Senior Network Engineer

Senior Network Engineer

Transform technology into opportunity as a Senior Network Engineer with GDIT. A career in enterprise IT means connecting and enhancing the systems that matter most. At GDIT you'll be at the forefront of innovation and play a meaningful part in improving how agencies operate.

The Senior Network Engineer is a hybrid operations and engineering role responsible for both the day-to-day administration of the Department of Energy (DOE) Office of Science's network infrastructure and the design and execution of enterprise network modernization efforts.

Based in Oak Ridge, TN, this position plays a critical role in both maintaining secure, high-performance connectivity and leading infrastructure projects such as core network redesign, cloud integration, and security architecture improvements. The ideal candidate combines deep technical skills with the ability to lead, plan, and execute at an engineering level.

Key Responsibilities

• Hybrid Engineering and Administration: Serve in a dual-capacity role that balances high-level network design and architecture responsibilities with day-to-day operational support and device configuration across enterprise environments.
• Network Infrastructure Management: Administer and maintain a multi-site enterprise network, including the configuration and lifecycle management of routers, switches, firewalls, VPNs, wireless infrastructure, and load balancing technologies.
• Architecture and Design: Develop scalable and resilient network architectures that support high availability, fault tolerance, and future growth, with an emphasis on alignment with DOE enterprise IT strategy and security policies.
• Routing and Protocol Engineering: Engineer and support complex routing strategies involving protocols such as EIGRP, OSPF, and BGP; ensure optimal route redistribution, convergence, and path selection across hybrid connectivity models including DMVPN and MPLS.
• Firewall and Security Integration: Implement and manage next-generation firewall platforms (e.g., Palo Alto), including high availability configuration, SSL decryption, policy optimization, IDS/IPS system configurations, and integration with cloud and on-premises security architectures.
• Cloud and Hybrid Networking: Design, deploy, and manage hybrid network topologies within Microsoft Azure, including Virtual Networks (VNets), ExpressRoute, peering, NAT Gateway, and firewall solutions to ensure secure and performant cross-premise connectivity.
• Network Access Control (NAC): Support the implementation and management of NAC solutions such as Cisco ISE, including potential integration with Microsoft Intune to enforce endpoint compliance and identity-based access control.
• Project Leadership: Lead and execute infrastructure modernization initiatives, including the planning, implementation, and validation of new networking technologies or the re-architecture of existing environments.
• Monitoring and Performance Optimization: Leverage network performance tools such as Catalyst Center, SolarWinds and Azure Network Watcher to monitor availability, perform root cause analysis, and implement performance enhancements.
• Documentation and Standards Compliance: Maintain accurate technical documentation including topology diagrams, configuration baselines, IP address management, and change control records to support audit readiness and operational continuity.
• Cross-Functional Collaboration and Mentorship: Partner with adjacent IT disciplines—including cloud, systems, security—to deliver integrated solutions; provide mentorship and technical leadership to junior technical staff as needed.

Required Qualifications

• Education: Bachelor’s degree in Information Technology or related field
• Experience: At least 7 years of relevant experience
• Security Clearance Level: Current Top Secret (or able to obtain)
• US Citizenship Required
• Location: On Customer Site (Oak Ridge, TN)

Certifications (Required):

• Cisco CCNP (Routing & Switching or Enterprise)
• Microsoft AZ-700: Designing and Implementing Microsoft Azure Networking Solutions
• Microsoft AZ-104: Azure Administrator

Technical Competencies:

• Expert knowledge of TCP/IP, BGP, OSPF, DMVPN, DNS, DHCP
• Cisco routing/switching with Nexus 9K, Catalyst, ISR, and C8500 series
• Strong Palo Alto experience including SSL decryption, HA configuration, and IPS tuning
• Azure networking including ExpressRoute, NSGs, virtual WAN, peering, VPNs
• Familiarity with Cisco ACI or willingness to rapidly train up for deployment
• Experience leading physical buildouts and Data Center Moves: rack layout, cable management, port planning
• PowerShell or Python scripting for automation and config deployment

Preferred Qualifications

• CCIE, PCNSE, or additional Azure network/security certs
• Experience with Cisco ISE, DNA Center, and SD-WAN
• Experience in a federal or DOE environment
• Prior Engineering leadership in large-scale infrastructure projects to include Data Center Moves
• Experience implementing Azure Front Door, WAF, Private Link, or NAT Gateway

The likely salary range for this position is $73,950 - $100,050. This is not, however, a guarantee of compensation or salary. Rather, salary will be set based on experience, geographic location and possibly contractual requirements and could fall outside of this range.

Scheduled Weekly Hours: 40

Travel Required: None

Telecommuting Options: Onsite

Work Location: USA TN Oak Ridge

Additional Work Locations: None

Total Rewards at GDIT: Our benefits package for all US-based employees includes a variety of medical plan options, some with Health Savings Accounts, dental plan options, a vision plan, and a 401(k) plan offering the ability to contribute both pre and post-tax dollars up to the IRS annual limits and receive a company match. To encourage work/life balance, GDIT offers employees full flex work weeks where possible and a variety of paid time off plans, including vacation, sick and personal time, holidays, paid parental, military, bereavement and jury duty leave. To ensure our employees are able to protect their income, other offerings such as short and long-term disability benefits, life, accidental death and dismemberment, personal accident, critical illness and business travel and accident insurance are provided or available. We regularly review our Total Rewards package to ensure our offerings are competitive and reflect what our employees have told us they value most.

Join our Talent Community to stay up to date on our career opportunities and events at gdit.com/tc.

Equal Opportunity Employer / Individuals with Disabilities / Protected Veterans