New 
Principle Technical Architect
 TEKsystems | |
$90.00 - $130.00 / hr
| |
life insurance, sick time, 401(k), retirement plan
| |
 United States, California, Los Angeles | |
 Nov 19, 2025 | |
|
*Description*
Job Title: Senior/Principal Network Architect (L4-Principal) - Cisco SDAccess & Enterprise Networking Summary: We are hiring senior-level network architects (L4 through Principal) to lead design and delivery of multisite Cisco SoftwareDefined Access (SDAccess) solutions at scale. You will set architecture direction, drive complex deployments across distributed campuses, and mentor engineers while partnering closely with security and operations. The ideal candidate holds an active CCIE and demonstrates deep, handson expertise across Cisco routing/switching, Cisco Catalyst Center (formerly Cisco DNA Center), Cisco ISE, Cisco FTD firewalls, and Cisco SDWAN, with expertlevel command of BGP, EIGRP, OSPF, and related enterprise routing protocols. What you'll do (Key Responsibilities) Own endtoend SDAccess architecture for large, multisite enterprises: fabric design (control/edge/border), transit options, segmentation (SGTs/TrustSec), identity policy, and integration with WAN and data center. Lead Catalyst Center-driven automation: design templates, SDA workflows, network assurance, SWIM, and closedloop operations aligned to reliability/SLOs. Design identitycentric security with ISE: policy sets, authorization profiles, posture, PxGrid integrations, wired/wireless 802.1X/MAB, guest/BYOD, and scalable group policies. Engineer secure edge and campus perimeters: Cisco FTD/Firepower policy design, NAT, VPN, IDS/IPS, SSL decryption strategy, and high availability. Architect SDWAN underlay/overlay: transport independence, applicationaware routing, DIA/Cloud onramp, security integration, and multiregion scale. Expert routing at scale: BGP (policy, route reflectors, communities), OSPF, EIGRP, ECMP, redistribution strategies, route filtering, summarization, and IPv6 planning. Drive modernization roadmaps: brownfield to SDA migration, hierarchical campus design, QoS, multicast, wireless controller (Catalyst 9800) alignment, and resiliency patterns. Deliver handson build and escalation leadership: lab validation, pilot, phased rollout, cutover plans, MOPs, change windows, and rootcause analysis for P1/P2 incidents. Mentor and uplift engineering teams: design reviews, standards, runbooks, and enablement sessions for operations and field engineers. Stakeholder leadership: collaborate with security, EUC, cloud, and application teams; translate business outcomes into technical architectures and measurable milestones. Documentation & governance: HLD/LLD, asbuilts, standards, security exceptions, and compliance artifacts; contribute to reference architectures and reusable templates. Required Qualifications (MustHave) Active CCIE (any track; Enterprise Infrastructure and/or Security strongly preferred). 10+ years enterprise networking experience, including 3-5+ years leading SDAccess architecture and deployment across multiple sites. Proven, exceptional handson skills with Cisco routing/switching and Catalyst Center (formerly Cisco DNA Center) for SDA automation and assurance. Deep expertise with Cisco ISE (policy, 802.1X, SGT/TrustSec) and Cisco FTD (Firepower) firewalls (threat, access control, NAT/VPN, high availability). Strong experience with Cisco SDWAN (design, policy/templating, security integration, operationalization). Expertlevel knowledge of BGP, EIGRP, OSPF, redistribution, and routepolicy design for large enterprises. Demonstrated success leading complex, multiphase migrations and mentoring senior engineers. Preferred Qualifications CCDE or dual CCIE; Cisco Certified Specialist certifications in SDA, ISE, or SDWAN. Automation fluency (Ansible, Python, Terraform), Gitbased workflows, and API integration with Catalyst Center/ISE/FTD/SDWAN. Wireless (Catalyst 9800/Prime/Catalyst Center Assurance), QoS strategy, multicast, NAC posture, and Zero Trust segmentation. Cloud networking (Azure/AWS), hybrid connectivity, and DNS/DHCP/IPAM integration. Familiarity with data center and campus interconnect (e.g., ACI concepts beneficial but not required). Work Style & Travel Must reside in the immediate Los Angles metro area and be able to work onsite at client site in Downtown LA. Offhours change windows as needed for critical migrations. *Skills* Solution architecture, network infrastructure, network architecture, Architecture, Cloud, cisco, sda, DNA, software defined networking *Top Skills Details* Solution architecture,network infrastructure,network architecture,Architecture,Cloud,cisco,sda,DNA,software defined networking *Additional Skills & Qualifications* NA *Experience Level* Expert Level *Job Type & Location* This is a Contract to Hire position based out of Los Angeles, CA. *Pay and Benefits* The pay range for this position is $90.00 - $130.00/hr. Eligibility requirements apply to some benefits and may depend on your job classification and length of employment. Benefits are subject to change and may be subject to specific elections, plan, or program terms. If eligible, the benefits available for this temporary role may include the following: * Medical, dental & vision * Critical Illness, Accident, and Hospital * 401(k) Retirement Plan - Pre-tax and Roth post-tax contributions available * Life Insurance (Voluntary Life & AD&D for the employee and dependents) * Short and long-term disability * Health Spending Account (HSA) * Transportation benefits * Employee Assistance Program * Time Off/Leave (PTO, Vacation or Sick Leave) *Workplace Type* This is a fully onsite position in Los Angeles,CA. *Application Deadline* This position is anticipated to close on Dec 1, 2025. h4>About TEKsystems: We're partners in transformation. We help clients activate ideas and solutions to take advantage of a new world of opportunity. We are a team of 80,000 strong, working with over 6,000 clients, including 80% of the Fortune 500, across North America, Europe and Asia. As an industry leader in Full-Stack Technology Services, Talent Services, and real-world application, we work with progressive leaders to drive change. That's the power of true partnership. TEKsystems is an Allegis Group company. The company is an equal opportunity employer and will consider all applications without regards to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law. About TEKsystems and TEKsystems Global Services We're a leading provider of business and technology services. We accelerate business transformation for our customers. Our expertise in strategy, design, execution and operations unlocks business value through a range of solutions. We're a team of 80,000 strong, working with over 6,000 customers, including 80% of the Fortune 500 across North America, Europe and Asia, who partner with us for our scale, full-stack capabilities and speed. We're strategic thinkers, hands-on collaborators, helping customers capitalize on change and master the momentum of technology. We're building tomorrow by delivering business outcomes and making positive impacts in our global communities. TEKsystems and TEKsystems Global Services are Allegis Group companies. Learn more at TEKsystems.com. The company is an equal opportunity employer and will consider all applications without regard to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law. | |