75% Remote: Network Architect for Private Cloud

Job description:

For our client we are looking for a Network Architect (f/m/d).
Frame data:
Start: November 2024
Duration: 31.03.25 +
- (long term)
Capacity: 100% if possible
Location: Berlin / Remote (1 week Berlin / 3 weeks remote in rotation), up to 50% onsite in peak times
Role:
- The infrastructure product group offers data center services that are provided via a software stack for other product lines within the program.
- The Network Architect is member of the Infrastructure Architecture team.
- The architect is responsible for aligning with the strategy and vision of the Lead Infrastructure Architect and with other architects in the group (i.e., compute, storage, software architects).
- The Network Architect is responsible for architecture of Infrastructure wide network and security.
- The architect does this in conjunction and through consultation with the other infrastructure technology architects.
- You are also expected to be able to provide POCs of their solutions working alongside technical engineers to prove solutions are viable.
- The architect must also be cost conscious, have a holistic approach and be aware of what the impact of the solution is short term and long term to both overall strategy, engineering and customer products.
- Within the Infrastructure product line, the engineering target is to be fully automated throughout any internal or external product lifecycle.
- The goal is to build a fully automated environment where all steps after physical installation will be automated. Therefore, the architects and engineers require the ability to align with the IaaS team who implement the steps to automate the environment.
Please note:
\*\*EXPERIENCE IN PUBLIC CLOUDS (AZURE, GCP, AWS, ETC) IS NOT RELEVANT
FOR THIS ROLE. THIS IS A PRIVATE ON-PREMISES CLOUD BUILT FROM THE GROUND UP\*\*
Skills (must-have):
- Core Networking (Juniper, Cisco, FRR)
- Core WAN (MPLS, Segment-Routing)
- K8s Networking (CNI, external-dns)
- IXP Connectivity
- DNS, DHCP, IPAM, DNSsec (Infoblox, BIND9)
- DPU Based Networking (Nvidia)
- Thales HSM
- HashiCorp Vault (PKI, ACME)
- DigiCert PKI
- NG FW 
- Palo Alto, Fortinet
- Linux FW 
- UFW, firewalld
\-Secure Client Access solutions (VPN) 
- PA, Fortinet, other
- Zero Trust Architectures
- IDS/IPS Architectures
- Network Routing Protocol Security
- fluent English in speech and writing

Be a part of our comminity

Join us on Telegram or Discord to get instant notifications about the newest freelance projects and talk to some of the smartest software engineers in the world.