Senior IT/OT Network Architect

Coditas

Location: Pune Division, Maharashtra, India
Job type: Full-time

Required skills

Cisco ASA
AWS
Azure
BGP
EC2
firewall
GCP
MFA
OSPF
VPC

About the role

Coditas

Website: coditas.com
Job details:

Location: Bangalore (73 Church Street, Bengaluru, Karnataka 560001)

Experience: 12 to 18 years

WHAT WE ARE LOOKING FOR

We are seeking a Senior IT/OT Network Architect with a world-class foundation in Core Networking (Layer 2/3) and Secure Site-to-Site Connectivity. This role is the technical expert for our global industrial footprint, responsible for designing resilient plant-floor networks and the Secure Cloud/VPN Tunnels that interconnect our sites.

Skills Required

Networking (L2/L3)

Switching, VLANs, BGP, OSPF, VRF, routing protocols

Firewall & Security

Cisco ASA / FTD / FMC, DMZ design, segmentation

Zero Trust

ZPA / ZIA / Cisco ZTA, MFA, privileged access

Cloud — AWS (Mandatory)

VPC, EC2, Transit Gateway, Direct Connect, virtual firewall

Standards Awareness

IEC 62443, NIST CSF, ISO 27001, Purdue Model

Certifications (Preferred)

CCNP / CCIE, AWS Advanced Networking, CISSP

MUST-HAVE REQUIREMENTS

• Layer 2 / Layer 3 Networking — VLANs, STP, BGP, OSPF, VRF — must have designed in real environments

• Firewall Architecture — Hands-on Cisco ASA / FTD / FMC, DMZ and segmentation design

• Zero Trust — Replaced VPN with ZTA, experience with Zscaler or Cisco ZTA – similar tools

• AWS Cloud Networking — VPC, EC2, Transit Gateway, Direct Connect, Security Groups, virtual firewall on EC2 — mandatory, not optional – working knowledge

• Standards Awareness — Knows IEC 62443 [ used for design the network], NIST CSF, ISO 27001, Purdue Model at a conceptual level — does not need deep implementation experience

CLOUD NETWORKING DETAIL – need knowledge on cloud [3-5 years exp]

Candidate must have hands-on AWS experience. Azure or GCP knowledge is a bonus but AWS is required. Cloud hand-on is a must.

• VPC & Subnets — Design public/private subnets, route tables, internet gateway, NAT gateway

• EC2 — Launch and configure instances, assign ENIs, Elastic IPs, IAM roles, Auto Scaling

• Virtual Firewall on EC2 — Deploy Cisco FTDv, Palo Alto VM-Series, or FortiGate as EC2 instances

• Virtual Router on EC2 — Deploy software routers (Cisco CSR 1000V / VyOS), BGP peering in AWS

• Connectivity — Direct Connect, Site-to-Site VPN, Transit Gateway for hybrid and multi-site

• Security — Security Groups, NACLs, AWS Network Firewall, VPC Flow Logs, CloudTrail

Click on Apply to know more.

This page is fully interactive when JavaScript is enabled. Please enable JavaScript to apply or browse related roles.