Hi,
If you find yourself comfortable with the requirement, please reply with your updated resume and I will get back to you or I would really appreciate if you can give me a call back at my contact number
Duration 6+ Months
Location: Foxboro, MA (Onsite)
Local Candidates Only – Must provide proof (Driver’s License)
Must have strong Firepower experience
LinkedIn Must
Required Skills
- Strong experience with Cisco Firepower
- Expertise in Layer 3 network segmentation
- VLANs, routing, ACLs, VRFs, firewall policies
- Server farm segmentation and migration experience
- Network discovery, migration planning, and implementation
- Strong troubleshooting and documentation skills
Overview
The Kraft Group is undertaking an initiative to improve security and operational control within its server environment by transitioning from a flat server network segment to a Layer 3, highly segmented server farm.
We are seeking a Network Segmentation Engineer with strong Firepower expertise to support the Server team with discovery, target-state design alignment, migration planning, and execution oversight for this segmentation initiative.
This engagement will begin on a mutually agreed start date and continue for an initial three (3) month onsite engagement, with possible extension based on project needs.
Responsibilities
Engagement Scope
The Engineer will support the migration from a flat server network to a Layer 3 segmented environment and assist with:
- Server farm segmentation discovery and current-state analysis
- Review of VLANs, IP ranges, routing, and application dependencies
- Design alignment for Layer 3 segmentation strategy
- VRFs, routing boundaries, and firewall/policy requirements
- Migration planning, change management, and rollback procedures
- Post-implementation validation and documentation
Key Responsibilities
Discovery & Assessment
- Conduct current-state network and server connectivity analysis
- Review VLANs, subnets, routing, and firewall dependencies
- Identify server/application traffic flows and segmentation requirements
- Validate segmentation objectives and operational constraints
Design & Planning
- Define Layer 3 segmentation architecture and routing boundaries
- Plan VRFs, inter-segment controls, and firewall policies
- Develop implementation runbooks, rollback plans, and testing strategies
- Coordinate change windows and stakeholder communications
Implementation & Migration
- Execute segmentation and routing changes during approved windows
- Coordinate firewall and ACL policy updates
- Support migration activities and validate connectivity
- Execute rollback procedures if required
Testing & Validation
- Perform routing and reachability validation
- Verify application functionality after segmentation changes
- Ensure required traffic is permitted while restricting unnecessary access
- Validate monitoring and telemetry updates
Documentation & Knowledge Transfer
- Update as-built diagrams and configuration documentation
- Conduct handoff and operational knowledge transfer sessions
- Provide implementation summaries and support recommendations
Engagement Management
- Manage schedules, risks, issues, and action items
- Coordinate with Server, Network, and Security teams
- Conduct regular status meetings and provide progress updates
- Work with internal teams and third-party vendors as needed
Qualifications
- 7+ years of network engineering experience
- Strong Cisco Firepower experience required
- Hands-on experience with Layer 3 segmentation projects
- Experience with routing, switching, VLANs, VRFs, ACLs, and firewall policies
- Experience supporting enterprise server environments
- Strong documentation and communication skills
- Ability to work onsite in Foxboro, MA
Never miss an opportunity! Create an alert based on the job you applied for.
