Description

Tweet about this on TwitterShare on LinkedInShare on FacebookShare on Google+Pin on PinterestEmail this to someone

At NTT DATA, we know that with the right people on board, anything is possible. The quality, integrity, and commitment of our employees have been key factors in our company’s growth and market presence. By hiring the best people and helping them grow both professionally and personally, we ensure a bright future for NTT DATA and for the people who work here.

NTT DATA Services currently seeks a Principal Network Architect – Cisco SD-Access & Enterprise Networking to join our team in Los Angeles, California.

We are hiring principal-level network architects to lead design and delivery of multi-site Cisco Software-Defined Access (SD-Access) solutions at scale. You will set architecture direction, drive complex deployments across distributed campuses, and mentor engineers while partnering closely with security and operations. The ideal candidate holds an active CCIE and demonstrates deep, hands-on expertise across Cisco routing/switching, Cisco Catalyst Center (formerly Cisco DNA Center), Cisco Client, Cisco FTD firewalls, and Cisco SD-WAN, with expert-level command of BGP, EIGRP, OSPF, and related enterprise routing protocols.

What you’ll do (Key Responsibilities)

Own end-to-end SD-Access architecture for large, multi-site enterprises: fabric design (control/edge/border), transit options, segmentation (SGTs/TrustSec), identity policy, and integration with WAN and data center.

Lead Catalyst Center-driven automation: design templates, SDA workflows, network assurance, SWIM, and closed-loop operations aligned to reliability/SLOs.

Design identity-centric security with Client: policy sets, authorization profiles, posture, PxGrid integrations, wired/wireless 802.1X/MAB, guest/BYOD, and scalable group policies.

Engineer secure edge and campus perimeters: Cisco FTD/Firepower policy design, NAT, VPN, IDS/IPS, SSL decryption strategy, and high availability.

Architect SD-WAN underlay/overlay: transport independence, application-aware routing, DIA/Cloud on-ramp, security integration, and multi-region scale.

Expert routing at scale: BGP (policy, route reflectors, communities), OSPF, EIGRP, ECMP, redistribution strategies, route filtering, summarization, and IPv6 planning.

Drive modernization roadmaps: brownfield to SDA migration, hierarchical campus design, QoS, multicast, wireless controller (Catalyst 9800) alignment, and resiliency patterns.

Deliver hands-on build and escalation leadership: lab validation, pilot, phased rollout, cutover plans, MOPs, change windows, and root-cause analysis for P1/P2 incidents.

Mentor and uplift engineering teams: design reviews, standards, runbooks, and enablement sessions for operations and field engineers.

Stakeholder leadership: collaborate with security, EUC, cloud, and application teams; translate business outcomes into technical architectures and measurable milestones.

Documentation & governance: HLD/LLD, as-builts, standards, security exceptions, and compliance artifacts; contribute to reference architectures and reusable templates.

Required Qualifications (Must-Have)

Active CCIE (any track; Enterprise Infrastructure and/or Security strongly preferred).

10+ years enterprise networking experience, including 3-5+ years leading SD-Access architecture and deployment across multiple sites.

Proven, exceptional hands-on skills with Cisco routing/switching and Catalyst Center (formerly Cisco DNA Center) for SDA automation and assurance.

Deep expertise with Cisco Client (policy, 802.1X, SGT/TrustSec) and Cisco FTD (Firepower) firewalls (threat, access control, NAT/VPN, high availability).

Strong experience with Cisco SD-WAN (design, policy/templating, security integration, operationalization).

Expert-level knowledge of BGP, EIGRP, OSPF, redistribution, and route-policy design for large enterprises.

Demonstrated success leading complex, multi-phase migrations and mentoring senior engineers.

Preferred Qualifications

CCDE or dual CCIE; Cisco Certified Specialist certifications in SDA, Client, or SD-WAN.

Automation fluency (Ansible, Python, Terraform), Git-based workflows, and API integration with Catalyst Center/Client/FTD/SD-WAN.

Wireless (Catalyst 9800/Prime/Catalyst Center Assurance), QoS strategy, multicast, NAC posture, and Zero Trust segmentation.

Cloud networking (Azure/AWS), hybrid connectivity, and DNS/DHCP/IPAM integration.

Familiarity with data center and campus interconnect (e.g., ACI concepts beneficial but not required).

Work Style & Travel

Must reside in the immediate Los Angles metro area and be able to work onsite at client site in Downtown LA.

Off-hours change windows as needed for critical migrations.

Employment Type: Full-Time Contract (with potential for permanent conversion based on performance and business needs)

#LI- North America

About NTT DATA Services:

NTT DATA Services is a recognized leader in IT and business services, including cloud, data and applications, headquartered in Texas. As part of NTT DATA, a $30 billion trusted global innovator with a combined global reach of over 80 countries, we help clients transform through business and technology consulting, industry and digital solutions, applications development and management, managed edge-to-cloud infrastructure services, BPO, systems integration and global data centers. We are committed to our clients’ long-term success. Visit nttdata.com or LinkedIn to learn more.

NTT DATA Services is an equal opportunity employer and considers all applicants without regarding to race, color, religion, citizenship, national origin, ancestry, age, sex, sexual orientation, gender identity, genetic information, physical or mental disability, veteran or marital status, or any other characteristic protected by law. We are committed to creating a diverse and inclusive environment for all employees. If you need assistance or an accommodation due to a disability, please inform your recruiter so that we may connect you with the appropriate team.

Where required by law, NTT DATA provides a reasonable range of compensation for specific roles. The starting hourly range for this remote role is (70 – 75/hourly ). This range reflects the minimum and maximum target compensation for the position across all US locations. Actual compensation will depend on several factors, including the candidate’s actual work location, relevant experience, technical skills, and other qualifications.

This position is eligible for company benefits that will depend on the nature of the role offered. Company benefits may include medical, dental, and vision insurance, flexible spending or health savings account, life, and AD&D insurance, short-and long-term disability coverage, paid time off, employee assistance, participation in a 401k program with company match, and additional voluntary or legally required benefits.

Tweet about this on TwitterShare on LinkedInShare on FacebookShare on Google+Pin on PinterestEmail this to someone