Search Remote Jobs

Senior Network Engineer

Job not on LinkedIn

🕒 4 days ago

Apply Now
Find Similar Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Logo of LeoLabs

LeoLabs

51 - 200 employees

Founded 2016

🚀 Aerospace

🔧 Hardware

☁️ SaaS

Aerospace • Hardware • SaaS

LeoLabs is a commercial provider of persistent orbital intelligence and space domain awareness services. The company operates a network of ground-based, rapidly deployable radars and a cloud-based, AI-enabled platform to track and catalog objects in low Earth orbit, deliver real-time conjunction alerts, threat assessments, launch support, and space traffic management data for commercial and government customers. LeoLabs combines radar hardware, authoritative datasets, and SaaS analytics to help operators protect assets, avoid collisions, and manage launch and on-orbit operations.

📋 Description

• Design and implement secure network patterns that enforce identity, device posture, segmentation, logging, and policy-based access across users, sites, workloads, and administrative paths. • Implement and support SASE/ZTNA capabilities, including Cloudflare Government or comparable platforms, WARP/client access, private application access, gateway policies, DNS controls, and secure administrative access paths. • Help eliminate direct public administrative access to workloads by routing privileged access through approved identity-aware and policy-enforced access layers. • Develop network designs that support the principle that no workload, management interface, or privileged access path bypasses identity, policy, segmentation, and telemetry controls. • Lead the design and rollout of Network Access Control for office, edge, and remote site environments. • Implement or support 802.1X, RADIUS policy, device certificates, VLAN segmentation, and port-level admission control. • Segment remote site networks into appropriate zones, such as telemetry, management, vendor/service, and out-of-band management networks. • Assess switch, firewall, router, and edge-device readiness for NAC, IPSec, logging, and configuration baseline enforcement. • Design secure remote site connectivity using IPSec/private tunnels, certificate-based authentication, route controls, firewall policies, and deterministic telemetry paths. • Ensure edge and radar-site environments have no unnecessary public management exposure. • Implement firewall forwarding, tunnel telemetry, configuration backup, drift detection, and site-level logging into centralized monitoring and SIEM platforms. • Partner with Security, Cloud Engineering, SRE, and other Engineering teams to build detection and response use cases for tunnel anomalies, exposed management paths, unexpected peers, route changes, failed rekeys, and suspicious traffic patterns. • Design and support cloud network connectivity patterns across multiple cloud hosts and restricted workload zones. • Implement or support hub-and-spoke architectures, transit gateways, vWAN, private endpoints, DNS resolver patterns, egress inspection, firewall policy, and workload security-group guardrails. • Partner with Cloud Engineering to define baseline network guardrails for landing zones, including deny-public-admin policies, centralized egress, private admin paths, flow logging, routing standards, and tagging requirements. • Support cloud network segmentation for Corporate IT, restricted workloads, and other uses. • Ensure network logs are consistently forwarded into centralized telemetry and SOC platforms. • Support data-source onboarding for firewall logs, VPN/IPSec logs, SASE logs, NAC events, DNS logs, VPC/NSG flow logs, and remote site device logs. • Collaborate with the Head of IT and Security team to create network-focused detection content, response workflows, evidence artifacts, and runbooks. • Help validate detection coverage through test events, tabletop exercises, port scans, tunnel checks, and configuration drift reviews. • Create and maintain network diagrams, firewall rule documentation, routing designs, NAC policies, tunnel inventories, access paths, and operational runbooks. • Support compliance evidence generation for government compliance, control areas related to access control, audit logging, communications protection, configuration management, and incident response. • Participate in change control, architecture decision records, incident response, and post-implementation reviews. • Work closely with Security, Cloud Engineering, SRE, IT Support, and other Engineering teams to ensure clean operational handoff.

🎯 Requirements

• Must be eligible to obtain and maintain a U.S. personnel security clearance • 5+ years of hands-on network engineering experience in enterprise, hybrid cloud, regulated, or security-focused environments. • Strong experience with routing, switching, firewalling, VPNs, segmentation, DNS, NAT, TLS, certificates, and secure network design. • Hands-on experience with firewall policy management, IPSec tunnels, site-to-site VPNs, route control, and secure edge connectivity. • Experience implementing or operating NAC technologies, including 802.1X, RADIUS, VLAN assignment, device profiling, or certificate-based access. • Experience supporting remote-access or Zero Trust access platforms such as Cloudflare, Zscaler, Palo Alto Prisma Access, Cisco Secure Access, or similar. • Experience integrating network logs into SIEM or monitoring platforms. • Working knowledge of cloud networking concepts in AWS and/or Azure, including VPCs/VNets, routing, security groups, NACLs, private endpoints, flow logs, transit gateways, vWAN, or cloud firewalls. • Ability to write clear technical documentation, diagrams, implementation plans, runbooks, and operational procedures. • Strong troubleshooting skills across network, identity, endpoint, cloud, and application access layers.

🏖️ Benefits

• Global workforce: flexible remote/hybrid opportunities • Work on complex, meaningful missions with real-world impact • Unlimited paid time off for most roles • Competitive salary and equity packages • Comprehensive health, dental, and vision coverage • Access to the forefront of commercial space operations and defense innovation

Apply Now

Similar Jobs

🕒 July 10

Red River

501 - 1000

🔒 Cybersecurity

🤖 Artificial Intelligence

Sr. Network Engineer delivering complex multi-site networking solutions for enterprise customers. Leading SD-WAN deployments and providing guidance to junior engineers.

🕒 July 10

Data Concepts

201 - 500

🤝 B2B

🏢 Enterprise

☁️ SaaS

Network Engineer responsible for design, installation, and security of enterprise Cisco networks. Must have CCNP and experience with routing, switching, and security protocols.

🕒 July 10

Avenu Insights & Analytics

501 - 1000

🏛️ Government

📋 Compliance

☁️ SaaS

Senior Network Engineer leveraging extensive experience in LAN/WAN and cloud technologies. Joining Neumo's IT Infrastructure for project planning and security management.

🕒 July 9

CACI International Inc

10,000+ employees

🔒 Cybersecurity

Senior Network Engineer leading advanced network solutions for U.S. Space Force. Overseeing modernization projects and ensuring resilient connectivity across mission-critical environments.

🕒 July 9

Avenu Insights & Analytics

501 - 1000

🏛️ Government

📋 Compliance

☁️ SaaS

Senior Network Engineer at Neumo handling complex network architectures and cloud integration. Responsible for enhancing IT infrastructure with extensive networking skills in a collaborative environment.