Koch
Website:
kochinc.com
Job details:
Your Job
As a Network Architect, you will define and evolve the enterprise network architecture for LAN, Wireless, and Cisco ISE, shaping secure, resilient, and scalable connectivity platforms that enable Koch’s businesses. This role plays a critical part in modernizing foundational network services by embedding Security First, Zero Trust, and automation‑driven design into long‑term technology strategy and roadmaps. You will influence enterprise-wide decisions, reduce risk, and enable faster business outcomes through modern, identity‑centric network architectures.
Our Team
You will be part of Koch’s Global IT Infrastructure Network Architecture team, a group responsible for setting enterprise network direction and standards across Koch companies. The team collaborates closely with Infrastructure, Security, and Application partners to deliver scalable, secure, and standardized network solutions that support diverse business and manufacturing environments worldwide.
What You Will Do
Architecture & Technical Leadership
- Own and evolve the enterprise LAN, Wireless, and Cisco ISE architecture roadmap, aligning platform capabilities to business priorities, security posture, and long‑term technology strategy.
- Define and govern architecture standards, reference designs, and architectural guardrails for campus, Enterprise LAN, wireless infrastructure, and identity‑based access control.
- Serve as a senior technical authority for architecture reviews, design approvals, and strategic technology decisions related to LAN, wireless, and ISE.
- Act as a trusted advisor to Infrastructure, Security, and Application teams when network identity, access, or connectivity decisions have an architectural impact.
Network LAN & Wireless Architecture
- Architect scalable, resilient, and secure wired and wireless access network solutions across corporate, industrial, and hybrid environments.
- Define RF design principles, wireless capacity and resiliency models, and onboarding patterns that support modern device diversity (corporate, OT, BYOD, and IoT where applicable).
- Guide platform lifecycle decisions, including hardware standards, software versions, and feature adoption.
Cisco ISE & Identity‑Based Networking
- Own the architectural strategy for Cisco Identity Services Engine (ISE), including authentication, authorization, posture assessment, and policy enforcement.
- Design identity‑centric access models that integrate with enterprise identity providers, certificates, and security platforms.
- Define scalable policy models that balance security, operational simplicity, and automation while supporting Zero Trust principles.
Governance, Standards & Automation
- Translate architectural strategy into enforceable standards, patterns, and reference architectures.
- Promote automation‑first and policy‑as‑code approaches for network access control, configuration consistency, and lifecycle management.
- Influence tooling and processes to reduce manual effort, configuration drift, and operational risk.
Incident Escalation & Continuous Improvement
- Serve as a T4 escalation point for complex LAN, wireless, and identity‑related incidents with architectural impact.
- Lead or guide root cause analysis for systemic issues and ensure learnings are incorporated into improved standards and designs.
Who You Are (Basic Qualifications)
- Demonstrated experience designing and governing enterprise‑scale LAN and wireless network architectures.
- Deep hands‑on architectural experience with Cisco switching, wireless platforms, and Cisco ISE.
- Strong understanding of network access control and identity‑based networking concepts, including authentication, authorization, and policy enforcement.
- Advanced knowledge of TCP/IP networking fundamentals, including switching, VLANs, spanning-tree, and access‑layer design principles.
- Advanced knowledge of RF engineering, spectrum analysis, wireless surveys, etc.
- Experience integrating network designs with enterprise security and identity strategies.
- Proven ability to influence without direct operational ownership through collaboration and architectural governance.
What Will Put You Ahead
- Experience with Zero Trust architectures and identity‑centric, least‑privilege access models.
- Background in network automation, infrastructure‑as‑code, or API‑driven networking.
- Exposure to hybrid identity and certificate‑based authentication models.
- Scripting or automation experience (e.g., Python), and familiarity with Git‑based or CI/CD workflows.
- Relevant industry certifications (preferred, not required).
At Koch companies, we are entrepreneurs. This means we openly challenge the status quo, find new ways to create value and get rewarded for our individual contributions. Any compensation range provided for a role is an estimate determined by available market data. The actual amount may be higher or lower than the range provided considering each candidate's knowledge, skills, abilities, and geographic location. If you have questions, please speak to your recruiter about the flexibility and detail of our compensation philosophy.
Who We Are
At Koch, employees are empowered to do what they do best to make life better. Learn how our business philosophy helps employees unleash their potential while creating value for themselves and the company.
Additionally, everyone has individual work and personal needs. We seek to enable the best work environment that helps you and the business work together to produce superior results.
Click on Apply to know more.