Network Engineer II (Remote) - WashU IT

Position Overview

Firewall focused Network Engineer provides complex technical and analytical work in serving as a resource for networking, enterprise network planning, high-level troubleshooting, security, network system administration, and/or networking products and services. Work includes the design and review of internal and external infrastructure requirements, technology evaluation, testing, and developing guidelines for implementation. Consults with clients and vendors to determine future network systems requirements, associated costs, design additions, solutions to complex network issues, and the design of network security systems. Serves as an expert on the network and its services, additionally mentoring junior analysts in problem solving and design. Requires a general understanding of all aspects of networking (routing and switching, data center, wireless, security, etc.) with a specialty in at least one.

Key Responsibilities

• Works with customers to develop requirements for network services and designs cost-effective, secure, and reliable solutions.
• Prepares and maintains detailed network documentation for both the networking team and end users.
• Configures and manages central network components including network firewalls, Site-to-Site VPN, and Remote Access VPN firewalls; triages and evaluates daily firewall requests into security policy and NAT rules.
• May serve as team leader for more junior-level analysts.
• Provides tier three resource support for network performance and connectivity issues and assists the Network Operation Center (NOC) analysts as needed.
• Works with the SOC to establish policies and procedures for managing the network.
• Stays current with new technologies, particularly in routing, switching, wireless, and security.
• Configures and manages security perimeter devices (firewalls and VPN gateways) to provide service to end users and departments.
• Performs other duties as assigned.

Required Qualifications

• Education: Bachelor’s degree or a combination of education and experience.
• Work Experience: Minimum of 4 years in network and server environments.
• Certifications: No specific certification or professional license required.
• Driver’s License: Not required for this position.

Preferred Qualifications

• Extensive knowledge of routing protocols (BGP, EIGRP, OSPF), switching (VLANs, Spanning Tree), and network firewalls (Cisco ASA, Cisco Secure Firewall, Palo Alto NGFW).
• Proficiency in Python scripting, including the use of libraries (e.g., requests) for API calls to automate firewall and network device configuration.
• Experience with managing and configuring Palo Alto NGFW and VMs, including understanding operational aspects like dynamic updates, threat log monitoring, and managing GlobalProtect VPN software.
• Additional skills in customer service, leadership, communication, negotiation, organizational planning, project administration, technical consulting, technical solution design, and technology solution delivery.

Benefits & Perks

• Compensation: $75,200.00 - $128,800.00 / Annually
• Personal: Up to 22 days of vacation, 10 recognized holidays, and sick time; competitive health insurance packages with priority appointments and lower copays/coinsurance; free Metro transit U-Pass for eligible employees; and a defined contribution (403(b)) Retirement Savings Plan starting at 7%.
• Wellness: Access to wellness challenges, annual health screenings, mental health resources, mindfulness programs, an employee assistance program (EAP), financial resources, and dietitian consultations.
• Family: Four weeks of caregiver leave to bond with your new child; access to family care resources; and tuition coverage benefits (up to 100% at WashU and 40% elsewhere after seven years).