×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Systems Engineer Cybersecurity Cloud Computing

Principal Network Architect - Cisco SD-Access & Enterprise Networking

Job in California, Moniteau County, Missouri, 65018, USA
Listing for: NTT DATA, Inc.
Full Time position
Listed on 2025-12-02
Job specializations:
  • IT/Tech
    Systems Engineer, Cybersecurity, Cloud Computing
Job Description & How to Apply Below
Location: California

Principal Network Architect – Cisco SD‑Access & Enterprise Networking

5 days ago Be among the first 25 applicants

Get AI‑powered advice on this job and more exclusive features.

Make an impact with NTT DATA Join a company that is pushing the boundaries of what is possible. We are renowned for our technical excellence and leading innovations, and for making a difference to our clients and society. Our workplace embraces diversity and inclusion – it’s a place where you can grow, belong and thrive.

Your day at NTT DATA

We are hiring principal‑level network architects to lead design and delivery of multi‑site Cisco Software‑Defined Access (SD‑Access) solutions  will set architecture direction, drive complex deployments across distributed campuses, and mentor engineers while partnering closely with security and operations. The ideal candidate holds an active CCIE and demonstrates deep, hands‑on expertise across Cisco routing/switching, Cisco Catalyst Center (formerly Cisco DNA Center), Cisco ISE, Cisco FTD firewalls, and Cisco SD‑WAN, with expert‑level command of BGP, EIGRP, OSPF, and related enterprise routing protocols.

Key Responsibilities
  • Own end‑to‑end SD‑Access architecture for large, multi‑site enterprises: fabric design (control/edge/border), transit options, segmentation (SGTs/Trust Sec), identity policy, and integration with WAN and data center.
  • Lead Catalyst Center–driven automation: design templates, SDA workflows, network assurance, SWIM, and closed‑loop operations aligned to reliability/SLOs.
  • Design identity‑centric security with ISE: policy sets, authorization profiles, posture, PxGrid integrations, wired/wireless 802.1X/MAB, guest/BYOD, and scalable group policies.
  • Engineer secure edge and campus perimeters:
    Cisco FTD/Firepower policy design, NAT, VPN, IDS/IPS, SSL decryption strategy, and high availability.
  • Architect SD‑WAN underlay/overlay: transport independence, application‑aware routing, DIA/Cloud on‑ramp, security integration, and multi‑region scale.
  • Expert routing at scale: BGP (policy, route reflectors, communities), OSPF, EIGRP, ECMP, redistribution strategies, route filtering, summarization, and IPv6 planning.
  • Drive modernization roadmaps: brownfield to SDA migration, hierarchical campus design, QoS, multicast, wireless controller (Catalyst 9800) alignment, and resiliency patterns.
  • Deliver hands‑on build and escalation leadership: lab validation, pilot, phased rollout, cutover plans, MOPs, change windows, and root‑cause analysis for P1/P2 incidents.
  • Mentor and uplift engineering teams: design reviews, standards, runbooks, and enablement sessions for operations and field engineers.
  • Stakeholder leadership: collaborate with security, EUC, cloud, and application teams; translate business outcomes into technical architectures and measurable milestones.
  • Documentation & governance: HLD/LLD, as‑builts, standards, security exceptions, and compliance artifacts; contribute to reference architectures and reusable templates.
Required Qualifications (Must‑Have)
  • Active CCIE (any track; Enterprise Infrastructure and/or Security strongly preferred).
  • 10+ years enterprise networking experience, including 3–5+ years leading SD‑Access architecture and deployment across multiple sites.
  • Proven, exceptional hands‑on skills with Cisco routing/switching and Catalyst Center (formerly Cisco DNA Center) for SDA automation and assurance.
  • Deep expertise with Cisco ISE (policy, 802.1X, SGT/Trust Sec) and Cisco FTD (Firepower) firewalls (threat, access control, NAT/VPN, high availability).
  • Strong experience with Cisco SD‑WAN (design, policy/templating, security integration, operationalization).
  • Expert‑level knowledge of BGP, EIGRP, OSPF, redistribution, and route‑policy design for large enterprises.
  • Demonstrated success leading complex, multi‑phase migrations and mentoring senior engineers.
Preferred Qualifications
  • CCDE or dual CCIE;
    Cisco Certified Specialist certifications in SDA, ISE, or SD‑WAN.
  • Automation fluency (Ansible, Python, Terraform), Git‑based workflows, and API integration with Catalyst Center/ISE/FTD/SD‑WAN.
  • Wireless (Catalyst 9800/Prime/Catalyst Center Assurance), QoS strategy, multicast, NAC posture, and Zero…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search