Senior Network Engineer at Best Buy in Richfield, Minnesota

Job Description:

Best Buy’s Dgital & Technology team is seeking a Senior Network Engineer to help lead and innovate our network security solutions. This engineer will work with other engineers to implement, manage and support areas to include: security platforms (firewalls, proxies, web application firewalls SSL Decrypt, Cisco ISE), as well as the design and deployment of various levels of security zones in the network infrastructure; storage solutions, load balancing solutions and cloud-based computing solutions. This engineer will work with other engineers supporting areas of Data Center design and integration, including large route/switch platforms and Software Designed Networking solutions such as Cisco ACI as well as support remote sites, vendors, employees, and applications/technology teams.

Key responsibilities include:

• Design, implementation, and integration of data center, cloud, and end-user network architectures as required with other security technologies and network technologies (retail locations, corporate campus, data centers)


• Setting network standards and processes for Tier 1 and 2 staff


• Work with Project Management, architecture, business, technical, and security teams to achieve project delivery regarding network security-related initiatives


• Escalation support for firewall, load balancer, proxy, SSL Decrypt, DNS, and ISE platforms


• Vendor management skills (hardware/software security vendors as well as third party vendors)


• Collaboration with cross-functional teams to ensure alignment and resolve concerns


• Maintaining a working knowledge of security and network standards


• Building strong relationships with stakeholders


• Work with leadership and architecture teams to advance and improve the current network and data center Security and Load Balancing platform solutions on-premise and in cloud environments


• Work with leadership and architecture teams to advance and improve the current network security posture for end-users and data center resources.


• Take leadership on root cause analysis of problems and potential solutions in your area of expertise

• 8+ years' information technology experience in networking and a bachelor’s degree or 10+ years of the same experience without a bachelor’s degree


• 5+ years’ experience working with multiple data center and perimeter security environments


• 3+ years’ experience as a Senior Network Engineer with responsibilities including support of security hardware


• 2+ years’ IDS/IPS Firewalls (such as SNORT, Wildfire)


• 2+ years’ experience with designing/supporting cloud security solutions (AWS, Azure, GCP)


• 3+ years’ experience with Load Balancers (Local & Global, Citrix, and F5 preferred)


• 2+ years’ experience with Proxy and SSL Decrypt solutions (Bluecoat and A10 preferred)


• Routing Protocol knowledge (BGP, OSPF, EIGRP)


• Prior experience with network monitoring and security products


• Ability to work on-call and alternative hour schedules when required

• PCI / HITRUST Audit Knowledge


• Prior experience with common network scripting programming languages


• Prior experience with common automation tools such as Ansible, Puppet, Chef


• Prior experience with API integrations


• Prior experience with Cisco ISE support for both RADIUS/TACACS and security group tagging


• Prior experience engineering networks with more than 2000 devices


• Prior experience with Cisco technologies/solutions including Nexus 7000/6000/5000/2000, LAN controllers, fixed-configuration switches, and Cisco ISR and ASR series routers


• Recent hands-on experience with enterprise firewall and VPN platforms (Cisco ASA/Sourcefire & Firepower)


• Experience with Cisco ACI


• Prior experience with the DNS/DHCP (Infoblox preferred)


• Experience managing partner and vendor relationships to achieve business outcomes


• Prior experience in a global enterprise