Technology Architect 6480-19

HM Note : This hybrid role is three (3) days onsite and commences April 1, 2024. The resources will be required to occasionally travel to multiple dispatch centres / CACCs across the province to provide operational support and coordinate / remediate the CAD / telephony infrastructure in order to implement the new CAD and Telephony solution on the new SD-WAN.

Description :

• Work in collaboration with Network Designer to roll out Next Generation LAN and WAN to MOH PSAP locations :
• Produce SD-WAN design and configuration (policy, template development)
• Produce high-level and low-level network design (design workbooks).
• Configure switches, routers, firewalls as per the network design.
• Configure dynamic routing protocols (BGP / OSPF) on both SD-WAN and Firewall devices
• Perform physical install of SD-WAN routers, LAN Switches, HA Firewalls
• Develop and apply Firewall policies
• Develop Centralized and Localized policies for traffic and App-Aware routing
• Test configurations and troubleshoot network issues.
• Develop and implement QoS policies for the Next Gen LAN and WAN
• Deploy configurations in network inventory DB.
• Work with facility SME / Cable Designer to assist with facility remediation.
• Develop and configure Palo Alto Cloud logging
• Maintain and support the network environment during Pilot phase of the project
• Assist in configuration management automation initiative using Ansible and other tools
• Configure Aruba Clear Pass as Identity management solution
• Install and configure OOB management Firewalls across PSAP locations
• Research on and recommend tools for LAN / WAN monitoring and security management.
• Create presentations to management to demo new design, justify procurement of new tools, etc.
• Perform other project related duties as required.

Skills

Experience and Skill Set Requirements

Core Skills : 50 Points

• Cisco SD-WAN (Viptela) design, implementation, configuration, migration, strong troubleshooting experience
• Palo Alto Firewalls, Panorama, installation, configuration, daily operation
• VMware, strong knowledge of networking operation
• Expert level IP routing and L2 in datacenter using Cisco 9K switches
• Strong VoIP experience, implementing QoS for enterprise voice.
• Fluent with both Windows and Unix OS Administration
• IPv6 experience
• Configuration management of networking devices using automation tools (Jenkins / Ansible) and API scripting :
• Docker Containers,
• Ansible Tower
• ELK / Elastiflow Stacks,
• Netbox,
• VMware ESXi networking, vDS, clustering and high availability in virtualized environments,
• Windows Active Directory, LDAP, DNS (Infoblox or similar)

Technical Skills : 30 Points

• IPv6 experience
• Strong knowledge IP communication and routing (OSPF, BGP).
• Aruba ClearPass Policy Manager implementation / configuration experience
• Knowledge and experience with Palo Alto technologies (Panorama, XDR).
• Experience with projects related to 24x7 critical environments and operations

Communication / Analytical Skills : 20 Points

• Ability to work in an agile, dynamic environment
• Strong interpersonal, written, and oral communication skills
• Ability to conduct research into networking issues and products
• Ability to provide demos and presentations to management
• Highly self-motivated and detail-oriented
• Ability to prioritize tasks effectively in high-pressure situations
• Strong customer service orientation with analytical and problem-solving abilities
• Related degree in computer science or electrical engineering and 7-10 years of network engineering experience

Must haves :

• Cisco SD-WAN (Viptela) design, implementation, configuration, migration, troubleshooting
• Palo Alto Firewalls, Panorama, installation, configuration, operation
• Expert level IP routing and L2 in datacenter using Cisco 9K switches. IPv6 experience.
• Knowledge of IP communication and routing (OSPF, BGP). Experience with Palo Alto technologies (Panorama, XDR).
• Experience in 24x7 critical environments and operations