Network Engineer TS/SCI clearance required
HRB, Tampa, FL, United States
We are seeking a Senior Network Engineer to support a secure, standalone enterprise environment. This role is responsible for designing, maintaining, and securing network infrastructure supporting virtualized systems, application platforms, and compliance-driven operations.
Senior Network Engineer
Tampa, FL
TS/SCI security clearance
Roles & Responsibilities
Design, implement, and maintain Layer 2/Layer 3 network infrastructure
Configure and support Cisco Catalyst (9300/9500 series) and Cisco NX‑OS–based switching platforms
Manage VLANs, trunking, segmentation, ACLs, firewall rules, and traffic segmentation
Maintain network topology, routing logic, and traffic flow design
Support evaluation and future deployment of data center–optimized switching platforms for modernization initiatives
Deploy and support 802.1X authentication using Cisco ISE and LDAP Integration
Implement machine authentication with user fallback, dynamic VLAN assignment, and fail‑open design
Manage TACACS+ for network device administration
Support networking for VMware ESXi / vCenter environments, including vSwitch and distributed switch configuration
Provision and maintain VM networking
Troubleshoot multi‑tier service flows across infrastructure layers
Implement and maintain STIG‑compliant network configurations
Enforce port security, DHCP snooping, Dynamic ARP Inspection, and secure management access
Support RMF security controls and FIPS‑compliance
Integrate network devices with SIEM (Elastic), Zabbix, or equivalent monitoring tools
Troubleshoot network connectivity, authentication failures, and application reachability issues
Perform structured troubleshooting using logs, packet capture, and service validation
Support change control (CAB) processes
Execute network upgrades (e.g., Cisco IOS‑XE / NX‑OS) with validation and rollback planning
Maintain documentation including VLAN mappings, IP plans, and network diagrams
Support network components of backup and disaster recovery operations
Validate connectivity for backup systems and storage platforms
Assist in failover and restoration procedures
Work with systems engineers, security teams, and application owners
Provide network impact analysis for system architecture decisions
Required Qualifications
An active TS/SCI security clearance.
Current DoD 8570 certification at IAT level II (i.e., Security+ CE).
3+ years of experience in network administration/engineering in a Cisco environment.
Experience with Cisco switches and routers.
A solid foundation in networking including routing, switching, and security.
Ability to work in a high‑tempo operational environment where priorities change frequently.
Must be able to interface with individuals at all levels of the organization both verbally and in writing.
Must be well‑organized with the ability to coordinate and prioritize multiple tasks simultaneously.
Desired Qualifications
Experience with hybrid connectivity between on‑prem and AWS.
Familiarity with AWS VPC design, Site‑to‑Site VPN, Client VPN, and Direct Connect.
Understanding of extending secure or restricted environments into cloud architectures.
Knowledge of BGP routing concepts, including route advertisement, path selection, redundancy, and failover.
Experience with BGP in hybrid cloud or enterprise routing environments.
Ability to troubleshoot routing issues such as asymmetric paths and route filtering.
Experience with Cisco NX‑OS platforms (e.g., Nexus series).
Familiarity with data center technologies such as:
vPC (Virtual Port Channel)
Leaf‑spine architectures
High‑throughput east‑west traffic design
Ability to support or lead network modernization efforts toward data center–optimized architectures.
Experience with Terraform (AWS networking) or Ansible for network automation.
Ability to automate provisioning, validation, and compliance checks.
Benefits
We offer a competitive benefits and compensation package and FUN place to work! Benefits include, but not limited to:
Health and Wellness Benefits
Medical Insurance (three CareFirst healthcare plans to choose from, Dental and Vision Insurance, 75% covered for employee/ 50% per dependant)
Health Savings Account (HSA) contributions $1500 individual/ $3000 family
Personal Insurance Benefits
Company‑paid Life Insurance and AD&D coverage
Company‑paid Short‑term and Long‑term Disability Insurance
Paid Leave
Employees receive 20 days of vacation/10 holidays built into hourly rate/ 5 days of sick time (currently used for snow, jury, bereavement)
Retirement
Pre‑tax 401k program including 6% company match
100% fully vested from eligibility date
*Eligible after 90 days of employment
Tulzi Technologies provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, pregnancy, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws.
This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation, and training.
#J-18808-Ljbffr
Senior Network Engineer
Tampa, FL
TS/SCI security clearance
Roles & Responsibilities
Design, implement, and maintain Layer 2/Layer 3 network infrastructure
Configure and support Cisco Catalyst (9300/9500 series) and Cisco NX‑OS–based switching platforms
Manage VLANs, trunking, segmentation, ACLs, firewall rules, and traffic segmentation
Maintain network topology, routing logic, and traffic flow design
Support evaluation and future deployment of data center–optimized switching platforms for modernization initiatives
Deploy and support 802.1X authentication using Cisco ISE and LDAP Integration
Implement machine authentication with user fallback, dynamic VLAN assignment, and fail‑open design
Manage TACACS+ for network device administration
Support networking for VMware ESXi / vCenter environments, including vSwitch and distributed switch configuration
Provision and maintain VM networking
Troubleshoot multi‑tier service flows across infrastructure layers
Implement and maintain STIG‑compliant network configurations
Enforce port security, DHCP snooping, Dynamic ARP Inspection, and secure management access
Support RMF security controls and FIPS‑compliance
Integrate network devices with SIEM (Elastic), Zabbix, or equivalent monitoring tools
Troubleshoot network connectivity, authentication failures, and application reachability issues
Perform structured troubleshooting using logs, packet capture, and service validation
Support change control (CAB) processes
Execute network upgrades (e.g., Cisco IOS‑XE / NX‑OS) with validation and rollback planning
Maintain documentation including VLAN mappings, IP plans, and network diagrams
Support network components of backup and disaster recovery operations
Validate connectivity for backup systems and storage platforms
Assist in failover and restoration procedures
Work with systems engineers, security teams, and application owners
Provide network impact analysis for system architecture decisions
Required Qualifications
An active TS/SCI security clearance.
Current DoD 8570 certification at IAT level II (i.e., Security+ CE).
3+ years of experience in network administration/engineering in a Cisco environment.
Experience with Cisco switches and routers.
A solid foundation in networking including routing, switching, and security.
Ability to work in a high‑tempo operational environment where priorities change frequently.
Must be able to interface with individuals at all levels of the organization both verbally and in writing.
Must be well‑organized with the ability to coordinate and prioritize multiple tasks simultaneously.
Desired Qualifications
Experience with hybrid connectivity between on‑prem and AWS.
Familiarity with AWS VPC design, Site‑to‑Site VPN, Client VPN, and Direct Connect.
Understanding of extending secure or restricted environments into cloud architectures.
Knowledge of BGP routing concepts, including route advertisement, path selection, redundancy, and failover.
Experience with BGP in hybrid cloud or enterprise routing environments.
Ability to troubleshoot routing issues such as asymmetric paths and route filtering.
Experience with Cisco NX‑OS platforms (e.g., Nexus series).
Familiarity with data center technologies such as:
vPC (Virtual Port Channel)
Leaf‑spine architectures
High‑throughput east‑west traffic design
Ability to support or lead network modernization efforts toward data center–optimized architectures.
Experience with Terraform (AWS networking) or Ansible for network automation.
Ability to automate provisioning, validation, and compliance checks.
Benefits
We offer a competitive benefits and compensation package and FUN place to work! Benefits include, but not limited to:
Health and Wellness Benefits
Medical Insurance (three CareFirst healthcare plans to choose from, Dental and Vision Insurance, 75% covered for employee/ 50% per dependant)
Health Savings Account (HSA) contributions $1500 individual/ $3000 family
Personal Insurance Benefits
Company‑paid Life Insurance and AD&D coverage
Company‑paid Short‑term and Long‑term Disability Insurance
Paid Leave
Employees receive 20 days of vacation/10 holidays built into hourly rate/ 5 days of sick time (currently used for snow, jury, bereavement)
Retirement
Pre‑tax 401k program including 6% company match
100% fully vested from eligibility date
*Eligible after 90 days of employment
Tulzi Technologies provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, pregnancy, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws.
This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation, and training.
#J-18808-Ljbffr