Network Ops Engineer (12-hours shift)

Key Responsibilities:

Change Management and Configuration:

• Execute and manage change configurations for network devices and firewalls, ensuring compliance with organization policies and obtaining necessary approvals.
• Document and track all changes made to the network configuration, ensuring traceability and adherence to change management procedures.
• Test and validate changes in a controlled environment before deployment to minimize risks and disruptions.

Software and Firmware Updates:

• Plan and execute regular software and firmware updates for network devices, including routers, switches, and firewalls, to ensure optimal performance and security.
• Coordinate with vendors and internal teams to schedule updates and manage any potential downtime or service interruptions.
• Maintain a record of all updates, including version details, deployment dates, and any issues encountered.

Security Incident Response:

• Respond promptly to security vulnerabilities and incidents affecting the network, coordinating with IT security teams and other stakeholders, as necessary.
• Implement and manage security patches and mitigations in response to identified vulnerabilities.
• Conduct root cause analyses and develop remediation plans to address and prevent future security incidents.

Network Inventory Management:

• Maintain and manage network inventory, including network devices, Uninterruptible Power Supplies (UPS), and related hardware.
• Ensure proper documentation and tracking of all network assets, including installation dates, locations, and maintenance history.
• Conduct regular inventory audits to verify the accuracy and condition of network equipment.

IP Address Management:

• Oversee and manage the allocation and administration of IP addresses for the organization, ensuring efficient utilization and adherence to IP address policies.
• Maintain an accurate IP address management system, including documentation of IP address assignments and subnet configurations.

Incident Support and Troubleshooting:

• Provide incident support for network issues, including external connectivity problems with other agencies.
• Perform diagnostics and troubleshooting to identify and resolve network connectivity issues, coordinating with external partners and service providers as needed.
• Document and report on incident resolutions, ensuring timely follow-up and stakeholder communication.

Daily Health Checks:

• Perform daily health checks of network systems and infrastructure to ensure operational stability and performance.
• Monitor network performance metrics and alerts to proactively identify and address potential issues before they impact services.
• Report on network health and any anomalies or trends observed during daily checks.

Facility Power Management:

• Support building facility power shutdown and recovery exercises, including coordinating with facility management and ensuring minimal disruption to network services.
• Develop and maintain procedures for power recovery and continuity planning, including testing and validation of backup power systems.

Documentation and Standard Operating Procedures (SOPs):

• Develop, maintain, and update documentation and Standard Operating Procedures (SOPs) necessary for network support and operations, including network diagrams, configuration details, and operational workflows.
• Ensure that all documentation is accurate, comprehensive, and accessible to relevant personnel.

Network System Account Review:

• Regularly review the state of network system accounts, including active, inactive, and disabled accounts. Assess privilege levels to ensure they align with current roles and responsibilities.
• Monitor and analyze login attempts to detect unauthorized access or suspicious activities. Investigate any unauthorized login attempts and take corrective actions as needed.
• Ensure that account access levels adhere to the principle of least privilege and update account permissions based on changes in user roles and responsibilities.

Log Management:

• Ensure that all network and security devices are configured to log events to the organization central log repository, including system logs, security logs, and performance metrics.
• Monitor log data for anomalies and security incidents, and work with relevant teams to investigate and address any issues identified.

Configuration Backup and Disaster Recovery:

• Ensure regular and reliable backups of network device configurations, including routers, switches, and firewalls. Verify backup integrity and maintain backup copies in secure, off-site locations.
• Perform disaster recovery swing procedures yearly to ensure they function correctly and meet recovery time objectives and recovery point objectives

Configuration Review and Baseline Assessment

• Conduct regular reviews of network configurations to ensure they comply with organizational guidelines and standards. This includes evaluating and updating firewall rules, router settings, and switch configurations.
• Firewall Rule Review: Perform a comprehensive review of firewall rules annually to ensure they meet current security requirements and organizational policies.
• Baseline Configuration Assessment: Establish and review configuration baselines for routers, switches, and security products such as firewall/IPS on a periodic basis to ensure consistency with best practices and to identify any deviations or areas for improvement.

Project Management:

• Manage network-related projects, including upgrades, expansions, and new deployments, ensuring alignment with project goals, budgets, and timelines.
• Coordinate cross-functional teams and resources to achieve project objectives and address any issues that arise.

Required Skills & Qualifications:

• CCNA (Cisco Certified Network Associate) or equivalent network certification required
• At least 1-2 years of experience in network engineering or administration.
• Demonstrated experience with network troubleshooting, configuration management, and incident response.
• Experience with managing network devices, including routers, switches, IDS/IPS and firewalls.
• Familiarity with security protocols, vulnerability management, and security patching.

Skills:

• Strong knowledge of TCP/IP, DNS, DHCP, and other network protocols.
• Familiarity with network management and monitoring tools.
• Strong troubleshooting and diagnostic skills for network issues.
• Solid understanding of change management and version control procedures.
• Knowledge of IP address management and subnetting.

Work Requirements:

• Ability to work 12-hour shifts as scheduled
• Flexibility to support operations at both headquarters and remote sites based on manpower arrangements and operational needs