Senior Network Engineer

Drive your career forward with Percepta and join the people powering the world’s leading automotive experiences. As a Senior Network Engineer, you’ll be a part of creating and delivering amazing customer experiences, while also enjoying the satisfaction of being part of our award-winning, people-first culture. 

The Senior Network Engineer is the primary technical owner of the organization’s network infrastructure across on-premises sites, data centers, and cloud environments. This role requires deep expertise across traditional LAN/WAN networking, next-generation firewall administration, wireless infrastructure, and AWS cloud networking. This role requires equal expertise in managing physical switching and routing and architecting scalable, secure AWS VPC environments under a multi-account governance model. This role partners closely with Security, Systems, and Identity teams and requires a solid understanding of Active Directory, DNS, DHCP, and SAML SSO to collaborate effectively.

What You’ll Be Doing

Firewall & Network Security

• Administer, document, and maintain Palo Alto Networks next-generation firewalls, including security policy management, App-ID/User-ID configuration, Threat Prevention, URL Filtering, and GlobalProtect VPN.
• Design, implement, and maintain site-to-site VPN tunnels with business partners; troubleshoot IKE/IPsec issues and maintain tunnel documentation.
• Monitor network security posture, analyze firewall logs, and respond to security events; stay current on CVEs and Palo Alto security advisories.
• Define and enforce network segmentation policies; ensure firewall rule bases are reviewed regularly and follow least-privilege principles.
• Coordinate with the broader security team on vulnerability management, compliance controls, and security architecture reviews.

LAN/WAN, Routing & Switching

• Design, document, configure, and support Cisco Nexus switching infrastructure in the data center and across site locations, including VLANs, VPCs (virtual port-channels), spanning tree, and QoS.
• Administer Cisco Meraki SD-WAN/switching for branch and site connectivity; manage Meraki Dashboard, configure MX security appliances, MS switches, and maintain templates.
• Own BGP and OSPF routing design and operations; manage peering relationships, route policy, prefix filtering, and troubleshoot complex routing issues.
• Maintain and optimize WAN connectivity (MPLS, SD-WAN, broadband); manage circuit lifecycle and work with carrier partners on provisioning and fault resolution.
• Provide Tier III escalation support for LAN/WAN incidents; participate in on-call rotation with a target 15-minute response SLA for critical issues.
• As the organization exits owned data center facilities (target: within 6 months), support the network decommission workstream, including graceful cutover of site connectivity to cloud transit models.

Wireless Infrastructure

• Administer and maintain documentation of Ruckus wireless infrastructure, including access point deployment, controller management (SmartZone or cloud), RF planning, and SSID/VLAN policy configuration.
• Troubleshoot wireless connectivity, RF interference, and roaming issues; conduct periodic wireless site surveys and capacity planning.
• Maintain wireless security standards, including 802.1X/RADIUS integration, guest network isolation, and rogue AP detection.

Cloud Networking

• Design, document, and manage AWS VPC architecture across a multi-account environment governed by AWS Control Tower, including subnet design (public/private/isolated), CIDR planning, and inter-VPC connectivity.
• Implement and maintain AWS Transit Gateway for hub-and-spoke or full-mesh connectivity across accounts and regions; manage route tables and TGW attachments.
• Configure and manage AWS Direct Connect or VPN connectivity for on-premises-to-cloud hybrid networking during and after data center migration.
• Administer AWS security constructs: Security Groups, Network ACLs, VPC Flow Logs, and ensure alignment with organizational network segmentation policy.
• Understand and work within AWS IAM as it applies to network resource governance: SCPs, permission boundaries, and least-privilege role design for network automation.
• Leverage Amazon CloudWatch and AWS Network Manager for network visibility, alerting, and troubleshooting across the multi-account topology.
• Collaborate with Systems and Dev teams on Infrastructure as Code (CloudFormation or Terraform) for network resource provisioning and change management.

Collaboration & Cross-Functional Partnership

• Partner closely with Systems teams investigating Active Directory, DNS, and DHCP to ensure network-level dependencies (VLAN routing, DHCP relay, split DNS) are properly supported—this role does not manage AD, DNS, or DHCP directly.
• Work with voice and unified communications teams to investigate QoS and network readiness for voice systems.
• Interface comfortably with all organizational levels, including senior leadership, to communicate network strategy, project status, and any observed risks.
• Design and maintain network documentation: topology diagrams, runbooks, change records, and architecture decision records; maintain documentation currency as environments evolve.
• Assist with budget inputs for network hardware, software, and cloud spend; provide recommendations for renewals and technology investments. 

General & Administrative Support

• Monitor network performance and availability using existing tooling; identify trends, plan capacity, and proactively address risks.
• Manage the network change process in accordance with organizational change control policies; author change requests with rollback plans.
• Evaluate emerging technologies and vendor roadmaps; make recommendations aligned to organizational direction.
• Support hardware lifecycle management, including procurement coordination, decommissioning, and disposal.

Work Environment & Expectations

• Ability to work independently with minimal supervision while collaborating effectively across teams.
• Comfortable operating in a mixed on-premises and cloud environment that is actively evolving.
• Strong communication, organizational, and problem-solving skills.
• Participate in on-call rotation; respond to critical incidents within 15 minutes.
• Some local travel may be required for site visits.
• Ability to lift up to 50 lbs (rack and data center equipment).

What You Bring to the Role

• Bachelor of Science degree in Networking/Information Systems and 3 years of experience
• Five years’ relevant experience may be substituted for a degree
• 5+ years of enterprise network engineering experience in a multi-site environment.
• Hands-on administration of Palo Alto Networks NGFWs (PCNSE or equivalent experience strongly preferred).
• Proficiency with Cisco Nexus switching (NX-OS); data center fabric experience preferred.
• Experience with Cisco Meraki (MX, MS) administration.
• Strong BGP and OSPF routing knowledge; ability to design and troubleshoot routing policies.
• Experience designing and troubleshooting site-to-site VPN tunnels (IKEv2/IPsec).
• AWS cloud networking experience: VPC design, Transit Gateway, Security Groups, Route 53, Flow Logs.
• Familiarity with AWS Control Tower, multi-account IAM governance, and SCPs as they apply to network resources.
• Working knowledge of Amazon CloudWatch for network monitoring and alerting.
• Solid understanding of TCP/IP, OSI model, and network fundamentals.
• Understanding of Active Directory, DNS, and DHCP sufficient to partner effectively with Systems teams.
• Experience with Ruckus Wireless (SmartZone or Ruckus Cloud).
• AWS Certified Advanced Networking Specialty or AWS Solutions Architect certification.
• Experience with Infrastructure as Code tools (Terraform or CloudFormation) for network provisioning.
• CCNP or equivalent experience.
• Exposure to hybrid cloud connectivity (Direct Connect, Transit Gateway, AWS VPN).
• Familiarity with network automation scripting (Python, Ansible).

About Percepta

Established in 2000 as a joint venture between Ford Motor Company and TTEC, Percepta has specialised in creating customer loyalty to its clients across the globe. Delivered in multiple channels, speaking multiple languages, we bring first-class service across each market we support.

Our values are the heartbeat of our organisation, and we live, breathe, and play by them daily. At Percepta, we:

• Lead with humility – We listen first, lead with empathy, and stay grounded—so people and ideas have room to grow.
• Service beyond self – We serve others—clients, customers, and teammates—with care and integrity in every interaction.
• Leave it better – We take ownership and leave every process, person, and place better than we found it.
• Win together – We succeed as one—celebrating, supporting, and showing up for each other.
• Deliver remarkable – We go beyond expectations to create bold, meaningful moments that stand out.

#LI-Onsite