We are seeking a highly skilled Network Engineer to design, implement, secure, and support our enterprise network infrastructure. This role is responsible for firewall security, network access control, LAN/WAN operations, wireless networking, and SD-WAN connectivity across multiple locations. The ideal candidate has deep, hands-on experience with Palo Alto firewalls, Aruba ClearPass 802.1X authentication, Cisco LAN, Meraki lan, wireless and ISP/vendor management in a complex, distributed environment.
Network Design & Operations
Design, implement, and support enterprise LAN, WAN, wireless, and SD-WAN environments
Manage and optimize Cisco switching infrastructure (VLANs, trunking, STP, routing)
Administer Meraki wireless networks, including AP deployment, RF optimization, and dashboard configuration
Maintain global WAN connectivity and ensure high availability across all sites
Cloud Networking (AWS Preferred)
Provide hands-on support for AWS network infrastructure
Deploy, configure, and troubleshoot AWS networking components including VPCs, security groups, NACLs, and routing
Implement and manage AWS Elastic Load Balancing, including Application Load Balancers (ALB) and Network Load Balancers (NLB)
Support hybrid connectivity between on-prem and AWS environments (site-to-site VPN, client VPN, Direct Connect)
Monitor performance, availability, and security of cloud-based network services
Collaborate with application teams to ensure proper load balancing, failover, and scalability
Security & Network Access Control
Configure, manage, and troubleshoot Palo Alto firewalls, including security policies, NAT, VPNs, threat prevention, and URL filtering
Implement and support 802.1X network authentication using Aruba ClearPass, including wired and wireless NAC policies
Collaborate with security teams to enforce network security standards and compliance requirements
Monitor and remediate network vulnerabilities and security events
Connectivity & ISP Management
Manage SD-WAN solutions to ensure reliable and cost-effective site connectivity
Oversee ISP relationships, including circuit provisioning, troubleshooting, cellular connectivity and escalation management
Support site-to-site VPNs and remote user VPN connectivity
Monitoring, Maintenance & Documentation
Monitor network performance and availability using enterprise monitoring tools
Perform firmware upgrades, configuration audits, and network health checks
Create and maintain network documentation, diagrams, standards, and operational procedures
Participate in disaster recovery planning and testing for network services
Required Qualifications
7+ years of hands-on experience in enterprise network engineering
Strong expertise with Palo Alto firewalls, including threat prevention and URL filtering
Proven experience implementing Aruba ClearPass for 802.1X network authentication
Deep knowledge of Cisco LAN switching and Meraki wireless environments
Experience with SD-WAN, WAN technologies, and ISP circuit management
Solid understanding of routing protocols (OSPF, BGP preferred)
Strong troubleshooting, documentation, and communication skills
Preferred Qualifications
Experience supporting global or multi-site enterprise networks
Familiarity with network monitoring tools (e.g., SolarWinds)
Network or security certifications (CCNP, CISSP, PCNSE, Palo Alto, Aruba, etc.) a plus
Movado Group, Inc. is an equal opportunity employer. It prohibits discrimination based on age, color, disability, marital or parental status, national origin, race, religion, sex, sexual orientation, gender identity, veteran status or any other legally protected status in accordance with applicable federal, state and local laws.
