Home › Companies › Vesta Corporation › Senior Network Engineer
Senior Network Engineer
Vesta Corporation · Remote (Atlanta, Georgia, US), Atlanta, GA, United States · Remote · Active · Rippling ATS
Job facts
| Field | Value |
|---|---|
| Company | Vesta Corporation |
| Title | Senior Network Engineer |
| Normalized title | - |
| Department / team | IT Service Management & NOC |
| Location | Atlanta, GA, United States |
| Work model | Remote / Remote |
| Employment type | Full Time |
| Salary | - |
| Status | active |
| ATS provider | Rippling ATS |
| Posted / first seen | 2026-04-16 / 2026-05-29 |
| Changed / last seen | 2026-06-06 / 2026-06-06 |
Related slices
| Page | What it contains | Open |
|---|---|---|
| Company jobs | Active postings from Vesta Corporation. | Open |
| Company breakdowns | Role, location, ATS, and work model facets for this company. | Open |
| ATS provider jobs | Active postings observed through Rippling ATS. | Open |
| Provider filtered search | The same provider as a filtered job collection. | Open |
| City jobs | Active postings in Atlanta. | Open |
| Department jobs | Active postings in IT Service Management & NOC. | Open |
| Work model jobs | Active Remote postings. | Open |
| Lifecycle events | Open, update, close, and reopen events for this posting. | Open |
| Original posting | Canonical source or apply URL captured from the ATS. | Open |
Linked records
| Company | Vesta Corporation |
| Source | 83067ab8-a59a-4d4a-a993-c3863130d387 |
| ATS provider | Rippling ATS |
Description
company
About Vesta
Vesta helps wireless providers make more money by improving a part of their business most don’t think about — payments. Vesta works with major names like AT&T, Rogers, Telcel, and Vodafone, helping them stop fraud, reduce failed transactions, and make sure more transactions are successful. For MNOs, MVNOs and prepaid carriers, this can mean fewer lost customers and more revenue — all without adding friction to the checkout experience. With over 100 million transactions processed every year in 40+ countries, Vesta helps wireless providers turn their payment systems into a competitive advantage.
role
Position Summary
Vesta Corporation is seeking a Senior Network Engineer to lead the design, implementation, and ongoing operations of our global enterprise network. This is a senior individual-contributor role operating at the intersection of complex multi-site networking, hybrid cloud infrastructure, and PCI compliance. The ideal candidate brings 10+ years of hands-on enterprise networking experience, deep fluency with AWS network architecture and security services, strong familiarity with both commercial and open-source tooling, and the ability to drive infrastructure modernization initiatives with limited oversight.
Key Responsibilities On-Premises & Hybrid Network Infrastructure
• Design, implement, and maintain scalable, secure network infrastructure across data centers, remote sites, and AWS/Azure cloud environments.
• Architect and operate routing and switching infrastructure including BGP, NAT, VLANs, Spanning Tree, IPsec VPNs and HSRP.
• Manage and tune enterprise firewall platforms (Cisco, pfSense, Check Point) in alignment with PCI DSS segmentation and access control requirements.
• Administer and optimize F5 BIG-IP LTM/GTM for application delivery, load balancing, and traffic steering across production environments.
• Manage Cloudflare DNS, WAF, and network security policies for internet-facing properties.
• Maintain network security policy management via FireMon; contribute to access path analysis and rule lifecycle management.
• Manage Proxmox-based virtualization as it relates to network-adjacent workloads and VM/LXC networking.
• Coordinate with vendors and carriers to manage WAN circuits, resolve outages, and drive cost optimization.
AWS Network Design & Operations
• Design, deploy, and maintain AWS Virtual Private Clouds (VPCs) including subnet design, CIDR allocation, route tables, internet gateways, and NAT gateways across multi-account and multi-region environments.
• Architect and manage VPC-to-VPC connectivity via VPC Peering, AWS Transit Gateway, and PrivateLink to support secure, scalable inter-service communication.
• Configure and maintain AWS Site-to-Site VPN and Direct Connect circuits for hybrid connectivity between on-premises data centers and AWS environments.
• Design and enforce AWS Security Group and Network ACL policies as network-layer access controls, aligned with PCI DSS segmentation requirements.
• Manage DNS architecture within AWS using Route 53 for private hosted zones, resolver endpoints, conditional forwarding, and DNS failover across hybrid environments.
• Configure and manage AWS NAT Gateways, Elastic IPs, and Elastic Load Balancers (ALB/NLB) for workload exposure and traffic routing.
• Maintain AWS network connectivity for partner data and compute workloads migrated into cloud environments, including GDPR and data sovereignty considerations.
AWS Security & Compliance
• Implement and maintain AWS security controls at the network layer including Security Groups, NACLs, VPC Flow Logs, and WAF rulesets on CloudFront and ALB.
• Enable and manage AWS CloudTrail across accounts to ensure comprehensive API activity logging; integrate with centralized SIEM for alerting and audit evidence.
• Configure and maintain AWS GuardDuty for threat detection; triage findings and drive remediation in coordination with the security team.
• Manage AWS Security Hub to aggregate and prioritize findings from GuardDuty, Inspector, Macie, and third-party integrations; produce compliance posture reports for PCI DSS and SOC 1 Type 2 audits.
• Administer AWS IAM policies, roles, and permission boundaries as they relate to network resource access; enforce least-privilege principles across VPC, Direct Connect, and Transit Gateway configurations.
• Use AWS Config rules and AWS Organizations SCPs to enforce network security standards and detect drift across multi-account environments.
Monitoring, Observability & Automation
• Monitor AWS network health using VPC Flow Logs, CloudWatch metrics and alarms, Transit Gateway Network Manager, and Reachability Analyzer.
• Build and maintain CloudWatch dashboards and alarms for network throughput, latency, NAT gateway utilization, VPN tunnel status, and Direct Connect metrics.
• Evaluate, deploy, and operationalize FOSS tools as replacements for commercial products where appropriate (e.g., Oxidized, NetBox)
• Contribute to Infrastructure as Code for network resources using automation; enforce configuration consistency across environments.
• Maintain comprehensive documentation for network topology, configurations, and operational runbooks; support PCI DSS and SOC 1 Type 2 audit evidence collection.
• Participate in on-call rotation and be available for after-hours work including unscheduled incidents.
• Travel to domestic data center and office locations as needed to support deployments or incidents.
Technical Expertise & Core Competencies Required On-Premises
• 10+ years of hands-on enterprise networking experience in large-scale, multi-site environments.
• Expert-level Cisco routing and switching: IOS/NX-OS, BGP, OSPF, EIGRP, VLANs, STP, QoS.
• Enterprise firewall administration: Cisco ASA/FTD, pfSense, and Check Point. Rule management, segmentation strategy, and change control.
• F5 BIG-IP LTM/GTM: virtual servers, pools, iRules, traffic policies, and GTM topology records.
• Cloudflare: DNS management, WAF rulesets, and security policy administration.
• FireMon: policy analysis, rule review workflows, and access path validation.
• Deep understanding of TCP/IP, DNS, DHCP, routing/switching protocols, and secure remote access.
• Experience operating in PCI DSS compliant environments including control implementation and audit evidence collection.
Required AWS Networking & Security:
• VPC architecture: subnet design and CIDR planning, route tables, internet gateways, NAT gateways, and VPC endpoints.
• VPC connectivity: VPC Peering, Transit Gateway, and AWS PrivateLink for inter-VPC and cross-account routing.
• Hybrid connectivity: Site-to-Site VPN and Direct Connect configuration, BGP peering, and failover design.
• Security controls: Security Groups, Network ACLs, and VPC Flow Logs for traffic visibility and PCI segmentation enforcement.
• DNS: Route 53 private hosted zones, resolver endpoints, conditional forwarding rules, and health-check-based failover.
• Load balancing and exposure: Application Load Balancer (ALB), Network Load Balancer (NLB), and Elastic IP management.
• Monitoring and observability: CloudWatch metrics, alarms, dashboards; VPC Flow Logs analysis; Transit Gateway Network Manager.
• Security and compliance services: CloudTrail, GuardDuty, Security Hub, AWS Config, IAM policy review, and ACM.
• Multi-account governance: AWS Organizations, SCPs, and Control Tower network guardrails.
Preferred / Nice to Have
• Proxmox VE: VM/LXC provisioning, cluster management, and software-defined networking.
• Infrastructure as Code: Terraform or CloudFormation for network resource provisioning and drift detection.
• Experience deploying FOSS tools to replace commercial networking or monitoring products (e.g., Oxidized, NetBox).
• Azure networking: Azure Firewall, NSGs, and Azure DNS private zones.
• Zero-trust / overlay VPN concepts and implementation (e.g., Tailscale or Wireguard).
• AWS advanced networking: CloudFront distributions, WAF on ALB/CloudFront, PrivateLink endpoint services, Network Firewall.
• Scripting or automation: Python, Bash, or Ansible for network task automation.
• Vendor management: circuit provisioning, carrier escalations, and hardware lifecycle coordination.
Qualifications
• 10+ years of enterprise networking experience in complex, multi-site or global environments.
• Demonstrated hands-on proficiency with AWS networking and security services in production environments.
• Demonstrated ability to work independently and drive projects to completion without heavy oversight.
• Strong vendor management skills, able to coordinate service delivery and incident resolution with carriers, ISPs, and hardware vendors.
• Proven ability to document infrastructure for audits, incident response, and operational continuity.
• Willingness and ability to travel domestically as needed (valid driver’s license required).
• Available for on-call rotation and after-hours support windows.
Education & Certifications Education
• Bachelor’s degree in Information Technology, Computer Science, or a related field, or equivalent professional experience.
Required Certifications
• Cisco CCNP (or higher) Enterprise, Data Center, or Security track.
Preferred Certifications
• AWS Certified Advanced Networking, Specialty (ANS-C01) or AWS Solutions Architect | Professional.
• AWS Certified Security, Specialty (SCS) is a strong differentiator given the compliance posture of this role.
• Microsoft Azure Network Engineer Associate or equivalent Azure networking certification.
• Check Point CCSE or equivalent firewall platform certification.
• CCIE (any track), F5 Certified BIG-IP Administrator, HashiCorp Terraform Associate, or other advanced certifications.
Full job record
| Job ID | 22e657d7566a770e7871d7b7d878eff1c78e73e6 |
| Org ID | 77dd75b4-ef90-44ce-a28f-611a2b8ab7d4 |
| Source ID | 83067ab8-a59a-4d4a-a993-c3863130d387 |
| Board ID | 83067ab8-a59a-4d4a-a993-c3863130d387 |
| Provider | rippling |
| Provider Job Key | ecdfc5e6-ec09-4c7a-9ab5-d7f8ec9ddbb5 |
| Title | Senior Network Engineer |
| Normalized Title | — |
| Status | active |
| Active | yes |
| Location Text | Remote (Atlanta, Georgia, US), Atlanta, GA, United States |
| Department | IT Service Management & NOC |
| Team | — |
| Employment Type | full_time |
| Workplace Type | remote |
| Remote Policy | remote |
| Country | United States |
| Region | GA |
| City | Atlanta |
| Salary Raw | — |
| Salary Min | — |
| Salary Max | — |
| Salary Currency | — |
| Salary Period | — |
| Source URL | https://ats.rippling.com/vesta/jobs/ecdfc5e6-ec09-4c7a-9ab5-d7f8ec9ddbb5 |
| Apply URL | https://ats.rippling.com/vesta/jobs/ecdfc5e6-ec09-4c7a-9ab5-d7f8ec9ddbb5 |
| First Seen At | 2026-05-29 07:12:03Z |
| Last Seen At | 2026-06-06 08:44:46Z |
| Last Checked At | 2026-06-06 08:44:46Z |
| Last Changed At | 2026-06-06 08:44:46Z |
| Inactive At | — |
| Source Posted At | 2026-04-16 21:22:23Z |
| Source Updated At | — |
| Raw Payload Uri | s3://job-postings-prod-raw-590183727216/raw/provider=rippling/board=vesta/date=2026-06-06/2026-06-06T08-44-46-235Z-863c7a66927fc824774ecfceaf34fa061eb6cf37206e04335e9e1e5ee9547e1f.json |
Event Fields
{
"content_hash": "8acd291531cba883f614dcd67acaf4cdc83e98d3bbb2dcfc82d6b383d4ea03a9",
"source_hash": "b339e14928f54c7484bfc6e37c54749db9633c7db074c93c64c92d2bc18bb0c0",
"last_changed_at": "2026-06-06T08:44:46.653Z",
"active_status": "active"
}Parsed Structured
{
"language": "en-us",
"location": {
"raw": "Remote (Atlanta, Georgia, US), Atlanta, GA, United States",
"city": "Atlanta",
"region": "GA",
"country": "United States",
"is_remote": true,
"confidence": 0.98,
"workplace_type": "remote"
},
"salary_max": null,
"salary_min": null,
"inferred_at": "2026-06-06T08:44:46.651Z",
"launch_scope": {
"reason": "english_us_canada",
"included": true,
"language": "en-us",
"location": {
"raw": "Remote (Atlanta, Georgia, US), Atlanta, GA, United States",
"city": "Atlanta",
"region": "GA",
"country": "United States",
"is_remote": true,
"confidence": 0.98,
"workplace_type": "remote"
},
"countries": [
"United States"
]
},
"remote_policy": "remote",
"salary_period": null,
"workplace_type": "remote",
"salary_currency": null
}Extensions
{}Native Structured
{
"list_job": {
"id": "ecdfc5e6-ec09-4c7a-9ab5-d7f8ec9ddbb5",
"url": "https://ats.rippling.com/vesta/jobs/ecdfc5e6-ec09-4c7a-9ab5-d7f8ec9ddbb5",
"name": "Senior Network Engineer",
"language": "en-US",
"locations": [
{
"city": "Atlanta",
"name": "Remote (Atlanta, Georgia, US)",
"state": "Georgia",
"country": "United States",
"stateCode": "GA",
"countryCode": "US",
"workplaceType": "REMOTE"
}
],
"department": {
"name": "Tech Operations"
}
},
"detail_job": {
"url": "https://ats.rippling.com/vesta/jobs/ecdfc5e6-ec09-4c7a-9ab5-d7f8ec9ddbb5",
"name": "Senior Network Engineer",
"uuid": "ecdfc5e6-ec09-4c7a-9ab5-d7f8ec9ddbb5",
"board": {
"logo": {
"url": "https://secured-assets.ripplingcdn.com/us1/ats/686d8c27d812433db43ef280/ats/d3c0c8f70d99493ebd00f9c7dd4955bb?Expires=1780821886&Signature=GhHhbYdLfxNcUTdLlJ3w0q4Q5BzSSmA-3uMz-MfEkAYWD1nq8oVnxWzzilmnTtdgOPv~2hs2ve-~Od26i3~g21PBPXYx5uhxvmZT-29mwFFtAEHu0BBrXjeWg3gpgWluEYUER1ZmEZOdKyS3qDs5VzhvO6YM01DDVYqaSh8Drm3T2~tIwEvj90G7~k5hEsu3aDAdT~N8gdsFnhpuctxuy88fEUGmh597FxNKjfiMly36Bxl~cpCK~2vEMcnpM80cAJEKvBDq~N~tkchrcj5UqePQRd4BZ6opXMda-15C~jW7lN1mGFIb-st-KrreR7LIoCazBdpAuO~w7CXCTJKzzQ__&Key-Pair-Id=K2SM3GXN9F9XGM",
"name": "Vesta-logo-cyan-blue-RGB.png",
"type": "image/png"
},
"slug": "vesta",
"title": "Vesta.io Careers",
"banner": {
"url": null,
"name": "",
"type": ""
},
"boardURL": "https://ats.rippling.com/vesta/jobs",
"fontType": "ARIAL_SANS_SERIF",
"subtitle": "Careers at Vesta",
"boardType": "RIPPLING",
"linkColor": null,
"buttonColor": null,
"legalNotice": "<meta name=\"rteConfig\" content=\"{"version":"0.308.0","producedBy":"rte","themeName":"berry"}\"><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;margin:0px;line-height:1.38;padding:0px;\"><span style=\"white-space:pre-wrap;\">Thank you for your application!</span></p>",
"buttonTextColor": null,
"noOpeningsMessage": null,
"groupJobsByLocation": true,
"showBoardLogoOnJobPost": true,
"showCompanyInfoUnderJobPost": false
},
"createdOn": "2026-04-16T14:22:23.948000-07:00",
"department": {
"name": "IT Service Management & NOC",
"base_department": "Tech Operations",
"department_tree": [
"Tech Operations",
"IT Service Management & NOC"
]
},
"companyName": "Vesta Corporation",
"description": {
"role": "<meta><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:15pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;text-align:left;\"><b><strong style=\"font-size:15pt;white-space:pre-wrap;\">Position Summary</strong></b></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><span style=\"white-space:pre-wrap;\">Vesta Corporation is seeking a Senior Network Engineer to lead the design, implementation, and ongoing operations of our global enterprise network. This is a senior individual-contributor role operating at the intersection of complex multi-site networking, hybrid cloud infrastructure, and PCI compliance. The ideal candidate brings 10+ years of hands-on enterprise networking experience, deep fluency with AWS network architecture and security services, strong familiarity with both commercial and open-source tooling, and the ability to drive infrastructure modernization initiatives with limited oversight.</span></p><h2 style=\"font-family:"Basel Grotesk",Arial,sans-serif;line-height:1.6;font-size:15pt;font-weight:600;letter-spacing:0.5px;margin-top:18px;margin-bottom:4px;padding-left:0px;\"><span style=\"font-size:15pt;white-space:pre-wrap;\">Key Responsibilities</span></h2><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><b><strong style=\"color:rgb(31,78,121);white-space:pre-wrap;\">On-Premises & Hybrid Network Infrastructure</strong></b></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><span style=\"white-space:pre-wrap;\">•</span><span style=\"font-size:7pt;white-space:pre-wrap;\"> </span><span style=\"white-space:pre-wrap;\">Design, implement, and maintain scalable, secure network infrastructure across data centers, remote sites, and AWS/Azure cloud environments.</span></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><span style=\"white-space:pre-wrap;\">•</span><span style=\"font-size:7pt;white-space:pre-wrap;\"> </span><span style=\"white-space:pre-wrap;\">Architect and operate routing and switching infrastructure including BGP, NAT, VLANs, Spanning Tree, IPsec VPNs and HSRP.</span></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><span style=\"white-space:pre-wrap;\">•</span><span style=\"font-size:7pt;white-space:pre-wrap;\"> </span><span style=\"white-space:pre-wrap;\">Manage and tune enterprise firewall platforms (Cisco, pfSense, Check Point) in alignment with PCI DSS segmentation and access control requirements.</span></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><span style=\"white-space:pre-wrap;\">•</span><span style=\"font-size:7pt;white-space:pre-wrap;\"> </span><span style=\"white-space:pre-wrap;\">Administer and optimize F5 BIG-IP LTM/GTM for application delivery, load balancing, and traffic steering across production environments.</span></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><span style=\"white-space:pre-wrap;\">•</span><span style=\"font-size:7pt;white-space:pre-wrap;\"> </span><span style=\"white-space:pre-wrap;\">Manage Cloudflare DNS, WAF, and network security policies for internet-facing properties.</span></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><span style=\"white-space:pre-wrap;\">•</span><span style=\"font-size:7pt;white-space:pre-wrap;\"> </span><span style=\"white-space:pre-wrap;\">Maintain network security policy management via FireMon; contribute to access path analysis and rule lifecycle management.</span></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><span style=\"white-space:pre-wrap;\">•</span><span style=\"font-size:7pt;white-space:pre-wrap;\"> </span><span style=\"white-space:pre-wrap;\">Manage Proxmox-based virtualization as it relates to network-adjacent workloads and VM/LXC networking.</span></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><span style=\"white-space:pre-wrap;\">•</span><span style=\"font-size:7pt;white-space:pre-wrap;\"> </span><span style=\"white-space:pre-wrap;\">Coordinate with vendors and carriers to manage WAN circuits, resolve outages, and drive cost optimization.</span></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><span style=\"white-space:pre-wrap;\"> </span></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><b><strong style=\"color:rgb(31,78,121);white-space:pre-wrap;\">AWS Network Design & Operations</strong></b></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><span style=\"white-space:pre-wrap;\">•</span><span style=\"font-size:7pt;white-space:pre-wrap;\"> </span><span style=\"white-space:pre-wrap;\">Design, deploy, and maintain AWS Virtual Private Clouds (VPCs) including subnet design, CIDR allocation, route tables, internet gateways, and NAT gateways across multi-account and multi-region environments.</span></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><span style=\"white-space:pre-wrap;\">•</span><span style=\"font-size:7pt;white-space:pre-wrap;\"> </span><span style=\"white-space:pre-wrap;\">Architect and manage VPC-to-VPC connectivity via VPC Peering, AWS Transit Gateway, and PrivateLink to support secure, scalable inter-service communication.</span></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><span style=\"white-space:pre-wrap;\">•</span><span style=\"font-size:7pt;white-space:pre-wrap;\"> </span><span style=\"white-space:pre-wrap;\">Configure and maintain AWS Site-to-Site VPN and Direct Connect circuits for hybrid connectivity between on-premises data centers and AWS environments.</span></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><span style=\"white-space:pre-wrap;\">•</span><span style=\"font-size:7pt;white-space:pre-wrap;\"> </span><span style=\"white-space:pre-wrap;\">Design and enforce AWS Security Group and Network ACL policies as network-layer access controls, aligned with PCI DSS segmentation requirements.</span></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><span style=\"white-space:pre-wrap;\">•</span><span style=\"font-size:7pt;white-space:pre-wrap;\"> </span><span style=\"white-space:pre-wrap;\">Manage DNS architecture within AWS using Route 53 for private hosted zones, resolver endpoints, conditional forwarding, and DNS failover across hybrid environments.</span></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><span style=\"white-space:pre-wrap;\">•</span><span style=\"font-size:7pt;white-space:pre-wrap;\"> </span><span style=\"white-space:pre-wrap;\">Configure and manage AWS NAT Gateways, Elastic IPs, and Elastic Load Balancers (ALB/NLB) for workload exposure and traffic routing.</span></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><span style=\"white-space:pre-wrap;\">•</span><span style=\"font-size:7pt;white-space:pre-wrap;\"> </span><span style=\"white-space:pre-wrap;\">Maintain AWS network connectivity for partner data and compute workloads migrated into cloud environments, including GDPR and data sovereignty considerations.</span></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><span style=\"white-space:pre-wrap;\"> </span></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><b><strong style=\"color:rgb(31,78,121);white-space:pre-wrap;\">AWS Security & Compliance</strong></b></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><span style=\"white-space:pre-wrap;\">•</span><span style=\"font-size:7pt;white-space:pre-wrap;\"> </span><span style=\"white-space:pre-wrap;\">Implement and maintain AWS security controls at the network layer including Security Groups, NACLs, VPC Flow Logs, and WAF rulesets on CloudFront and ALB.</span></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><span style=\"white-space:pre-wrap;\">•</span><span style=\"font-size:7pt;white-space:pre-wrap;\"> </span><span style=\"white-space:pre-wrap;\">Enable and manage AWS CloudTrail across accounts to ensure comprehensive API activity logging; integrate with centralized SIEM for alerting and audit evidence.</span></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><span style=\"white-space:pre-wrap;\">•</span><span style=\"font-size:7pt;white-space:pre-wrap;\"> </span><span style=\"white-space:pre-wrap;\">Configure and maintain AWS GuardDuty for threat detection; triage findings and drive remediation in coordination with the security team.</span></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><span style=\"white-space:pre-wrap;\">•</span><span style=\"font-size:7pt;white-space:pre-wrap;\"> </span><span style=\"white-space:pre-wrap;\">Manage AWS Security Hub to aggregate and prioritize findings from GuardDuty, Inspector, Macie, and third-party integrations; produce compliance posture reports for PCI DSS and SOC 1 Type 2 audits.</span></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><span style=\"white-space:pre-wrap;\">•</span><span style=\"font-size:7pt;white-space:pre-wrap;\"> </span><span style=\"white-space:pre-wrap;\">Administer AWS IAM policies, roles, and permission boundaries as they relate to network resource access; enforce least-privilege principles across VPC, Direct Connect, and Transit Gateway configurations.</span></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><span style=\"white-space:pre-wrap;\">•</span><span style=\"font-size:7pt;white-space:pre-wrap;\"> </span><span style=\"white-space:pre-wrap;\">Use AWS Config rules and AWS Organizations SCPs to enforce network security standards and detect drift across multi-account environments.</span></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><span style=\"white-space:pre-wrap;\"> </span></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><b><strong style=\"color:rgb(31,78,121);white-space:pre-wrap;\">Monitoring, Observability & Automation</strong></b></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><span style=\"white-space:pre-wrap;\">•</span><span style=\"font-size:7pt;white-space:pre-wrap;\"> </span><span style=\"white-space:pre-wrap;\">Monitor AWS network health using VPC Flow Logs, CloudWatch metrics and alarms, Transit Gateway Network Manager, and Reachability Analyzer.</span></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><span style=\"white-space:pre-wrap;\">•</span><span style=\"font-size:7pt;white-space:pre-wrap;\"> </span><span style=\"white-space:pre-wrap;\">Build and maintain CloudWatch dashboards and alarms for network throughput, latency, NAT gateway utilization, VPN tunnel status, and Direct Connect metrics.</span></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><span style=\"white-space:pre-wrap;\">•</span><span style=\"font-size:7pt;white-space:pre-wrap;\"> </span><span style=\"white-space:pre-wrap;\">Evaluate, deploy, and operationalize FOSS tools as replacements for commercial products where appropriate (e.g., Oxidized, NetBox)</span></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><span style=\"white-space:pre-wrap;\">•</span><span style=\"font-size:7pt;white-space:pre-wrap;\"> </span><span style=\"white-space:pre-wrap;\">Contribute to Infrastructure as Code for network resources using automation; enforce configuration consistency across environments.</span></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><span style=\"white-space:pre-wrap;\">•</span><span style=\"font-size:7pt;white-space:pre-wrap;\"> </span><span style=\"white-space:pre-wrap;\">Maintain comprehensive documentation for network topology, configurations, and operational runbooks; support PCI DSS and SOC 1 Type 2 audit evidence collection.</span></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><span style=\"white-space:pre-wrap;\">•</span><span style=\"font-size:7pt;white-space:pre-wrap;\"> </span><span style=\"white-space:pre-wrap;\">Participate in on-call rotation and be available for after-hours work including unscheduled incidents.</span></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><span style=\"white-space:pre-wrap;\">•</span><span style=\"font-size:7pt;white-space:pre-wrap;\"> </span><span style=\"white-space:pre-wrap;\">Travel to domestic data center and office locations as needed to support deployments or incidents.</span></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><span style=\"white-space:pre-wrap;\"> </span></p><h2 style=\"font-family:"Basel Grotesk",Arial,sans-serif;line-height:1.6;font-size:15pt;font-weight:600;letter-spacing:0.5px;margin-top:18px;margin-bottom:4px;padding-left:0px;\"><span style=\"font-size:15pt;white-space:pre-wrap;\">Technical Expertise & Core Competencies</span></h2><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><b><strong style=\"color:rgb(31,78,121);white-space:pre-wrap;\">Required On-Premises</strong></b></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><span style=\"white-space:pre-wrap;\">•</span><span style=\"font-size:7pt;white-space:pre-wrap;\"> </span><span style=\"white-space:pre-wrap;\">10+ years of hands-on enterprise networking experience in large-scale, multi-site environments.</span></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><span style=\"white-space:pre-wrap;\">•</span><span style=\"font-size:7pt;white-space:pre-wrap;\"> </span><span style=\"white-space:pre-wrap;\">Expert-level Cisco routing and switching: IOS/NX-OS, BGP, OSPF, EIGRP, VLANs, STP, QoS.</span></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><span style=\"white-space:pre-wrap;\">•</span><span style=\"font-size:7pt;white-space:pre-wrap;\"> </span><span style=\"white-space:pre-wrap;\">Enterprise firewall administration: Cisco ASA/FTD, pfSense, and Check Point. Rule management, segmentation strategy, and change control.</span></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><span style=\"white-space:pre-wrap;\">•</span><span style=\"font-size:7pt;white-space:pre-wrap;\"> </span><span style=\"white-space:pre-wrap;\">F5 BIG-IP LTM/GTM: virtual servers, pools, iRules, traffic policies, and GTM topology records.</span></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><span style=\"white-space:pre-wrap;\">•</span><span style=\"font-size:7pt;white-space:pre-wrap;\"> </span><span style=\"white-space:pre-wrap;\">Cloudflare: DNS management, WAF rulesets, and security policy administration.</span></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><span style=\"white-space:pre-wrap;\">•</span><span style=\"font-size:7pt;white-space:pre-wrap;\"> </span><span style=\"white-space:pre-wrap;\">FireMon: policy analysis, rule review workflows, and access path validation.</span></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><span style=\"white-space:pre-wrap;\">•</span><span style=\"font-size:7pt;white-space:pre-wrap;\"> </span><span style=\"white-space:pre-wrap;\">Deep understanding of TCP/IP, DNS, DHCP, routing/switching protocols, and secure remote access.</span></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><span style=\"white-space:pre-wrap;\">•</span><span style=\"font-size:7pt;white-space:pre-wrap;\"> </span><span style=\"white-space:pre-wrap;\">Experience operating in PCI DSS compliant environments including control implementation and audit evidence collection.</span></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><span style=\"white-space:pre-wrap;\"> </span></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><b><strong style=\"color:rgb(31,78,121);white-space:pre-wrap;\">Required AWS Networking & Security:</strong></b></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><span style=\"white-space:pre-wrap;\">•</span><span style=\"font-size:7pt;white-space:pre-wrap;\"> </span><span style=\"white-space:pre-wrap;\">VPC architecture: subnet design and CIDR planning, route tables, internet gateways, NAT gateways, and VPC endpoints.</span></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><span style=\"white-space:pre-wrap;\">•</span><span style=\"font-size:7pt;white-space:pre-wrap;\"> </span><span style=\"white-space:pre-wrap;\">VPC connectivity: VPC Peering, Transit Gateway, and AWS PrivateLink for inter-VPC and cross-account routing.</span></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><span style=\"white-space:pre-wrap;\">•</span><span style=\"font-size:7pt;white-space:pre-wrap;\"> </span><span style=\"white-space:pre-wrap;\">Hybrid connectivity: Site-to-Site VPN and Direct Connect configuration, BGP peering, and failover design.</span></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><span style=\"white-space:pre-wrap;\">•</span><span style=\"font-size:7pt;white-space:pre-wrap;\"> </span><span style=\"white-space:pre-wrap;\">Security controls: Security Groups, Network ACLs, and VPC Flow Logs for traffic visibility and PCI segmentation enforcement.</span></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><span style=\"white-space:pre-wrap;\">•</span><span style=\"font-size:7pt;white-space:pre-wrap;\"> </span><span style=\"white-space:pre-wrap;\">DNS: Route 53 private hosted zones, resolver endpoints, conditional forwarding rules, and health-check-based failover.</span></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><span style=\"white-space:pre-wrap;\">•</span><span style=\"font-size:7pt;white-space:pre-wrap;\"> </span><span style=\"white-space:pre-wrap;\">Load balancing and exposure: Application Load Balancer (ALB), Network Load Balancer (NLB), and Elastic IP management.</span></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><span style=\"white-space:pre-wrap;\">•</span><span style=\"font-size:7pt;white-space:pre-wrap;\"> </span><span style=\"white-space:pre-wrap;\">Monitoring and observability: CloudWatch metrics, alarms, dashboards; VPC Flow Logs analysis; Transit Gateway Network Manager.</span></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><span style=\"white-space:pre-wrap;\">•</span><span style=\"font-size:7pt;white-space:pre-wrap;\"> </span><span style=\"white-space:pre-wrap;\">Security and compliance services: CloudTrail, GuardDuty, Security Hub, AWS Config, IAM policy review, and ACM.</span></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><span style=\"white-space:pre-wrap;\">•</span><span style=\"font-size:7pt;white-space:pre-wrap;\"> </span><span style=\"white-space:pre-wrap;\">Multi-account governance: AWS Organizations, SCPs, and Control Tower network guardrails.</span></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><span style=\"white-space:pre-wrap;\"> </span></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><b><strong style=\"color:rgb(31,78,121);white-space:pre-wrap;\">Preferred / Nice to Have</strong></b></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><span style=\"white-space:pre-wrap;\">•</span><span style=\"font-size:7pt;white-space:pre-wrap;\"> </span><span style=\"white-space:pre-wrap;\">Proxmox VE: VM/LXC provisioning, cluster management, and software-defined networking.</span></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><span style=\"white-space:pre-wrap;\">•</span><span style=\"font-size:7pt;white-space:pre-wrap;\"> </span><span style=\"white-space:pre-wrap;\">Infrastructure as Code: Terraform or CloudFormation for network resource provisioning and drift detection.</span></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><span style=\"white-space:pre-wrap;\">•</span><span style=\"font-size:7pt;white-space:pre-wrap;\"> </span><span style=\"white-space:pre-wrap;\">Experience deploying FOSS tools to replace commercial networking or monitoring products (e.g., Oxidized, NetBox).</span></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><span style=\"white-space:pre-wrap;\">•</span><span style=\"font-size:7pt;white-space:pre-wrap;\"> </span><span style=\"white-space:pre-wrap;\">Azure networking: Azure Firewall, NSGs, and Azure DNS private zones.</span></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><span style=\"white-space:pre-wrap;\">•</span><span style=\"font-size:7pt;white-space:pre-wrap;\"> </span><span style=\"white-space:pre-wrap;\">Zero-trust / overlay VPN concepts and implementation (e.g., Tailscale or Wireguard).</span></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><span style=\"white-space:pre-wrap;\">•</span><span style=\"font-size:7pt;white-space:pre-wrap;\"> </span><span style=\"white-space:pre-wrap;\">AWS advanced networking: CloudFront distributions, WAF on ALB/CloudFront, PrivateLink endpoint services, Network Firewall.</span></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><span style=\"white-space:pre-wrap;\">•</span><span style=\"font-size:7pt;white-space:pre-wrap;\"> </span><span style=\"white-space:pre-wrap;\">Scripting or automation: Python, Bash, or Ansible for network task automation.</span></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><span style=\"white-space:pre-wrap;\">•</span><span style=\"font-size:7pt;white-space:pre-wrap;\"> </span><span style=\"white-space:pre-wrap;\">Vendor management: circuit provisioning, carrier escalations, and hardware lifecycle coordination.</span></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><br></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><span style=\"white-space:pre-wrap;\"> </span></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><b><strong style=\"white-space:pre-wrap;\">Qualifications</strong></b></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><span style=\"white-space:pre-wrap;\">•</span><span style=\"font-size:7pt;white-space:pre-wrap;\"> </span><span style=\"white-space:pre-wrap;\">10+ years of enterprise networking experience in complex, multi-site or global environments.</span></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><span style=\"white-space:pre-wrap;\">•</span><span style=\"font-size:7pt;white-space:pre-wrap;\"> </span><span style=\"white-space:pre-wrap;\">Demonstrated hands-on proficiency with AWS networking and security services in production environments.</span></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><span style=\"white-space:pre-wrap;\">•</span><span style=\"font-size:7pt;white-space:pre-wrap;\"> </span><span style=\"white-space:pre-wrap;\">Demonstrated ability to work independently and drive projects to completion without heavy oversight.</span></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><span style=\"white-space:pre-wrap;\">•</span><span style=\"font-size:7pt;white-space:pre-wrap;\"> </span><span style=\"white-space:pre-wrap;\">Strong vendor management skills, able to coordinate service delivery and incident resolution with carriers, ISPs, and hardware vendors.</span></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><span style=\"white-space:pre-wrap;\">•</span><span style=\"font-size:7pt;white-space:pre-wrap;\"> </span><span style=\"white-space:pre-wrap;\">Proven ability to document infrastructure for audits, incident response, and operational continuity.</span></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><span style=\"white-space:pre-wrap;\">•</span><span style=\"font-size:7pt;white-space:pre-wrap;\"> </span><span style=\"white-space:pre-wrap;\">Willingness and ability to travel domestically as needed (valid driver’s license required).</span></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><span style=\"white-space:pre-wrap;\">•</span><span style=\"font-size:7pt;white-space:pre-wrap;\"> </span><span style=\"white-space:pre-wrap;\">Available for on-call rotation and after-hours support windows.</span></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><span style=\"white-space:pre-wrap;\"> </span></p><h2 style=\"font-family:"Basel Grotesk",Arial,sans-serif;line-height:1.6;font-size:15pt;font-weight:600;letter-spacing:0.5px;margin-top:18px;margin-bottom:4px;padding-left:0px;\"><span style=\"font-size:15pt;white-space:pre-wrap;\">Education & Certifications</span></h2><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><b><strong style=\"color:rgb(31,78,121);white-space:pre-wrap;\">Education</strong></b></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><span style=\"white-space:pre-wrap;\">•</span><span style=\"font-size:7pt;white-space:pre-wrap;\"> </span><span style=\"white-space:pre-wrap;\">Bachelor’s degree in Information Technology, Computer Science, or a related field, or equivalent professional experience.</span></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><span style=\"white-space:pre-wrap;\"> </span></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><b><strong style=\"color:rgb(31,78,121);white-space:pre-wrap;\">Required Certifications</strong></b></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><span style=\"white-space:pre-wrap;\">•</span><span style=\"font-size:7pt;white-space:pre-wrap;\"> </span><span style=\"white-space:pre-wrap;\">Cisco CCNP (or higher) Enterprise, Data Center, or Security track.</span></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><span style=\"white-space:pre-wrap;\"> </span></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><b><strong style=\"color:rgb(31,78,121);white-space:pre-wrap;\">Preferred Certifications</strong></b></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><span style=\"white-space:pre-wrap;\">•</span><span style=\"font-size:7pt;white-space:pre-wrap;\"> </span><span style=\"white-space:pre-wrap;\">AWS Certified Advanced Networking, Specialty (ANS-C01) or AWS Solutions Architect | Professional.</span></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><span style=\"white-space:pre-wrap;\">•</span><span style=\"font-size:7pt;white-space:pre-wrap;\"> </span><span style=\"white-space:pre-wrap;\">AWS Certified Security, Specialty (SCS) is a strong differentiator given the compliance posture of this role.</span></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><span style=\"white-space:pre-wrap;\">•</span><span style=\"font-size:7pt;white-space:pre-wrap;\"> </span><span style=\"white-space:pre-wrap;\">Microsoft Azure Network Engineer Associate or equivalent Azure networking certification.</span></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><span style=\"white-space:pre-wrap;\">•</span><span style=\"font-size:7pt;white-space:pre-wrap;\"> </span><span style=\"white-space:pre-wrap;\">Check Point CCSE or equivalent firewall platform certification.</span></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><span style=\"white-space:pre-wrap;\">•</span><span style=\"font-size:7pt;white-space:pre-wrap;\"> </span><span style=\"white-space:pre-wrap;\">CCIE (any track), F5 Certified BIG-IP Administrator, HashiCorp Terraform Associate, or other advanced certifications.</span></p><h2 style=\"font-family:"Basel Grotesk",Arial,sans-serif;line-height:1.6;font-size:15pt;font-weight:600;letter-spacing:0.5px;margin-top:18px;margin-bottom:4px;padding-left:0px;\"></h2>",
"company": "<meta><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;text-align:left;\"><b><strong style=\"font-size:11pt;white-space:pre-wrap;\">About Vesta</strong></b><span style=\"font-size:11pt;white-space:pre-wrap;\"> </span></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;text-align:left;\"><br></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;text-align:left;\"><span style=\"font-size:11pt;white-space:pre-wrap;\">Vesta helps wireless providers make more money by</span><span style=\"white-space:pre-wrap;\"> </span><span style=\"font-size:11pt;white-space:pre-wrap;\">improving</span><span style=\"white-space:pre-wrap;\"> </span><span style=\"font-size:11pt;white-space:pre-wrap;\">a part of their</span><span style=\"white-space:pre-wrap;\"> </span><span style=\"font-size:11pt;white-space:pre-wrap;\">business</span><span style=\"white-space:pre-wrap;\"> </span><span style=\"font-size:11pt;white-space:pre-wrap;\">most</span><span style=\"white-space:pre-wrap;\"> </span><span style=\"font-size:11pt;white-space:pre-wrap;\">don’t</span><span style=\"white-space:pre-wrap;\"> </span><span style=\"font-size:11pt;white-space:pre-wrap;\">think about — payments. Vesta works with major names like AT&T, Rogers, Telcel, and Vodafone, helping them stop fraud, reduce failed transactions, and make sure more</span><span style=\"white-space:pre-wrap;\"> </span><span style=\"font-size:11pt;white-space:pre-wrap;\">transactions are successful. For</span><span style=\"white-space:pre-wrap;\"> </span><span style=\"font-size:11pt;white-space:pre-wrap;\">MNOs,</span><span style=\"white-space:pre-wrap;\"> </span><span style=\"font-size:11pt;white-space:pre-wrap;\">MVNOs and prepaid carriers, this can mean fewer lost customers and more revenue — all without adding friction to the checkout experience. With over 100 million transactions processed every year in 40+ countries, Vesta</span><span style=\"white-space:pre-wrap;\"> </span><span style=\"font-size:11pt;white-space:pre-wrap;\">helps</span><span style=\"white-space:pre-wrap;\"> </span><span style=\"font-size:11pt;white-space:pre-wrap;\">wireless providers turn their payment systems into a competitive advantage.</span></p><p style=\"font-family:"Basel Grotesk",Arial,sans-serif;font-size:11pt;font-weight:400;line-height:1.6;letter-spacing:0.25px;margin:4px 0px;padding:0px;\"><br></p>"
},
"workLocations": [
"Remote (Atlanta, Georgia, US)"
],
"employmentType": {
"id": "Salaried, full-time",
"label": "SALARIED_FT"
},
"payRangeDetails": [],
"activeJobApplication": {
"basicQuestions": [
{
"oid": "first_name",
"title": "First name",
"required": true,
"fieldType": "SHORT_ANSWER"
},
{
"oid": "last_name",
"title": "Last name",
"required": true,
"fieldType": "SHORT_ANSWER"
},
{
"oid": "email",
"title": "Email",
"required": true,
"fieldType": "SHORT_ANSWER"
},
{
"oid": "pronouns",
"title": "Pronouns",
"required": false,
"fieldType": "PRONOUN"
},
{
"oid": "current_company",
"title": "Current company",
"required": false,
"fieldType": "SHORT_ANSWER"
},
{
"oid": "phone_number",
"title": "Phone number",
"required": true,
"fieldType": "PHONE_NUMBER"
},
{
"oid": "location",
"title": "Location (city only)",
"required": true,
"fieldType": "SHORT_ANSWER"
},
{
"oid": "linkedin_link",
"title": "LinkedIn link",
"required": false,
"fieldType": "SHORT_ANSWER"
},
{
"oid": "resume",
"title": "Resume",
"required": true,
"fieldType": "FILE"
},
{
"oid": "cover_letter",
"title": "Cover letter",
"required": false,
"fieldType": "FILE"
}
],
"customQuestions": {
"fields": [
{
"oid": "first_name",
"title": "First name",
"required": true,
"fieldData": {},
"fieldType": "SHORT_ANSWER"
},
{
"oid": "last_name",
"title": "Last name",
"required": true,
"fieldData": {},
"fieldType": "SHORT_ANSWER"
},
{
"oid": "email",
"title": "Email",
"required": true,
"fieldData": {},
"fieldType": "SHORT_ANSWER"
},
{
"oid": "pronouns",
"title": "Pronouns",
"required": false,
"fieldData": {},
"fieldType": "PRONOUN"
},
{
"oid": "current_company",
"title": "Current company",
"required": false,
"fieldData": {},
"fieldType": "SHORT_ANSWER"
},
{
"oid": "phone_number",
"title": "Phone number",
"required": true,
"fieldData": {},
"fieldType": "PHONE_NUMBER"
},
{
"oid": "location",
"title": "Location (city only)",
"required": true,
"fieldData": {},
"fieldType": "SHORT_ANSWER"
},
{
"oid": "linkedin_link",
"title": "LinkedIn link",
"required": false,
"fieldData": {},
"fieldType": "SHORT_ANSWER"
},
{
"oid": "resume",
"title": "Resume",
"required": true,
"fieldData": {},
"fieldType": "FILE"
},
{
"oid": "cover_letter",
"title": "Cover letter",
"required": false,
"fieldData": {},
"fieldType": "FILE"
}
]
},
"additionalQuestions": [
{
"id": "6a0f83761a16f96de8bb156b",
"form": {
"sections": [],
"questions": [
{
"tags": [],
"title": "Do you require Sponsorship now or in the future?",
"canEdit": false,
"dataType": "select",
"isPrivate": false,
"uniqueKey": "224731e4-909c-4440-84d8-cd4a51986386",
"intChoices": [],
"isRequired": true,
"strChoices": [
"Yes",
"No"
],
"description": "",
"questionType": "KNOCKOUT",
"allowComments": false,
"isOtherEnabled": false,
"isMultiSelectEnabled": true
},
{
"tags": [],
"title": "Do you currently reside in the United States?",
"canEdit": false,
"dataType": "select",
"isPrivate": false,
"uniqueKey": "68d3d3ef-f082-44ac-beb0-334909f9a3ef",
"intChoices": [],
"isRequired": true,
"strChoices": [
"Yes",
"No"
],
"questionType": "KNOCKOUT",
"allowComments": false,
"isOtherEnabled": false,
"isMultiSelectEnabled": true
}
],
"skipLogic": [],
"deletedSections": [],
"deletedQuestions": []
},
"name": "Sponsorship"
},
{
"id": "6a0f83761a16f96de8bb156c",
"form": {
"sections": [],
"questions": [
{
"tags": [],
"title": "This role is primarily remote but would require attendance in our Atlanta, GA office. Are you available to commute to Atlanta? ",
"canEdit": false,
"dataType": "select",
"isPrivate": false,
"uniqueKey": "e938617b-fe3b-4375-b24c-68fda5acf095",
"intChoices": [],
"isRequired": true,
"strChoices": [
"Yes, I live locally",
"No, I do not live locally"
],
"description": "",
"questionType": "KNOCKOUT",
"allowComments": false,
"isOtherEnabled": false,
"isMultiSelectEnabled": true
}
],
"skipLogic": [],
"deletedSections": [],
"deletedQuestions": []
},
"name": "Atlanta location"
}
]
},
"hasAIEvaluationsEnabled": false,
"eeocQuestionnaireEnabled": true,
"applicationConfirmationTemplate": "691cd9c6a67f8db27debc739",
"eeocQuestionnaireEnabledForJobPost": true
},
"detail_meta": {
"url": "https://ats.rippling.com/api/v2/board/vesta/jobs/ecdfc5e6-ec09-4c7a-9ab5-d7f8ec9ddbb5",
"http_status": 200,
"content_type": "application/json",
"response_bytes": 46845
},
"detail_errors": []
}Get this page with API
Rendered from the bluedoor Job Postings API. Reproduce it:
GET https://api.bluedoor.sh/job-postings/v1/jobs/22e657d7566a770e7871d7b7d878eff1c78e73e6?include=descriptionJSONGET https://api.bluedoor.sh/job-postings/v1/orgs/77dd75b4-ef90-44ce-a28f-611a2b8ab7d4JSONGET https://api.bluedoor.sh/job-postings/v1/sources/83067ab8-a59a-4d4a-a993-c3863130d387JSONGET https://api.bluedoor.sh/job-postings/v1/jobs/22e657d7566a770e7871d7b7d878eff1c78e73e6/eventsJSON