View all jobs
Senior Network Engineer - OSC - in person
Oak Ridge, TNPosition Overview
The Senior Network Engineer is a hybrid operations and engineering role responsible for both the day-to-day administration of the Department of Energy (DOE) Office of Science's network infrastructure and the design and execution of enterprise network modernization efforts. Based in Oak Ridge, TN, this position plays a critical role in both maintaining secure, high-performance connectivity and leading infrastructure projects such as core network redesign, cloud integration, and security architecture improvements. The ideal candidate combines deep technical skills with the ability to lead, plan, and execute at an engineering level.
Key Responsibilities
• Hybrid Engineering and Administration: Serve in a dual-capacity role that balances high-level network design and architecture responsibilities with day-to-day operational support and device configuration across enterprise environments.
• Network Infrastructure Management: Administer and maintain a multi-site enterprise network, including the configuration and lifecycle management of routers, switches, firewalls, VPNs, wireless infrastructure, and load balancing technologies.
• Architecture and Design: Develop scalable and resilient network architectures that support high availability, fault tolerance, and future growth, with an emphasis on alignment with DOE enterprise IT strategy and security policies.
• Routing and Protocol Engineering: Engineer and support complex routing strategies involving protocols such as EIGRP, OSPF, and BGP; ensure optimal route redistribution, convergence, and path selection across hybrid connectivity models including DMVPN and MPLS.
• Firewall and Security Integration: Implement and manage next-generation firewall platforms (e.g., Palo Alto), including high availability configuration, SSL decryption, policy optimization, IDS/IPS system configurations, and integration with cloud and on-premises security architectures.
• Cloud and Hybrid Networking: Design, deploy, and manage hybrid network topologies within Microsoft Azure, including Virtual Networks (VNets), ExpressRoute, peering, NAT Gateway, and firewall solutions to ensure secure and performant cross-premise connectivity.
• Network Access Control (NAC): Support the implementation and management of NAC solutions such as Cisco ISE, including potential integration with Microsoft Intune to enforce endpoint compliance and identity-based access control.
• Project Leadership: Lead and execute infrastructure modernization initiatives, including the planning, implementation, and validation of new networking technologies or the re-architecture of existing environments.
• Monitoring and Performance Optimization: Leverage network performance tools such as Catalyst Center, SolarWinds and Azure Network Watcher to monitor availability, perform root cause analysis, and implement performance enhancements.
• Documentation and Standards Compliance: Maintain accurate technical documentation including topology diagrams, configuration baselines, IP address management, and change control records to support audit readiness and operational continuity.
• Cross-Functional Collaboration and Mentorship: Partner with adjacent IT disciplines—including cloud, systems, security—to deliver integrated solutions; provide mentorship and technical leadership to junior technical staff as needed.
Required Qualifications
• Education : Bachelor’s degree in Information Technology or related field
• Experience: Atleast 7 years of relevant experience
Certifications (Required):
o Cisco CCNP (Routing & Switching or Enterprise)
o Microsoft AZ-700: Designing and Implementing Microsoft Azure Networking Solutions
o Microsoft AZ-104: Azure Administrator
Technical Competencies:
o Expert knowledge of TCP/IP, BGP, OSPF, DMVPN, DNS, DHCP
o Cisco routing/switching with Nexus 9K, Catalyst, ISR, and C8500 series
o Strong Palo Alto experience including SSL decryption, HA configuration, and IPS tuning
o Azure networking including ExpressRoute, NSGs, virtual WAN, peering, VPNs
o Familiarity with Cisco ACI or willingness to rapidly train up for deployment
o Experience leading physical buildouts and Data Center Moves: rack layout, cable management, port planning
o PowerShell or Python scripting for automation and config deployment
Preferred Qualifications
• CCIE, PCNSE, or additional Azure network/security certs
• Experience with Cisco ISE, DNA Center, and SD-WAN
• Experience in a federal or DOE environment
• Prior Engineering leadership in large-scale infrastructure projects to include Data Center Moves
• Experience implementing Azure Front Door, WAF, Private Link, or NAT Gateway
• Experience working for the Federal Government as an IT Contractor
The Senior Network Engineer is a hybrid operations and engineering role responsible for both the day-to-day administration of the Department of Energy (DOE) Office of Science's network infrastructure and the design and execution of enterprise network modernization efforts. Based in Oak Ridge, TN, this position plays a critical role in both maintaining secure, high-performance connectivity and leading infrastructure projects such as core network redesign, cloud integration, and security architecture improvements. The ideal candidate combines deep technical skills with the ability to lead, plan, and execute at an engineering level.
Key Responsibilities
• Hybrid Engineering and Administration: Serve in a dual-capacity role that balances high-level network design and architecture responsibilities with day-to-day operational support and device configuration across enterprise environments.
• Network Infrastructure Management: Administer and maintain a multi-site enterprise network, including the configuration and lifecycle management of routers, switches, firewalls, VPNs, wireless infrastructure, and load balancing technologies.
• Architecture and Design: Develop scalable and resilient network architectures that support high availability, fault tolerance, and future growth, with an emphasis on alignment with DOE enterprise IT strategy and security policies.
• Routing and Protocol Engineering: Engineer and support complex routing strategies involving protocols such as EIGRP, OSPF, and BGP; ensure optimal route redistribution, convergence, and path selection across hybrid connectivity models including DMVPN and MPLS.
• Firewall and Security Integration: Implement and manage next-generation firewall platforms (e.g., Palo Alto), including high availability configuration, SSL decryption, policy optimization, IDS/IPS system configurations, and integration with cloud and on-premises security architectures.
• Cloud and Hybrid Networking: Design, deploy, and manage hybrid network topologies within Microsoft Azure, including Virtual Networks (VNets), ExpressRoute, peering, NAT Gateway, and firewall solutions to ensure secure and performant cross-premise connectivity.
• Network Access Control (NAC): Support the implementation and management of NAC solutions such as Cisco ISE, including potential integration with Microsoft Intune to enforce endpoint compliance and identity-based access control.
• Project Leadership: Lead and execute infrastructure modernization initiatives, including the planning, implementation, and validation of new networking technologies or the re-architecture of existing environments.
• Monitoring and Performance Optimization: Leverage network performance tools such as Catalyst Center, SolarWinds and Azure Network Watcher to monitor availability, perform root cause analysis, and implement performance enhancements.
• Documentation and Standards Compliance: Maintain accurate technical documentation including topology diagrams, configuration baselines, IP address management, and change control records to support audit readiness and operational continuity.
• Cross-Functional Collaboration and Mentorship: Partner with adjacent IT disciplines—including cloud, systems, security—to deliver integrated solutions; provide mentorship and technical leadership to junior technical staff as needed.
Required Qualifications
• Education : Bachelor’s degree in Information Technology or related field
• Experience: Atleast 7 years of relevant experience
Certifications (Required):
o Cisco CCNP (Routing & Switching or Enterprise)
o Microsoft AZ-700: Designing and Implementing Microsoft Azure Networking Solutions
o Microsoft AZ-104: Azure Administrator
Technical Competencies:
o Expert knowledge of TCP/IP, BGP, OSPF, DMVPN, DNS, DHCP
o Cisco routing/switching with Nexus 9K, Catalyst, ISR, and C8500 series
o Strong Palo Alto experience including SSL decryption, HA configuration, and IPS tuning
o Azure networking including ExpressRoute, NSGs, virtual WAN, peering, VPNs
o Familiarity with Cisco ACI or willingness to rapidly train up for deployment
o Experience leading physical buildouts and Data Center Moves: rack layout, cable management, port planning
o PowerShell or Python scripting for automation and config deployment
Preferred Qualifications
• CCIE, PCNSE, or additional Azure network/security certs
• Experience with Cisco ISE, DNA Center, and SD-WAN
• Experience in a federal or DOE environment
• Prior Engineering leadership in large-scale infrastructure projects to include Data Center Moves
• Experience implementing Azure Front Door, WAF, Private Link, or NAT Gateway
• Experience working for the Federal Government as an IT Contractor