Sr. Network Engineer (CONTRACT)

Senior Network Engineer (Cisco SDA / ISE / Palo Alto / Azure)
Engagement: Contract (6–12 months), extension likely
Location: Alameda, CA preferred — hybrid onsite presence expected
Start: ASAP

Contract Engagement Summary

Senior Network Engineer to support a strategic enterprise network modernization initiative for a key customer operating a distributed, 24x7 environment. This role requires deep hands-on expertise across Cisco SDA, Catalyst switching, Cisco ISE, wireless, and Palo Alto security platforms. You will be responsible for architecture validation, remediation of technical debt, and execution of infrastructure improvements across campus and WAN environments.

Responsibilities

• Lead configuration, troubleshooting, and optimization across Cisco switching, routing, and fabric-based networking
• Own Cisco SDA implementation components:
  • Border/edge and fabric architecture
  • VXLAN/EVPN workflows
  • SGT strategy and deployment
  • DNA Center automation and assurance
• Drive Cisco ISE maturity:
  • Upgrade to current supported code
  • Implement wired and wireless 802.1X
  • Device profiling and posture enforcement
  • Integrate with Microsoft identity services
• Improve wireless and access layer resiliency:
  • Evaluate and fix single points of failure
  • Optimize WLC config and RF planning
  • Enhance redundant uplinks and coverage
• Participate in WAN and edge modernization:
  • BGP/OSPF cleanup and design
  • Palo Alto HA configuration and failover
  • Evaluate SD-WAN / SASE options
• Troubleshoot advanced L2–L7 issues in production
• Document changes and provide knowledge transfer to ops teams
• Network automation and Infrastructure as Code, including the use of modern automation frameworks to improve consistency, scalability, and operational efficiency.
• Hands‑on experience with Ansible, APIs, Git, and Terraform for configuration management, automation, and cloud/network infrastructure provisioning.
• Observability and assurance at scale, with the ability to proactively monitor, analyze, and troubleshoot enterprise networks.
• Experience enabling and consuming telemetry, NetFlow, and IPFIX for traffic visibility and performance analysis.
• Familiarity with Cisco DNA Center Assurance, Palo Alto Panorama, and SIEM integrations to provide centralized visibility, security monitoring, and operational insights.

Required Experience

Must Have

• 7 years enterprise networking experience
• Strong Cisco implementation background (Catalyst/Nexus)
• Hands-on Cisco SDA experience in production environments
• Cisco ISE deployment (not just administration)
• Palo Alto firewall deployment, HA, and IPsec VPNs
• Wireless engineering experience (Cisco 9800 91xx APs)
• Proficiency with BGP/OSPF and routing policy

Nice to Have

• DNA Center workflows and automation
• Azure routing NVA experience
• Experience in manufacturing or multi-building campus networks

Technical Stack Contractor Should Know

• Cisco Catalyst 9k
• Cisco SDA / DNAC
• Cisco ISE 3.x
• Cisco 9800 WLC
• Palo Alto NGFW (active/passive)
• Azure VPN and routing
• BGP, OSPF, VXLAN

Contractor Traits

• Thrives in imperfect environments and can stabilize what exists
• Strong diagnostic intuition and pattern recognition
• Operates independently from day one
• Communicates clearly with engineering and leadership
• Comfortable making recommendations and backing them technically

  #LI-SH1