Overview
RevOne Companies is seeking an experienced Senior Network Administrator to design, implement, and maintain the network infrastructure that powers our multi-company operations. This is a hands-on, senior individual-contributor role focused primarily on enterprise networking, network security, and cloud network connectivity — with secondary responsibility for adjacent infrastructure (server, virtualization, storage, and backup) shared across the broader IT team. You will work with enterprise-grade routing, switching, and next-generation firewall platforms; experience with our specific stack (Palo Alto and Cisco) is preferred but not required.
The Senior Network Administrator works closely with IT leadership, cloud architecture, and security to align network design with business goals and our regulatory obligations (HIPAA, PCI DSS, FISMA). This position is based on-site in Greenwood, IN.
Role Scope
Primary focus (approximately 70% of the role): Network engineering and operations — LAN/WAN, wireless, enterprise next-generation firewalls, enterprise switching and routing, VPN, and AWS network connectivity across multiple accounts.
Secondary focus (approximately 30%): Supporting adjacent infrastructure — Windows Server/Active Directory, VMware vSphere, Veeam backup, on-premises storage — in collaboration with the rest of the IT team. You will not own these stacks alone, but you should be competent enough to operate, troubleshoot, and patch them as part of a cross-functional infrastructure team.
Essential Duties and Responsibilities
Network Infrastructure
- Design, configure, and maintain network infrastructure including routers, switches, firewalls, VPNs, and wireless access points across multiple sites.
- Administer enterprise switching: VLANs, trunking, spanning tree, routing protocols (OSPF, BGP where applicable), route configuration, and access control lists.
- Plan and execute network changes, upgrades, and expansions for new offices, business units, or workload requirements; coordinate change windows and stakeholder communication.
- Maintain core network services: DNS, DHCP, NTP, RADIUS/802.1X, and directory-integrated authentication.
- Manage IP address allocation and network segmentation strategy; maintain accurate IPAM records.
- Support wireless infrastructure (controllers, access points, SSID/policy design) and ongoing capacity tuning.
Firewall, Network Security, and Zero Trust
- Administer enterprise next-generation firewalls (NGFW): build and tune security policies, application/URL filtering, security profiles, NAT, traffic decryption, and high-availability configurations.
- Build and support site-to-site and remote-access VPN tunnels (IPsec, SSL VPN, client VPN solutions).
- Apply Zero Trust networking principles — micro-segmentation, least-privilege access, identity-aware policy — to ongoing network design.
- Implement and tune IDS/IPS, web filtering, and DNS security controls.
- Support regular vulnerability assessments, penetration tests, and network security audits; remediate findings and document mitigations.
- Enforce network security best practices in alignment with HIPAA, PCI DSS, and FISMA control requirements.
AWS and Hybrid Cloud Networking
- Operate and maintain AWS network infrastructure across multiple accounts: VPCs, subnets, route tables, security groups, NACLs, VPC peering, and PrivateLink endpoints.
- Support Transit Gateway, site-to-site VPN, and (where applicable) Direct Connect for hybrid connectivity between on-premises sites and AWS.
- Work alongside the cloud architecture team to support network connectivity for ECS Fargate microservices and other AWS-hosted workloads.
- Manage Route 53 (public and private hosted zones), Resolver endpoints, and cross-environment DNS resolution.
- Use AWS-native observability tools (CloudWatch, VPC Flow Logs, CloudTrail) to monitor and troubleshoot network behavior in AWS.
- Assist in the continued migration of locally hosted services to AWS, including network cutover planning, DNS strategy, and decommissioning legacy paths.
Monitoring, Observability, and Tier-3 Support
- Use network monitoring and observability tools (e.g., SolarWinds, PRTG, Wireshark, NetFlow/sFlow, CloudWatch) to proactively detect and resolve performance, availability, and connectivity issues.
- Provide Tier-3 support for complex network and infrastructure issues escalated from the IT Help Desk and junior administrators.
- Lead the technical response to network outages and major incidents; drive root cause analysis and corrective action.
- Monitor assigned ticket queues; address tickets within SLA and document resolutions.
Automation and Documentation
- Use scripting (PowerShell, Python, or Bash) to automate routine network tasks, configuration audits, and reporting.
- Where appropriate, manage network resources using infrastructure-as-code (e.g., Terraform for AWS network resources).
- Maintain accurate, current network diagrams, configuration baselines, and IT equipment inventory.
- Develop and maintain runbooks, standard operating procedures, and post-incident write-ups.
- Prepare reports on network performance, security posture, and capacity planning for IT leadership.
Adjacent Infrastructure (Secondary)
- Support the Windows Server environment, including Active Directory, Group Policy, file services, and patch management.
- Support the VMware vSphere environment alongside the broader infrastructure team, including basic performance tuning and capacity awareness.
- Support on-premises storage (Nimble SAN or equivalent) and server hardware; coordinate hardware refreshes and end-of-life replacements.
- Support Veeam backup operations — monitor nightly backups, respond to failures, and assist with restore procedures.
- Support endpoint security tooling (Trend Micro Apex One or comparable) as part of broader security operations.
Business Continuity and Vendor Management
- Contribute to and test disaster recovery plans for network and supporting infrastructure; participate in DR exercises and tabletop reviews.
- Manage relationships with ISPs, network hardware vendors, and managed service providers; assist with procurement of network hardware and services.
Other
- Work in a deadline-driven environment, including occasional after-hours change windows and participation in an on-call rotation.
- Other duties as assigned by management.
Required Qualifications
- Bachelor’s degree in Computer Information Systems, Computer Science, Information Technology, or a related field — or equivalent professional experience.
- 5+ years of hands-on experience in enterprise network administration.
- In-depth knowledge of core networking: TCP/IP (v4 and v6), routing, switching, VLANs, DNS, DHCP, HTTP/HTTPS, SSL/TLS.
- Demonstrated production experience administering an enterprise next-generation firewall platform (e.g., Palo Alto, Cisco Firepower, Fortinet, Check Point) — policy management, application/URL filtering, security profiles, VPN, and high availability.
- Strong hands-on experience with enterprise switching and routing platforms (e.g., Cisco, Arista, Juniper, HPE/Aruba, Meraki) — VLANs, routing protocols, and ACL management.
- Working experience with AWS networking: VPCs, subnets, route tables, security groups, NACLs, site-to-site VPN, and basic IAM concepts.
- Practical scripting skills for automating routine tasks — PowerShell preferred; Python or Bash also valued.
- Working knowledge of HIPAA, PCI DSS, and vulnerability management practices.
- General competence with Windows Server, Active Directory, Group Policy, and VMware vSphere sufficient to support and troubleshoot as part of the infrastructure team.
- Strong written and verbal communication skills, with the ability to document clearly and explain technical concepts to non-technical stakeholders.
- Ability to work on-site in Greenwood, IN.
Preferred Qualifications
- Hands-on production experience with Palo Alto Networks firewalls and/or Cisco networking (Catalyst switching, ASA) — our current stack.
- Industry certifications such as Cisco CCNA/CCNP, Palo Alto PCNSA/PCNSE, AWS Certified Advanced Networking – Specialty, AWS Certified Solutions Architect, or CompTIA Network+/Security+.
- Experience operating in a multi-account AWS environment, including Transit Gateway, PrivateLink, and Route 53 Resolver.
- Experience with BGP in a production environment (on-premises, with ISPs, or for AWS Direct Connect / VPN).
- Experience with SD-WAN, SASE, or Zero Trust Network Access (ZTNA) solutions.
- Experience with infrastructure-as-code (Terraform, CloudFormation) for network resources, and configuration management tooling (Ansible) for network devices.
- Familiarity with container networking concepts (ECS, Fargate, Kubernetes).
- Experience with AWS security/observability services: GuardDuty, Network Firewall, WAF, VPC Flow Logs, CloudWatch.
- Experience supporting healthcare or other regulated environments (HIPAA, PCI DSS, FISMA).
- Experience with Veeam backup and Nimble (or comparable) SAN administration.
Work Environment
- On-site at the Greenwood, IN office.
- Occasional travel to other RevOne locations or data center facilities as needed.
- Participation in an on-call rotation and after-hours maintenance windows.
Physical Requirements
- Ability to carry IT equipment (servers, switches, workstations, etc.) to different locations within the facility.
- Ability to bend, stoop, and maneuver into tight or confined spaces to install, connect, and service equipment.
- Ability to travel to various floors and locations throughout the company.
Pay: $70,000.00 - $100,000.00 per year
Benefits:
- Health insurance
- Life insurance
- Paid time off
- Retirement plan
- Vision insurance
Work Location: In person
