Network Engineer - MSP Data Center Migration

---

---

We are seeking a highly skilled and experienced Network Engineer to join our Customer Experience Team and play a critical role in a multi-threaded project. This project involves a comprehensive migration of MSP Data Center network infrastructure, transitioning from legacy systems to a modern, secure, and efficient environment. The successful candidate will be responsible for documenting the existing topology, migrating firewall configurations, implementing BGP redistribution, configuring VPN and security solutions, and developing detailed network documentation. Project Scope: The project encompasses the following key areas: • Documentation of Current MSP Data Center Topology: o Detailed documentation of the existing network environment, including:  Layer 2 MPLS interconnections.  Two Cisco ASA 5525 Firewalls.  Palo Alto firewalls requiring BGP redistribution.  GlobalProtect VPN infrastructure. • Network Infrastructure Migration: o Migration of firewall configurations from Cisco ASA 5525 to Palo Alto firewalls. o Implementation of BGP redistribution on Palo Alto firewalls. o Reconfiguration of Layer 3 interfaces. o Establishment of new routing for the COLO environment. • VPN and Security Implementation: o Implementation of SAML authentication for GlobalProtect VPN. o Integration of Azure Entra ID for single sign-on (SSO). o Migration of existing firewall rules. o Maintenance of IPSec tunnels and support for Cisco AnyConnect configuration. • Documentation Development: o Creation of comprehensive network diagrams, including:  Current MSP Data Center topology.  New COLO infrastructure layout.  Routing and subnet configurations. Responsibilities: • Conduct thorough assessments of the existing network infrastructure. • Develop and implement detailed migration plans. • Configure and deploy Palo Alto firewalls, ensuring seamless migration from Cisco ASA 5525. • Implement and manage BGP redistribution and Layer 3 routing. • Configure and maintain GlobalProtect VPN with SAML authentication and Azure Entra ID integration. • Migrate and optimize firewall rules, maintaining security best practices. • Maintain and troubleshoot IPSec tunnels and Cisco AnyConnect configurations. • Create and maintain comprehensive network documentation, including diagrams and configuration guides. • Collaborate with XC's IT team and other stakeholders to ensure successful project delivery. • Provide regular project updates and status reports. • Troubleshoot and resolve network issues during and after migration. Qualifications: • Experience: o Minimum of 5+ years of experience in network engineering and project coordination. o Proven experience in complex network migrations, particularly involving firewall and VPN technologies. o Strong understanding of MPLS, BGP, and routing protocols. o Experience with Palo Alto firewalls and GlobalProtect VPN. o Experience with Cisco ASA firewalls and Cisco Anyconnect. o Experience with Azure Entra ID and SAML authentication. • Technical Skills: o Expertise in configuring and troubleshooting Palo Alto firewalls. o Strong knowledge of Cisco ASA firewalls and Cisco AnyConnect. o Proficiency in routing and switching technologies. o Experience with VPN configuration and troubleshooting. o Understanding of security best practices and firewall management. o Experience with network documentation and diagramming tools. • Soft Skills: o Excellent communication and interpersonal skills. o Strong analytical and problem-solving abilities. o Ability to work independently and as part of a team. o Strong organizational and project management skills. o Ability to document thoroughly.

Keyword: IT Support

Price: $75.0

Network Administration Palo Alto Firewalls Cisco Certified Network Professional