Network Architect

Job Title: Network Architect
Request-ID:86269-1
Location: Frederick, MD
Duration: 6+ months
Pay Range: $50-60.00 /Hour on W2 only
Experience Requested - 10+ Years
Note: Applicant must be willing to work on W2.

Job Description:
We are seeking a highly experienced Senior Network Architect to lead the design, implementation, and migration of enterprise network infrastructure. This role will focus on evolving our current 2-tier network architecture into a scalable and secure 3-tier model (CoreDistributionAccess) while driving cloud integration, hybrid WAN solutions, and Zero Trust security initiatives. The ideal candidate will combine deep expertise in enterprise networking, security, and cloud connectivity with hands-on experience in automation and network optimization.

Key Responsibilities:

• Lead the design and migration from 2-tier to 3-tier network architecture.
• Define and execute a future-state network architecture roadmap aligned with business growth and scalability.
• Develop and maintain High-Level Designs (HLDs) and Low-Level Designs (LLDs).
• Architect and implement network segmentation strategies using VLANs, VRFs, and security zoning.
• Design and deploy high-availability colocation (Co-Lo) data center networks.
• Plan and execute data center migrations, including workload placement and transition strategies.
• Define Layer 2 and Layer 3 topologies, routing boundaries, and failover domains.
• Architect East-West and North-South traffic controls using Palo Alto firewalls.
• Implement Zero Trust security principles with identity-based controls (ClearPass integration).
• Develop and enforce zone-based firewall policies across edge, data center, and DMZ environments.
• Design and optimize hybrid WAN architecture (MPLS, Internet, SD-WAN).
• Lead Client VeloCloud SD-WAN deployments, including application-aware routing and policy design.
• Architect highly resilient WAN edge and branch connectivity solutions.
• Design and implement Azure hybrid connectivity using ExpressRoute, including BGP routing and redundancy.
• Develop hub-and-spoke Azure network architecture integrated with on-premises infrastructure.
• Optimize F5 LTM load balancing solutions for high availability and SSL offloading.
• Redesign access and distribution layer networks for scalability and segmentation.
• Integrate and manage Aruba Central wireless infrastructure.
• Drive network automation initiatives using NetBrain, Ansible, and Python.
• Implement network observability, telemetry, and proactive monitoring frameworks.
• Architect high-availability solutions across data center and colocation environments.
• Design and validate disaster recovery strategies and execute resiliency testing procedures.

Top Required Skills:

1. Enterprise Network Architecture (L2/L3, Data Center, WAN)
2. Palo Alto Firewalls & Zero Trust Network Security
3. SD-WAN (Client VeloCloud) & Azure Networking (ExpressRoute)

Preferred Skills:

1. Network Automation (Ansible, Python, NetBrain)
2. Aruba Wireless & ClearPass
3. F5 LTM Load Balancing

• Strong communication and analytical skills.
• Ability to collaborate with operations, technical teams, and stakeholders.
• Problem-solving mindset with attention to detail.
• Ability to lead workshops and training sessions.