identify security incidents and implement mitigation strategies. - Perform configuration reviews, rulebase optimization, and security hardening. Qualifications - Bachelor’s degree in Computer Science, Information Technology, Engineering, or equivalent experience. - 12+ years (or commensurate experience). Requirements - Strong Zscaler experience. - 5 years of IT or network security experience. - 3 years of hands-on experience with firewall and security platforms routers and switches. - Strong experience with: - Palo Alto Networks firewalls. - Cisco routers and switches. - McAfee Web Security Proxy / Web Gateway. - In-depth knowledge of: - TCP/IP, routing, and switching. - IPsec and SSL VPNs. - DNS, DHCP, NTP. - ACLs, NAT, QoS. - Experience with authentication and access control technologies: - RADIUS / TACACS+. - Active Directory / LDAP. - 1X. - Must be able to attain and maintain an AOUSC Public Trust clearance. Competencies and traits - Strategic thinker with practical hands-on implementation experience. - Strong problem-solving, stakeholder management, and facilitation skills. - Ability to work across 24/7 operational teams and influence cross-functional processes. - Detail-oriented with focus on resiliency, security, and automation. Preferred Skills and Experience - Master’s preferred. - TOGAF, AWS/Azure/GCP Cloud Architect, CCNP/CCIE, CISSP, or equivalent. Posted Salary Range USD $150,000.00 - USD $170,000.00 /Yr.
Network Engineering, Advisor
Peraton CorporationPeraton Corporation, a national security company headquartered in Herndon, Virginia, supplies solutions for mission-critical programs and systems. Founded in 20
Title: Network Engineering, Advisor Location: Albuquerque United States Requisition ID 2026-168366 Position Category Information Technology Clearance CBOSS Agency Clearance Hybrid Job Description: Responsibilities Peraton delivers mission-critical network infrastructure solutions in support of the Department of Energy (DOE), ensuring the secure, reliable, and high-performance connectivity that underpins DOE''s classified and unclassified operations across the enterprise. As a Senior Network Engineer on the CBOSS 2.0 program, you will serve as a recognized Subject Matter Expert (SME) responsible for the design, deployment, optimization, and sustainment of large-scale network environments supporting DOE mission objectives in Albuquerque, New Mexico. In this role, you will apply deep technical expertise across Juniper and Cisco platforms to solve complex networking challenges, drive continuous improvement, and collaborate with government stakeholders and cross-functional teams to deliver innovative, secure network solutions. Responsibilities Network Engineering & Operations - Work with Juniper Networks and Cisco Systems routers, switches, wireless (a plus), and other networking products within these vendor families. - Analyzes customer requirements and solves unusually complex problems with highly innovative solutions - Provides expert knowledge for maintenance and upgrade of networks including servers, routers, switches, firewalls, remote access systems, and networks - Provides expert knowledge for maintaining network integrity and connectivity while ensuring compliance with policies and maintains system backup and recovery capability Analysis, Problem Solving & Innovation - Analyze complex customer requirements and develop highly innovative solutions to unusually complex networking problems - Designs and builds hardware and software components for computer or telecommunications networks - Evaluates new communications technologies to enhance capabilities of the network - Maintains current knowledge of relevant technology as assigned Procurement & Coordination - Coordinates the acquisition of hardware and software as well as subcontractor services as needed Leadership & Stakeholder Engagement - Consult with DOE leadership, executives, and customers to deliver complex network solutions aligned with mission goals and organizational requirements - Serve as a team or task lead, providing direction and technical oversight on network engineering projects and initiatives - Mentor and provide technical guidance to less-experienced network engineers, fostering knowledge transfer and team capability development Qualifications Education Requirements - Minimum of 8 years with BS/BA; Minimum of 6 years with MS/MA; Minimum of 12 years with High School Diploma. Required Qualifications - U.S. citizenship required - Must have the ability to obtain and maintain a Department of Energy (DOE) Q clearance - Work is on-site with some telework. Must be local (Albuquerque, NM) - On call after-hours rotation for operational support - Strong expertise in Juniper routing, switching, and wireless technologies. - Hands-on experience with Junos OS, BGP, OSPF, MPLS, VLANs, EVPN/VXLAN - Enterprise wireless design and troubleshooting - Proven ability to deploy, optimize, and secure large-scale network environments while collaborating effectively across teams - Recognized as a Subject Matter Expert in network engineering Preferred Qualifications - Advanced certifications (such as JNCIP/JNCIE) - Cisco certifications (CCNP Enterprise, CCIE) or equivalent - Experience supporting network engineering programs at DOE national laboratories or NNSA facilities Peraton Overview Peraton is a next-generation national security company that drives missions of consequence spanning the globe and extending to the farthest reaches of the galaxy. As the world's leading mission capability integrator and transformative enterprise IT provider, we deliver trusted, highly differentiated solutions and technologies to protect our nation and allies. Peraton operates at the critical nexus between traditional and nontraditional threats across all domains: land, sea, space, air, and cyberspace. The company serves as a valued partner to essential government agencies and supports every branch of the U.S. armed forces. Each day, our employees do the can't be done by solving the most daunting challenges facing our customers. Visit peraton.com to learn how we're keeping people around the world safe and secure. Target Salary Range $86,000 - $138,000. This represents the typical salary range for this position. Salary is determined by various factors, including but not limited to, the scope and responsibilities of the position, the individual's experience, education, knowledge, skills, and competencies, as well as geographic location and business and contract considerations. Depending on the position, employees may be eligible for overtime, shift differential, and a discretionary bonus in addition to base pay. EEO EEO: Equal opportunity employer, including disability and protected veterans, or other characteristics protected by law.
Cloud Architect - Network
Koniag Government Services, LLCKoniag Government Services (KGS) is an Alaska Native Owned corporation supporting the values and traditions of our native communities through an agile employee and corporate culture that delivers Enterprise Solutions, Professional Services and Operational Management to Federal Government Agencies.
Role Description Koniag Data Solutions, LLC (KDS) is seeking an experienced Cloud Architect (Network) with an AWS Advanced Networking Specialty to support secure, scalable, and highly available cloud-networking solutions for the Administration for Children and Families (ACF), a U.S. Department of Health and Human Services component. The ideal candidate is a seasoned cloud-networking professional with deep expertise in AWS networking services, hybrid connectivity, Zero Trust architecture, and federal security requirements. The Cloud Architect (Network) will perform a key technical role supporting ACF cloud modernization, cybersecurity, operational resilience, and mission delivery. - Design, implement, and manage advanced AWS networking architectures, including VPCs, Transit Gateways, Direct Connect, VPNs, PrivateLink, Route 53, Elastic Load Balancing, CloudFront, Global Accelerator, and related services. - Develop and maintain network architecture documentation, diagrams, technical standards, and configuration baselines to promote consistency, resilience, and compliance across cloud environments. - Collaborate with security teams to implement network-security controls, including security groups, network ACLs, AWS WAF, AWS Shield, AWS Network Firewall, segmentation, secure ingress and egress, and Zero Trust-aligned controls. - Design and support PKI-enabled application and network capabilities for digital signatures, encryption, identification, authentication, and secure communications. - Plan and document physical and network-access requirements for security testing; define internal and external test-environment connectivity, segmentation, access paths, and safeguards. - Evaluate existing network infrastructure and provide recommendations for optimization, modernization, risk reduction, and migration to AWS cloud environments. - Lead the design and implementation of hybrid cloud-networking solutions that securely connect on-premises data centers and other external environments to AWS. - Work closely with DevOps and engineering teams to integrate network solutions into CI/CD pipelines and IaC frameworks using Terraform, AWS CloudFormation, AWS CDK, or equivalent tools. - Implement and maintain advanced monitoring, detection, and analysis capabilities for cybersecurity threats using network telemetry, VPC Flow Logs, CloudWatch, and other approved tools. - Monitor network performance, troubleshoot complex connectivity and security issues, and implement corrective actions to maintain service availability and reliability. - Participate in Red Team/Blue Team exercises by designing test environments, validating network controls, analyzing results, and implementing approved remediation actions. - Support compliance efforts by ensuring network designs adhere to FedRAMP, NIST SP 800-53, FISMA, and other applicable federal security requirements. - Operate in an Agile delivery environment while satisfying government project requirements, stage gates, and documentation expectations. - Provide technical leadership, mentorship, and guidance to junior cloud and network engineers. - Remain current on emerging AWS networking technologies, services, and industry practices to continually improve cloud-networking capabilities. Qualifications - Bachelor's degree in Computer Science, Information Technology, Network Engineering, or a related field from an accredited college or university. - 7+ years of experience in network engineering or architecture, with at least 4+ years focused on cloud networking in AWS environments. - AWS Certified Advanced Networking - Specialty certification. Requirements - Ability to obtain public trust. Preferred - Master's degree in a related field. - Experience supporting federal government IT programs and projects. Required Skills and Competencies - Exceptional written and oral communication skills in English, with the ability to communicate complex technical concepts to technical and non-technical stakeholders. - Deep expertise in AWS networking services, including VPC, Transit Gateway, Direct Connect, AWS PrivateLink, Route 53, Elastic Load Balancing, CloudFront, and AWS Global Accelerator. - Strong understanding of networking fundamentals, including TCP/IP, DNS, BGP, OSPF, MPLS, SD-WAN, routing, switching, segmentation, and network troubleshooting. - Experience designing and implementing hybrid and multi-cloud network architectures connecting on-premises environments to AWS. - Proficiency with IaC tools such as Terraform, AWS CloudFormation, or AWS CDK for automating network provisioning and configuration. - Experience implementing network-security controls, including AWS Security Groups, Network ACLs, AWS WAF, AWS Shield, AWS Network Firewall, and secure network segmentation. - Knowledge of PKI concepts and application of PKI-supported capabilities for authentication, encryption, identification, and digital signatures. - Experience planning network-access and connectivity requirements for internal and external security-testing environments. - Familiarity with federal security and compliance frameworks, including FedRAMP, NIST SP 800-53, FISMA, and related standards. - Experience with network monitoring, threat analysis, and performance management tools, including AWS CloudWatch, VPC Flow Logs, and third-party monitoring platforms. - Ability to troubleshoot and resolve complex cloud-networking and network-security issues in production environments. - Ability to work collaboratively, provide technical leadership and mentorship, and participate in Agile delivery teams. Desired Skills and Competencies - Experience working in a federal government IT environment. - Additional AWS certifications, such as AWS Certified Solutions Architect - Professional or AWS Certified Security - Specialty. - Experience with multi-cloud networking strategies involving Azure and/or Google Cloud Platform (GCP). - Knowledge of Zero Trust network-architecture principles and implementation. - Experience with container networking in Kubernetes and Amazon EKS environments. - Familiarity with DevSecOps practices and integrating network-security controls into CI/CD pipelines. - Experience with network automation using Python, Ansible, or similar scripting and automation tools. - Experience supporting FedRAMP authorization processes, including preparation of System Security Plans (SSPs) and related documentation. - Experience participating in Red Team/Blue Team exercises or implementing network-control remediation based on exercise findings.
Provider Network Recruiter
LIBERTY DENTAL PLAN CORPORATIONLIBERTY Dental Plan is committed to maintaining a work environment that acknowledges all individuals within the workplace and will continue to engage in practices that are inclusive of all backgrounds, experiences, and perspectives. We strive to have every person within the organization have a sense of belonging while encouraging individuals to unleash their full potential.
Role Description Help Us Build Stronger Provider Networks That Improve Access to Care At Liberty Dental Plan, we're committed to connecting members with quality care through a strong and growing provider network. We're looking for a Provider Network Recruiter who thrives on relationship building, enjoys outreach and business development, and takes pride in delivering high-quality work with accuracy and attention to detail. If you're a proactive recruiter, network development professional, healthcare sales specialist, or provider relations expert who enjoys balancing high-volume outreach with strategic network growth, we'd love to hear from you. As a Provider Network Recruiter, you'll take ownership of an assigned territory and drive network expansion by identifying, engaging, and contracting dental providers. Key Responsibilities - Recruit and contract General Dentists and Specialists to support network growth goals. - Conduct outbound outreach to provider offices and build relationships with prospective providers. - Develop and manage a robust recruitment pipeline using provider rosters, broker referrals, member nominations, inbound leads, and market research. - Educate providers on the benefits of joining the Liberty provider network and guide them through the contracting process. - Collect, review, and follow up on contracting and credentialing documentation to ensure complete and accurate submissions. - Research fee schedules, analyze market opportunities, and develop territory recruitment strategies. - Maintain detailed records of provider interactions and recruitment activity within CRM and tracking systems. - Partner closely with Network Management, Account Management, and Member Services teams to support provider recruitment initiatives and member access needs. - Prepare activity reports and monitor performance metrics to ensure quality, productivity, and network growth objectives are achieved. What a Typical Day Looks Like - Making outbound calls to provider offices. - Following up on active recruitment opportunities. - Managing your pipeline and recruitment priorities. - Researching network gaps and provider market opportunities. - Coordinating contracting and credentialing activities. - Tracking progress and reporting on recruitment results. - Collaborating with internal partners to expand provider access across your territory. Qualifications - Bachelor's degree or equivalent combination of education and relevant experience. - Minimum two years of experience in insurance network recruitment, provider relations, healthcare sales, recruiting, customer service, or a related field. - Strong verbal and written communication skills. - Excellent organization, follow-through, and time management skills. - Proficiency with Microsoft Office, especially Excel. - Ability to manage multiple priorities while maintaining a high degree of accuracy. Preferred Qualifications - Healthcare, dental, or provider network experience. - Knowledge of provider contracting and credentialing processes. - Experience working with lead tracking, CRM, or network management systems. - Understanding of fee schedules, provider specialties, and network development strategies. - Ability to confidently engage providers, navigate objections, and build long-term partnerships. Benefits - Competitive pay structure and savings options to help you reach your financial goals. - Excellent 401(k) retirement benefits, including employer match, Roth IRA options, immediate vesting during the Safe Harbor period, and access to professional financial advice through Financial Engines. - Affordable medical insurance, with low-cost premiums for employee-only coverage. Liberty subsidizes the cost for eligible dependents enrolled in the plan. - 100% employer-paid dental coverage for employees and eligible dependents. - Vision insurance with low-cost premiums for employee-only coverage and dependents. - Company-paid basic life and AD&D insurance, equal to one times your base salary, with options to purchase additional supplemental coverage. - Flexible Spending Accounts for healthcare and dependent care expenses. - Voluntary benefit programs, including accident, critical illness, and hospital indemnity insurance. - Long-term disability coverage. - Expansive wellness programs, including company-wide wellness challenges, and gym discounts. - Employee Assistance Program (EAP) to support mental health and well-being. - Generous vacation and sick leave policies, with the ability to roll over unused time. - 10 paid company holidays. - Tuition reimbursement for eligible educational expenses. - Remote or hybrid work options available for various positions. Compensation In the spirit of pay transparency, the base salary range for this position is $85,000 - $95,000 annually, not including fringe benefits or potential bonuses. At Liberty, your final base salary will be determined by factors such as geographic location, skills, education, and experience. We are committed to pay equity and also consider the internal equity of our current team members when making final compensation decisions. Sponsorship and Relocation Specifications Liberty Dental Plan is an Equal Opportunity Employer / VETS / Disabled. No relocation assistance or sponsorship available at this time.

