Network Engineer
Location: Sugar Land, TX
Work Environment: Onsite 4 days per week
Salary: $120k
Bonus: Up to 16% based on performance
Position Summary
The Network Engineer is responsible for the design, implementation, security, and lifecycle management of enterprise and SCADA network infrastructure across multiple datacenters and remote plant sites. The role requires strong expertise in Cisco routing, switching, firewall administration, SCADA segmentation, and industrial/enterprise connectivity using LTE, VSAT, and private WAN circuits.
This position will support network modernization initiatives, including hardware refresh projects, vulnerability remediation, and secure separation between corporate IT and SCADA environments. The Network Engineer must possess strong troubleshooting abilities, hands-on configuration skills, and the ability to create accurate and detailed network documentation. This role will serve as a subject matter expert in network security, compliance, and cross-functional collaboration with IT and operations.
Responsibilities include monitoring and reporting on network health, ensuring PCI compliance, maintaining up-to-date device configurations, and supporting both enterprise and SCADA environments. A deep understanding of TCP/IP, firewall technologies, and packet analysis is required.
Top Skills & Experience Priorities
-
Strong Cisco routing/switching (Nexus, Catalyst, IR routers)
-
Firewall & security expertise (ASA, FTD, NAT, ACLs, IPSec/IKEv2)
-
Experience supporting SCADA/OT networks, LTE/VSAT sites, third-party integrations
-
Datacenter networking (L2/L3, failover, packet capture, WLC/Radius)
-
Strong troubleshooting capabilities and operational rigor (CAB, documentation, maintenance windows)
Education Requirements
-
Bachelor’s Degree in Information Systems, Information Technology, Computer Science, or a related discipline (or equivalent technical experience).
-
Preferred certifications: Cisco CCNP, Forescout FSCA, wireless/security certifications, or equivalent.
Experience Requirements
-
5+ years of experience with a degree, or 6+ years of experience without a degree, covering broad network engineering responsibilities in LAN/WLAN/SD-WAN environments.
-
Experience designing and implementing network infrastructure in Windows and Linux/Unix environments.
-
Hands-on experience with Cisco UCS, HP/Dell/IBM blade solutions.
-
Strong knowledge of cellular/satellite networks, cabling, racks, power, TCP/IP, VLANs, SSL VPNs.
-
Familiarity with Windows Server (DNS/DHCP), and protocols/technologies such as QoS, SSL, BGP, HSRP, MPLS, IPSEC, iSCSI, EIGRP, VRRP, vPC, OSPF, Layer 2/3, and NTP.
-
Experience with Cisco NAC/ACS/Forescout preferred.
-
Security experience with Cisco ASA, VPN/AnyConnect, ACL/TLS hardening, SNMPv3, SSHv2.
-
Wireless experience: Cisco 9800 WLC, Catalyst 9100 APs, industrial wireless in hazardous locations.
-
SCADA/ICS networking including segmentation, DMZ design, LTE/VSAT redundancy, vendor remote access.
-
Vulnerability remediation experience: TLS updates, IOS/ROMmon upgrades, ACL hardening, SSH/TLS enforcement.
-
Lifecycle management including refresh planning, SmartNet, budgeting, and hardware replacement projects.
-
Experience with monitoring and packet tools (Wireshark, NetFlow, SolarWinds).
-
Strong Visio documentation and change/project management skills.
-
Industry experience in Energy/Refining is preferred.
Major Accountabilities
-
Implement and maintain secure enterprise and SCADA network infrastructure across datacenters and remote facilities.
-
Execute vulnerability remediation across 100+ devices to meet security baselines.
-
Optimize SCADA segmentation, DMZ design, and secure vendor access.
-
Serve as the escalation point for complex WAN/LAN/SCADA troubleshooting scenarios.
-
Coordinate with vendors and carriers on incidents, upgrades, and contract negotiations.
-
Develop and maintain detailed diagrams, change-control documentation, test plans, and repository updates.
-
Support LAN/WLAN/WAN/MAN systems, wireless infrastructure, and ingress/egress points.
-
Ensure stable network operations and adhere to change/incident management policies.
-
Validate infrastructure documentation and align configuration with standards.
-
Assist with network backup/recovery plans to maintain reliable connectivity.
-
Maintain strong communication with internal customers, external vendors, and support teams.
-
Provide guidance and escalation support to the Service Desk, Systems Team, and Network Administrators.
-
Evaluate network equipment, hardware/software updates, and vendor offerings.
-
Support and plan hardware refresh projects and modernization initiatives.
Expected Results
-
High availability, security, and compliance across enterprise and SCADA networks.
-
Successful execution of refresh and modernization projects within scope and budget.
-
Timely completion of vulnerability remediations validated through internal/external scans.
-
Clear and accurate documentation of configurations, diagrams, and changes.
-
Strong collaboration with IT, Operations, vendors, and cross-functional teams.
-
Ongoing professional growth through training and certification.
-
Travel to refinery and remote sites as needed.
-
Proactive monitoring and reporting on network performance, utilization, outages, and health metrics.
-
Effective communication across technical and non-technical stakeholders.
Never miss an opportunity! Create an alert based on the job you applied for.
