Senior Network Engineer

Castleton Commodities International is hiring a Senior Network Engineer to own and evolve our enterprise network architecture while modernizing how the network is managed and changed. A core focus of this role is driving a shift from manual "click-ops" administration to Network Automation and Infrastructure as Code (IaC), so network and firewall changes become repeatable, auditable, and deployed through code (for example, Terraform and Ansible) rather than through admin portals with limited documentation. The Network Engineer will be hands-on in design, implementation, operations, and troubleshooting across on-prem and cloud environments, while also mentoring others and helping the broader team adopt an automation-first mindset. Responsibilities : Network Architecture & Design Develop and maintain enterprise network architecture, including LAN, WAN, WLAN, SD-WAN, and data center environments. Design and implement scalable, secure, and resilient network solutions aligned with business objectives. Evaluate new technologies and make recommendations to improve performance and security. Automation & Infrastructure as Code (Core Focus) Lead the adoption of Network Management as Code using Terraform, Ansible, APIs, and scripting (Python). Replace manual "click-ops" workflows with automated, version-controlled deployments and documented patterns. Enable consistent delivery of network and security changes through code review, standardized templates, and repeatable releases • Influence and enable the existing team to adopt and sustain an IaC mindset through coaching, standards, and reusable modules. Implementation & Operations Configure, deploy, and maintain network equipment, including routers, switches, firewalls, VPN appliances, and wireless infrastructure. Oversee lifecycle management of network hardware, software, and licensing Configure and manage wireless controllers (WLCs), access points, and wireless switches. Manage cloud-based networking across Azure, AWS, and hybrid connectivity, including ExpressRoute, Direct Connect/VPN, Transit Gateway, and core cloud network constructs such as firewall, load balancer, Cloud WAN, and WAF. Security & Compliance Implement and maintain network security controls, including segmentation, zero-trust principles, firewalls, IDS/IPS, and NAC solutions. Collaborate with security teams to ensure adherence to compliance and cybersecurity standards. Conduct regular vulnerability assessments and support remediation of network-related findings. Monitoring & Troubleshooting Monitor network performance and availability using enterprise tools such as SolarWinds, Plixer, Cisco Catalyst Center, Entuity, or similar platforms. Provide Tier 2/3 support for escalated network-related issues. Lead root cause analysis for network issues and develop long-term fixes Create and maintain detailed documentation of network configurations, diagrams, and processes. Leadership & Collaboration Serve as a technical escalation point for Network Engineers and other IT teams. Lead large-scale network projects, migrations, and upgrades. Collaborate with cross-functional teams including infrastructure, cybersecurity ,DevOps, Data Science & Technology, and application teams. Participate in vendor management and partner with vendors to drive outcomes Required Qualifications Bachelor's degree in Computer Science, Management Information Systems, or relevant field (or equivalent experience) 10+ years of experience supporting complex, multi-site and cloud-connected environments Strong experience with firewall platforms such as Cisco FTD and Palo Alto (or equivalent enterprise platforms) Experience with VPNs (IPSec, SSL), load balancers, and wireless technologies Experience with SD-WAN solutions including Meraki and VeloCloud Strong familiarity with network automation (Python, Ansible, APIs, and Terraform) Proficiency with cloud networking (Azure/AWS and OCI networking services) Experience maintaining and supporting WLAN environments Strong understanding of TCP/IP, routing protocols, switching technologies (STP, VLANs, EtherChannel), and firewall concepts Preferred Qualifications : Relevant certifications such as CCNP, CCIE, JNCIP, PCNSE, NSE, or equivalent senior-level credentials Experience with zero-trust architectures and SASE frameworks Knowledge of VoIP, QoS, unified communications networks, and Teams Telephony Ability to work effectively in a fast-paced, dynamic and high-intensity environment including open-floor plan if applicable to the position, with timely responsiveness and the ability to work beyond normal business hours when required. Employee Programs & Benefits: CCI offers competitive benefits and programs to support our employees, their families and local communities. These include: Competitive comprehensive medical, dental, retirement and life insurance benefits Employee assistance & wellness programs Parental and family leave policies CCI in the Community: Each office has a Charity Committee and as a part of this program employees are allocated 2 days annually to volunteer at the selected charities. Charitable contribution match program Tuition assistance & reimbursement Quarterly Innovation & Collaboration Awards Employee discount program, including access to fitness facilities Competitive paid time off Continued learning opportunities Visit to learn more! #LI-CD1

Created: 2026-03-04