We are seeking a highly skilled Network Engineer to design, implement, secure, and support our enterprise network infrastructure. This role is responsible for firewall security, network access control, LAN/WAN operations, wireless networking, and SD-WAN connectivity across multiple locations. The ideal candidate has deep, hands-on experience with Palo Alto firewalls, Aruba ClearPass 802.1X authentication, Cisco LAN, Meraki lan, wireless and ISP/vendor management in a complex, distributed environment.
Network Design & Operations
- Design, implement, and support enterprise LAN, WAN, wireless, and SD-WAN environments
- Manage and optimize Cisco switching infrastructure (VLANs, trunking, STP, routing)
- Administer Meraki wireless networks, including AP deployment, RF optimization, and dashboard configuration
- Maintain global WAN connectivity and ensure high availability across all sites
Cloud Networking (AWS Preferred)
- Provide hands-on support for AWS network infrastructure
- Deploy, configure, and troubleshoot AWS networking components including VPCs, security groups, NACLs, and routing
- Implement and manage AWS Elastic Load Balancing, including Application Load Balancers (ALB) and Network Load Balancers (NLB)
- Support hybrid connectivity between on-prem and AWS environments (site-to-site VPN, client VPN, Direct Connect)
- Monitor performance, availability, and security of cloud-based network services
- Collaborate with application teams to ensure proper load balancing, failover, and scalability
Security & Network Access Control
- Configure, manage, and troubleshoot Palo Alto firewalls, including security policies, NAT, VPNs, threat prevention, and URL filtering
- Implement and support 802.1X network authentication using Aruba ClearPass, including wired and wireless NAC policies
- Collaborate with security teams to enforce network security standards and compliance requirements
- Monitor and remediate network vulnerabilities and security events
Connectivity & ISP Management
- Manage SD-WAN solutions to ensure reliable and cost-effective site connectivity
- Oversee ISP relationships, including circuit provisioning, troubleshooting, cellular connectivity and escalation management
- Support site-to-site VPNs and remote user VPN connectivity
Monitoring, Maintenance & Documentation
- Monitor network performance and availability using enterprise monitoring tools
- Perform firmware upgrades, configuration audits, and network health checks
- Create and maintain network documentation, diagrams, standards, and operational procedures
- Participate in disaster recovery planning and testing for network services
Required Qualifications
- 7+ years of hands-on experience in enterprise network engineering
- Strong expertise with Palo Alto firewalls, including threat prevention and URL filtering
- Proven experience implementing Aruba ClearPass for 802.1X network authentication
- Deep knowledge of Cisco LAN switching and Meraki wireless environments
- Experience with SD-WAN, WAN technologies, and ISP circuit management
- Solid understanding of routing protocols (OSPF, BGP preferred)
- Strong troubleshooting, documentation, and communication skills
Preferred Qualifications
- Experience supporting global or multi-site enterprise networks
- Familiarity with network monitoring tools (e.g., SolarWinds)
- Network or security certifications (CCNP, CISSP, PCNSE, Palo Alto, Aruba, etc.) a plus
Movado Group, Inc. is an equal opportunity employer. It prohibits discrimination based on age, color, disability, marital or parental status, national origin, race, religion, sex, sexual orientation, gender identity, veteran status or any other legally protected status in accordance with applicable federal, state and local laws.
