Network Solution Architect Based in Corsham Contract until March 31t 2021 The Network Solution Architect supports the Solution Management team providing networking subject matter expertise for the NSoIT(D) solution. The Network Solution Architect is responsible for:Working with the Solution Design Authority to develop and refine NSoIT(D)'s technological roadmap and High-Level Design (HLD).Working with the users to understand their requirements and identify any constraints that may impact on the networking solution.Determining the network interoperability, dependencies, and interactions between the NSoIT(D) instances as well as with another IS.Determining technical requirements.Developing, architecting, and documenting NSoIT(D) Intermediate Level Design (ILD) networking solutions for the Development team to implement, ensuring their coherence across the NSoIT(D) solution and compliance with applicable standards and policies.Working with stakeholders and the Solutions Team to develop, architect, and document technical patterns for common problems.Working with the Solution Engineers to ensure that the design intent is being realised.Reviewing and approving Low and Detailed Level Design (LLD and DLD) solutions and supporting artefacts.Conducting product assessments for all networking hardware.It is essential that individuals have:A detailed understanding of network solution architectures with at least 3 years demonstrable experience, advanced knowledge, and understanding, within the last 5 years, of the design, selection, deployment, and troubleshooting of networks, in both a Data Centre and operational environment.- Delivering against high pressure timelines and in complex organisations.At least 3 years demonstrable experience, expert knowledge, and understanding, within the last 5 years, of the design, deployment, and troubleshooting of:Hierarchical IP Subnetting.Routing protocols, internal and external, OSPF, and BGP.Network architectures.Cisco switching fabrics.Cisco IOS XE.AAA Management Platform (eg Cisco Identity Services Engine)Layer 3 Multicast / PIMVirtual networking, utilising the vSphere suite of products, including: ESXi (Hypervisor), vCentre (Controller), Virtual Network Services ESG/NSX (Virtual Switching and Routing), and Site Recovery Manager.VXLANFirewall IPS/IDS (eg Cisco Firepower)WAN management using Cisco IWAN and DMVPNNetwork management including: Cisco ISE, ZTP and automation.Hardware licensing servers (e.g. Cisco Licensing Manager)Hardware performance and event monitoring (eg Solarwinds).Network configuration, including DHCP, DNS, AD.Trust/Security Certificate Management using PKI in a virtual environment.All aspects of QOS (Traffic Shaping / Policing / Scheduling / Congestion Management and Avoidance).Advanced knowledge of hardware security, including:NCSC guidelines and security principles.CIS security benchmarking and hardening techniques.Micro-segmentation.IP Cryptography devices.Currently hold, or working towards at least one of the following professional certifications:Networking certification - CCIE (Cisco Certified Internetwork Expert) or similar.Virtualisation certification - VMware VCP-NV (VMware vCenter Certified Professional - Network Virtualisation)It is desirable that individuals have experience of:Working within the public sector, preferably Defence, and ideally with Defence Digital (formerly ISS).Defence networks and gateways.Delivering accredited secure solutions within the UK Public Sector.Delivering in Agile and Waterfall project management environmentsLarge Virtualisation infrastructure environments that operate at scale.Working with international partners, including NATO, to delivermultinationalinteroperability. Knowledge of the Atlassian toolset (JIRA and Confluence) to record and document work.A Computer Science university-based education at bachelor's level. Due to the nature of the role, candidates are required to hold an active SC/DV clearance or be willing/eligible to undergo the process.