- Design, deploy, and maintain Extranet networks to enable secure and controlled access for external partners and vendors
- Implement and manage VPN solutions (site-to-site, remote access, SSL VPN, IPsec VPN) to secure communication channels
- Configure and maintain firewalls, VPN gateways, and related security infrastructure to protect Extranet and VPN traffic
- Monitor and troubleshoot VPN and Extranet connectivity issues to ensure uptime and performance SLAs
- Develop and enforce security policies for external network access, including identity and access management
- Collaborate with internal IT teams and external partners to establish and maintain trusted network connections
- Document network architecture, configurations, and procedures related to Extranet and VPN environments
- Perform regular audits, vulnerability assessments, and compliance checks on VPN and Extranet systems
- Provide support for incident response related to network breaches or access issues in Extranet/VPN areas
Requirements
- Good to have Bachelor's degree in Computer Science, Information Technology, or related field
- Experience in network engineering or administration with a focus on VPN and Extranet technologies
- Strong hands-on experience with VPN technologies: IPsec, SSL VPN
- Working knowledge in configuring and managing firewalls and VPN gateways(Cisco ASA, Palo Alto, Fortinet, Check Point, etc.)
- Solid knowledge of network protocols including TCP/IP, BGP, OSPF, and routing principles
- Familiarity with network security best practices, including encryption, authentication, and access controls
- Experience with monitoring and diagnostic tools for VPN and network performance
- Ability to document and communicate complex network configurations clearly
- To work with business unit focal from start to end and deploy the solutions required to connect DBS and partners over the B2B Extranet network
Preferred Qualifications:
- Certifications such as CCNA, CCNP or equivalent
- Experience with multi-vendor VPN environments and complex Extranet architectures
- Understanding of Dot1Q, VXLAN, VRF and deployment
- Knowledge of cloud-based VPN solutions and hybrid cloud networking
- Familiarity with network automation tools and scripting will be an advantage
Working Conditions:
- May require 24/7 on-call L3 support for critical network issues
- Change requests timings are usually after 12am, with compensation time off
Occasional travel to data center for support.
