Security Clearance:
Negative Vetting 2 (NV2) is required. Candidates with NV1 would be considered on the condition that they have completed and submitted a security pack (NV1 to NV2 upgrade) to the Australian Government Security Vetting Agency (AGSVA) prior to commencement.
SFIA Level – SINT L5
The Wide Area Network Technician will be required to perform and/or have responsibility for duties including, but not limited to:
Identify, develop and evaluate technical concepts and capabilities against functional and non-functional requirements.
Translate system specifications (functional, performance) and requirements (functional, processual, procedural, security) into technical solutions that align with architectural design principles.
Facilitate the design, build, development and transition of secure technical solutions aligned with best practice and relevant governance and security principles and frameworks.
Provide operational support to the project team for respective technologies
Conduct security requirement analysis and development to achieve certification and accreditation of solutions as per relevant policies and frameworks
Author, review, maintain and contribute to Solution Designs, Standard Operating Procedures, As-Built-As-Configured and other required documentation artefacts.
Collaborate with vendor/supplier specialists to provide solutions and optimise designs to achieve expected outcomes. It is expected that the candidate may not be familiar with certain technologies or products, but will be able to gain a working knowledge rapidly based on their prior knowledge and experience.
Internal stakeholder collaboration, including participating in project meetings, workshops, informational sessions, training, requirements gathering, use case analysis, or other related activities.
Contribute to the development of system integration policies, standards and practices.
Conduct and support Validation and Verification (V&V) activities
Identification and assessment of technical risks; collaborate with project stakeholders to inform and provide mitigation options and caveats.
Report to the Technical Lead in relation to status of activities, identified risks and task completion at a high enough level to allow upward communication through the organisation chain of command.
Required Skills and Experience:
5+ years’ experience designing, implementing and supporting network infrastructure solutions in large scale, geographically dispersed and security-hardened on-premise environments which operate in low-bandwidth and disconnected states;
5+ years’ experience in designing, implementing and supporting large scale WAN networks with high grade cryptographic equipment;
Experience in designing, implementing and supporting WAN optimization solutions using technologies such as Riverbed;
Experience with designing, implementing in SDWAN Technologies.
Experience in designing, implementing and supporting network solutions for private cloud or multi-tenant environments;
Experience with troubleshooting complex WAN issues in air-gapped environments which utilize multiple bearers;
Experience in designing, implementing and supporting segmented network solutions in heavily virtualized environments;
Experience in implementing and testing Quality of Service (QoS) DSCP markings of traffic to meet defined standards within secure federated environments;
Strong experience OSPF, BGP, Multicast, QoS;
Ability to take requirements, standards and frameworks and apply in a practical application to future proposed solution designs and systems;
Strong communication, interpersonal and negotiation skills with demonstrable experience of presentation and engagement with stakeholders, projects and business areas;
Ability to rapidly build, automate and deliver proof of concept systems to support analysis, testing, accreditation and development activities within a DevSecOps framework;
Ability to adapt quickly to changing requirements in a fast paced highly kinetic environment to meet changing deadlines and deliverables;
Ability to work under broad direction with a high level of autonomy; and,
Experience developing highly available/fault tolerant systems, networks and infrastructure in a connected, partially connected, degraded or often disconnected state.
Desirable Skills and Experience
Experience in developing automated and orchestrated solutions for network technologies such as Arista, Fortinet, Riverbed, F5
Experience with SDN and Network Function Virtualisation (NFV);
Experience and/or knowledge in Load Balancing, Next Generation Firewalls, Software Defined Network and SD-WAN
Experience and/or knowledge in voice and video collaboration technologies;
Experience with scripting languages such as Python, Bash, Powershell;
Understanding of Virtualisation and Hyper-Converged Infrastructure, Active Directory and PKI certificate services;
Previous experience in a Technical Architect and/or Senior Operational Support role;
5+ years of experience in configuring, building and supporting multi-vendor geographically dispersed solutions;
5+ years designing, configuring, implementing and supporting secure infrastructure systems, including varying levels of required security, caveats and controls;
Experience with governance frameworks in relation to infrastructure service and security delivery including required subsystems, i.e.: Australia Information Security Manual (ISM);
Experience and knowledge in applying cyber-security controls and practices aligned to zero-trust architecture principles