- Looking for a seasoned Data Center Network Architect with deep expertise in F5 BIG IP to architect modernize and secure large scale high availability data center networks
- You will lead the end to end design covering routing switching DC fabrics EVPN VXLAN load balancing LTM GTM DNS security automation and hybrid connectivity cloud and WAN
- This role partners closely with infrastructure cloud security and application teams to deliver resilient scalable and policy driven architectures
- Architecture Design
- Own the data center network reference architecture covering core aggregation leaf spine DCI and edge services
- Design EVPN VXLAN fabrics multi pod multi site architectures and data center interconnects e
- g
- OTV EVPN DCI MPLS or SD WAN underlays
- Architect F5 BIG IP solutions for LTM Local Traffic Manager GTM DNS ASM Advanced WAF APM and SSL offload inspection
- Define service insertion patterns for L4 L7 services firewalls IDS IPS WAF DDoS proxies and app delivery pipelines
- Establish resiliency HA patterns capacity models and north south east west traffic engineering strategies
- Create standards for multi tenant segmentation VRF VRF lite micro segmentation SGT ACL models
- Implementation Integration
- Lead deployments and migrations across data centers with minimal downtime define cutover and rollback plans
- Implement F5 iRules iApps AS3 DO for policy automation and standardized application onboarding
- Integrate F5 with DNS DHCP IPAM DDI PKI SIEM SOAR identity LDAP AD and observability stacks
- Implement TLS SSL lifecycle management ciphers certificates OCSP stapling HSTS PFS and DDoS WAF protections
- Enable cloud connectivity and app delivery patterns Transit Gateway PrivateLink Global Accelerator or F5 Distributed Cloud as needed
- Operations Reliability Security
- Establish operational SOPs runbooks observability KPIs and proactive health checks
- Drive lifecycle management code upgrades ISSU patches and vulnerability remediation across network and F5 platforms
- Troubleshoot complex L2 L7 issues BGP ECMP MLAG EVPN SSL TLS HTTP TCP optimization DNS GSLB logic
- Define network security architecture segmentation firewall policy zones WAF policy baselines and compliance controls
- Leadership Governance
- Act as the SME Architect of record for data center and application delivery
- Lead design reviews produce HLD LLD and mentor engineering operations teams
- Partner with application owners to translate non functional requirements NFRs into scalable network and L7 designs
- Contribute to budget planning vendor selection POCs and roadmap development
Technology->SDN-NFV->Software Defined WAN( SDWAN),Technology->Infrastructure-Server Administration->DNS,Technology->Networking->Routing & Switching,Technology->Network-Load Balancer->F5,Technology->Network Management->DDI Solution
