Sr. Network Engineer

Job Summary:

We are looking for a Sr. Network Engineer to join our IT team. In this role, you will be responsible for designing, implementing, managing, and securing our network infrastructure. The ideal candidate will have a strong understanding of both networking and cybersecurity principles, with experience in managing network devices, securing network environments, and enterprise network architecture & strategy. You will work to ensure that our network is both highly available, and resilient to potential threats. This role will also support our M&T Bank Stadium wireless environment and work home game days and other large-scale events.

Key Responsibilities:

• Network Design & Management: Design, configure, and manage network infrastructure including IP management, routers, switches, firewalls, and wireless access points to ensure high performance, reliability, and security.
• Security Infrastructure: Implement and manage security technologies, such as firewalls, VPNs, IDS/IPS, to safeguard the organization’s network and data.
• Network Monitoring & Optimization: Continuously monitor the health and performance of the network, identifying bottlenecks, vulnerabilities, and areas for improvement. Optimize network performance to ensure minimal downtime and optimal throughput.
• Incident Response & Troubleshooting: Quickly respond to and troubleshoot network-related security incidents, including unauthorized access, DDoS attacks, and network vulnerabilities. Perform root cause analysis and implement corrective actions.
• Security Audits & Vulnerability Management: Conduct regular network security audits, vulnerability assessments, and penetration tests to proactively identify and mitigate potential threats.
• Compliance & Best Practices: Ensure that network infrastructure and security practices comply with industry standards and regulations (e.g., PCI-DSS, HIPAA, GDPR). Implement best practices for network security and documentation.
• Disaster Recovery & Business Continuity: Develop and implement network disaster recovery and business continuity plans to ensure resilience and data protection in the event of an outage or security breach.
• Documentation: Maintain detailed documentation of network configurations, security measures, incidents, and resolutions to provide a clear understanding of the network and security posture.
• Collaboration & Training: Work with other IT and security teams to support cross-functional initiatives and improve the organization’s overall cybersecurity posture. Provide guidance and training to junior staff on network and security best practices.

Required Skills & Qualifications:

• Experience: Minimum of 5-7 years of experience in network and security engineering, including hands-on experience with network devices (routers, switches, Wi-Fi, firewalls) and security infrastructure (VPNs, IDS/IPS, firewalls).
• Certifications: Industry certifications such as CCNP (Cisco Certified Network Professional), Cisco Certified Internetwork Expert (CCIE), and Certified Ethical Hacker (CEH) preferred.

Technical Expertise:

• Strong knowledge of networking protocols such as TCP/IP, DNS, HTTP/HTTPS, SNMP, and routing protocols (OSPF, EIGRP, BGP).
• Hands-on experience with security technologies, including firewalls, intrusion detection/prevention systems (IDS/IPS), and network access control (NAC).
• Experience in large scale wireless networks and strong understanding of RF analysis.
• Familiarity with VPN technologies (IPSec, SSL), endpoint protection solutions, and SIEM tools.
• Knowledge of network architecture design, including VLANs, subnetting, and routing.
• Security Best Practices: Solid understanding of information security principles, including encryption, access control, vulnerability management, and security monitoring.
• Troubleshooting Skills: Strong troubleshooting abilities for both network and security-related issues, with experience using diagnostic tools like Wireshark, Cisco ISE, and others.

Tools: Familiarity with network and security management tools (e.g., Cisco, Palo Alto, Fortinet, Splunk, and others).

Communication: Strong verbal and written communication skills to effectively document processes, explain technical concepts, and collaborate with internal teams.

Preferred Skills & Qualifications:

• Advanced Certifications: CCNP, CCIE, or equivalent advanced certifications in network security.
• Experience with Cloud Security: Knowledge of securing cloud environments (AWS, Azure, Google Cloud) and hybrid network security models.
• Network Automation: Experience with network automation tools and scripting languages (e.g., Python, Ansible, or others).
• Experience with SIEM Tools: Familiarity with SIEM platforms (Splunk, ArcSight, etc.) for security event analysis and monitoring.

Working Conditions:

• Full-time position with regular office hours and some on-call rotation.
• Some travel may be required to other office locations or data centers.
• Occasional evening or weekend work may be needed for scheduled maintenance or to respond to urgent security incidents.

Salary and Benefits:

• Range: $110,000 – $150,000
• Company-paid health insurance, including health and vision. Dental insurance also provided with minimal employee contribution
• Competitive 401(K)
• Paid time off to include 3 weeks of vacation and 5 personal/sick days

As an equal opportunity employer, we consider candidates from all backgrounds and identities. We encourage individuals from all ethnicities, sexual orientations, gender identities, socio economic status, as well as military veterans and individuals with disabilities, to apply.