Main Purpose of the Role
We're building and operating the platform as a service (PaaS) and toolkit that enables Truphone's engineering community to develop and deploy products and services at a global scale.
Our hosted infrastructure and global connectivity backbone, integrated with public clouds, aims to support the most demanding requirements for scalability, availability and security.
We design, build and manage our infrastructure as code (IaC), operate highly available environments and enable every engineering team at Truphone with the internal systems and tools they need to autonomously build, deploy and operate the services under their remits, ranging from continuous integration, delivery and deployment (CI / CD) tools and pipelines to observability stacks and distributed big data platforms.
We love GitOps and automation, we strive for absolute resilience for all our mission-critical services. We truly care about our customers and partner with other teams to achieve the best possible outcomes, in a highly collaborative and diverse environment.
The IP Networks Engineer is responsible for :
Designing, deploying and maintaining our global IP backbone network and its interconnections;
Attain optimal levels of security and scalability;
Install, configure and operate networking components in our sites around the world (routers, switches, firewalls);
Automate networking configuration changes and expose them as services;
Continuously improve our security standards, working with our security and compliance team to maintain adequate policies (e.g. fw rules);
Maintain optimal levels of observability over the networking infrastructure, application and service layer (logs, metrics, alerts);
Achieve a high level of system efficiency and performance;
Perform regular maintenance and house-keeping, verifying the integrity and availability of all networking resources, systems and processes, as well as the successful completion of any automated jobs (e.g. config backups);
Perform daily system monitoring, verifying the integrity and availability of all network components;
Rollout sw patches and upgrades, ensuring the networking functions are kept secure and compliant with best practice;
Investigate issues to their root cause and resolution, being available to support the teams' services on a 24x7 on-duty rota;
Think about scale, reliability and cost efficiency for our networking infrastructure / backbone and connectivity reach;
Confortable making decisions with a high degree of autonomy and collaborating within a multi-disciplinary team;
Set high standards for documentation of designs and systems.
Skills and Experience Required :
A minimum of 3 years as an IP / Networking engineer;
Experience with design, deployment and operations of Cisco ACI;
Experience with design, deployment and operations of SD-WAN;
Experience managing L2 infrastructure with STP and MSTP;
Excellent understanding of essential TCP / IP protocols : TCP, UDP, ICMP, SMTP, SNMP, LDAP, DNS, NTP and others;
Dynamic routing protocols like BGP and OSPF;
Great LDAP, RADIUS and DNS knowledge;
IPSEC, site to site and remote access VPNs;
Experience managing Fortinet Firewalls;
Hardening of network and systems according to company security policies E.g. : PCI-DSS, PCI-CP, CIS, ISO27K;
Experience managing Catalyst and Nexus series Cisco switches;
Working knowledge of Nexus VPC is an plus;
Experience with automation tools such as terraform and Ansible is a huge plus;
Experienced with scripting (e.g. shell). Domain of a programming language is a huge plus;
Relevant certifications on advanced networking disciplines is a plus;
Positive and solution-oriented mindset, curious to experiment new technology and always eager to learn new skills;
Comfortable making decisions with a high degree of autonomy, while working within a multi-disciplinary team;
Be an awesome team player, share our values and work by those values.