• Network Segmentation Engineer

    Insight Global (Tuckahoe, VA)


    Job Description

    Job Summary:

    We are seeking an experienced Network Segmentation Engineer with a deep understanding of network architecture and a strong focus on Cisco ACI (Application Centric Infrastructure) and VMware NSX technologies. The ideal candidate will be responsible for designing, implementing, and maintaining network segmentation strategies to improve security, scalability, and efficiency across our IT infrastructure. You will play a critical role in ensuring secure and reliable network traffic flow across different segments of the enterprise, leveraging Cisco ACI and VMware NSX to optimize performance and security.

    Key Responsibilities:

    Network Segmentation Design & Implementation:

    o Design and implement advanced network segmentation strategies using Cisco ACI and VMware NSX to improve security, performance, and network isolation across the data center environments.

     

    o Architect and deploy VLANs, security zones, and micro-segmentation policies to meet business and security requirements. o Collaborate with internal teams to ensure network segmentation aligns with the broader IT infrastructure strategy.

    Cisco ACI & VMware NSX Deployment:

    o Lead the implementation and configuration of Cisco ACI and VMware NSX solutions to create secure and efficient network topologies. o Perform the integration of Cisco ACI with VMware NSX and other network technologies to create a unified, scalable, and agile network architecture. o Troubleshoot and optimize Cisco ACI and VMware NSX environments, ensuring network segments are appropriately isolated and compliant with security policies.

    Security & Compliance:

    o Implement and enforce security policies across network segments using Cisco ACI and VMware NSX, ensuring compliance with industry standards (e.g., NIST, PCIDSS, HIPAA). o Work closely with security and compliance teams to design network segmentation strategies that reduce attack surfaces and improve overall security posture. o Automate segmentation and security policies to streamline network management and improve response times to security incidents.

    Automation & Orchestration:

    o Utilize automation tools (such as Ansible, NetBrain, or Python scripts) to deploy and manage network segmentation configurations and policies in Cisco ACI and VMware NSX. o Collaborate with DevOps and cloud engineering teams to integrate network segmentation into CI/CD pipelines and cloud-native architectures.

    Performance Monitoring & Optimization:

    o Continuously monitor the performance and health of the network segments using Cisco ACI and VMware NSX monitoring tools.

     

    o Identify network bottlenecks, vulnerabilities, and areas for optimization and apply necessary adjustments to improve performance and security.

    Collaboration & Documentation:

    o Work closely with cross-functional teams, including Network, Security, and Cloud Engineering, to ensure a seamless integration of network segmentation with other systems and services. o Maintain accurate documentation for network segmentation configurations, policies, and procedures to ensure effective knowledge transfer and support.

     

    o Provide regular updates and reports to stakeholders regarding the status of network segmentation projects, performance, and security posture.

     

    Pay Range: $50-$90/HR

     

    We are a company committed to creating inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity employer that believes everyone matters. Qualified candidates will receive consideration for employment opportunities without regard to race, religion, sex, age, marital status, national origin, sexual orientation, citizenship status, disability, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to Human Resources Request Form (https://airtable.com/app21VjYyxLDIX0ez/shrOg4IQS1J6dRiMo) . The EEOC "Know Your Rights" Poster is available here (https://www.eeoc.gov/sites/default/files/2023-06/22-088\_EEOC\_KnowYourRights6.12ScreenRdr.pdf) .

     

    To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/ .

     

    Skills and Requirements

    Qualifications:

    Education:

    o Bachelors degree in Computer Science, Information Technology, Network Engineering, or a related field. Relevant certifications may be considered in lieu of formal education.

    Experience:

    o At least 5 years of experience in network engineering, with a focus on network segmentation and security.

     

    o Proven experience deploying, managing, and optimizing Cisco ACI and VMware NSX environments in enterprise or data center environments.

     

    o Experience with micro-segmentation, VLAN configuration, and creating network policies within Cisco ACI and VMware NSX.

     

    o Hands-on experience with network troubleshooting, traffic analysis, and performance tuning in complex network environments.

    Certifications (Preferred):

    o Cisco Certified Network Professional (CCNP) or Cisco Certified Internetwork Expert (CCIE).

     

    o VMware Certified Professional (VCP) in Network Virtualization or VMware NSX. o Cisco Certified Network Associate (CCNA) in Data Center or Networking.

     

    o Other relevant certifications in network security or cloud networking.

    Skills and Abilities:

    o Strong understanding of network segmentation techniques, including VLAN, VRF, and security zones, within Cisco ACI and VMware NSX.

     

    o Proficiency in network automation tools such as Ansible, Terraform, or Python scripting.

     

    o Familiarity with network security tools such as firewalls, intrusion detection/prevention systems (IDS/IPS), and VPN solutions. o Ability to design and implement network architectures that balance performance, scalability, and security.

     

    o Excellent troubleshooting and analytical skills for complex network environments. o Strong communication and collaboration skills, with the ability to work effectively across technical and non-technical teams.

     

    o Ability to stay up-to-date with the latest trends and technologies in network segmentation, virtualization, and cloud networking. null

     

    We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal employment opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment without regard to race, color, ethnicity, religion,sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military oruniformed service member status, or any other status or characteristic protected by applicable laws, regulations, andordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or the recruiting process, please send a request to [email protected].