1st solution consulting gmbh logo

Network Automation Engineer (m/f) - Remote

1st solution consulting gmbh
2 hours ago
Contract
Not Specified
United Kingdom

Network Automation Engineer (m/f)

Start: ASAP

Duration: 9 months

Location: remote

What You'll Do

  • Automate Everything: Build and maintain Ansible roles/collections for network and DNS policy (API-first, REST/JSON), with Molecule tests and linting gates.
  • Codify Policy: Translate business requirements into ipsets, ACLs, DNS policies (incl. RPZ/split-horizon), and Cisco SSE policies via automated APIs (Python + Ansible).
  • Linux Orchestration: Manage life cycle of Linux-based network nodes (templated configs, golden baselines, drift detection, compliance checks).
  • DNS DoH/DoT Ownership: Design, deploy, and operate DoH/DoT (client and resolver side); manage PKI and certificate rotation, CA chains, and trust anchors; define fallback behavior (UDP/TCP 53) and egress controls; ensure Proxy/PAC compatibility; implement staged rollouts and canaries.
  • Pipeline Engineering: Enforce GitOps via AWX/Tower and GitHub/GitLab CI; sandbox tests, approvals, and progressive deployments.
  • Observability & SLOs: Instrument network/DNS/SSE automation with dashboards, alerts, and synthetic tests (latency, success rates, error budgets); drive incident response and post-incident reviews.
  • Vendor Integration: Act as primary technical lead for Cisco API interfaces and related managed services.

Required Experience

  • 5+ years in Linux systems engineering with a heavy networking focus (iptables, ipsets, routing tables, TCP/IP fundamentals).
  • 3+ years Ansible at scale: idempotent roles, Jinja2, dynamic inventory, Vau Molecule tests; ansible-lint/yamllint; AWX/Tower job templates and workflows.
  • API-First Mindset: Proven automation of third-party managed services (Cisco Umbrella/Secure Access, Meraki, Cloud DNS) using Python and Ansible.
  • GitOps Core: Experience with GitHub/GitLab CI pipelines, merge request workflows, quality gates, and staged rollouts.
  • DNS Architecture: Forwarding chains, split-horizon/views, RPZ; hands-on DoH/DoT (client/resolver configs, PKI/certs, Proxy/PAC interplay, fallback strategy, telemetry/metrics).