Systems Engineer II – Networks Transport

The Infrastructure Engineering team design, develop, implement, and operate all infrastructure used by Tesco Technology across our data centres, offices, stores, and distribution centres. This encompasses multiple domains; private and public cloud, connectivity, end-user computing, CI/CD, and monitoring toolkit. This includes both 3rds party and internally developed infrastructure applications and infrastructure that support the wider Tesco business.

As part of wider Infrastructure Team, Networks Transport Team design, develop, implement, and operate all Network and Security infrastructure technologies that facilitate both Infrastructure and the rest of Tesco Technology.

Key activities include:

·       Designs, develops, implements, and operates the ­large-scale, high-capacity and highly resilient infrastructure solutions that allow the rest of Infrastructure, Technology development teams and business colleagues to consume Networks and Security Service.

·       Setting the strategy, objectives, and high-level plans for Networks Infrastructure Service to best deliver requirements of Tesco Technology and thus the business.

·       Defining and continually overseeing standards and simplification across the entire Networks estate.

·       Driving innovation through transformation and Continual Service Improvement.

·       Evaluating partners, software and hardware and finding the right mix to deliver the Technology and ultimately, business strategy.

·       Designs, develops, implements, and operates Networks solutions in line with modern automation technologies where possible through self-service APIs. These solutions will allow Networks and rest of Infrastructure to be consumed in a controlled, auditable, and repeatable manner, automatically handling failure seamlessly.

·       Designing, delivering, implementing, and operating new and re-usable infrastructure solutions to meet both technological, financial, and business requirements. Collaborate with, and advise, development teams, to create appropriate infrastructure solutions to facilitate both their and ultimately the business requirements.

·       Work as a key member of an engineering team who is an aspiring expert in a technical specialism.

·       Suggest improvements to processes and methodologies to speed delivery.

·       Question requirements and challenge where necessary.

·       Demonstrate knowledge of other areas to collaborate outside of your domain.

·       Demonstrate knowledge of the latest technology trends related to Infrastructure.

·       Understand how Industry trends impact their area.

·       Be recognized Network Automation specialist.

·       Prepare and maintain technical documents & presentations for systems engineering and system operations.

·       Participate on designing of solutions and deliver them using existing Infrastructure components. Where new infrastructure technologies are being introduced, implement them, and establish best practice for their adoption. Resolve incidents that have not been seen before and initiate change to ensure that issues can be easily dealt with in future.

·       Deliver in high quality in a timely manner.

·       Evaluate new tools and techniques being able to understand their value and impact.

·       Understand current application development techniques (12 factor app, agile, sprints) and their implications to infrastructure.

·       Collaborate with own team members and with wider infrastructure teams to understand their requirements and assist them consuming Infrastructure in the most seamless way possible.

·       Ensure that my own designs are of a high quality and understand the impacts to any other areas of infrastructure.

·       Keep my technical skills up to date and keep track of new technologies, understanding how they might benefit the Technology team and wider Tesco.

·       Introduce automation to all aspects of my day-to-day work.

·       Proficient in spoken and written English and comfortable communicating with leaders and engineers.

This role will best suit an individual who enjoys working as part of a team, is well organised, pragmatic and a lateral thinker with an inquisitive mind who is motivated to learn quickly and to make change for the better and, most importantly, puts our customers first.

Skills / Experience Required

• Coding – general knowledge and experience in coding
• Network Automation – knowledge of scripting (Python, Unix/Linux, or PowerShell & Batch), Ansible
• Development lifecycle
• Great knowledge of networking principles – ISO/OSI, LAN, WAN, SDN concepts
• Operational efficiency
• Experience in designing and deploying solutions/project for medium to large size companies with equivalent complexity

• Analytical and structured approach
• Ability to produce and maintain high quality documentation
• Well organised self-starter who takes personal ownership and accountability at required levels of the work stream and project life cycles; willing to go the extra mile at every opportunity
• Builds and maintains positive relationships within and across teams
• Communicates effectively, able to deliver and present both written and verbal, designs, strategies, and concepts clearly and affectively to Senior & Jnr staff alike
• Take ownership to keep up-to-date and embrace the latest industry technologies

Required Technology Skills (Applicant should possess a min 3 of below)

• SDN/automation technologies/configuration tools like GIT, Ansible or, preferably in Ops Engineering
• Good understanding of browser-based technologies and protocols like HTML, HTTP/HTTPS, and XML
• Good understanding of Network Management technologies and protocols like SNMP, NetFlow, IPSLA, along with practical experience of associated Network Management & Alerting Tools
• Good knowledge of cloud networking – MS Azure, AWS
• CCNP equivalent practical experience in designing/building, operating medium to large-scale, Multilayer Switching and Routing using current CISCO/Juniper/Arista equipment in a WAN and LAN environment using technologies like Multicast, Port Channelling, BGP, FHRP, VRF, QoS
• Excellent technical knowledge of ISO/OSI network topologies, troubleshooting and design Routing Protocols (BGP, OSPF, IGRP), DNS, DHCP, IP Address Management and TCP/UDP Port RFC & IEEE 802-based standards.
• Understanding Cisco/Arista switches deployed in Spine/Leaf topology
• Knowledge of VPN experience along with associated technologies and protocols such as IPSec, Public/Private Key Encryption, TLS/SSL, digital cert techniques like ISA/KMP GRE and DMVPN

Desired Technical Skills

• Good technical knowledge of Firewalls Platforms and Technologies, including build/configuration of some of the following: Palo Alto (pref) and Cisco ASA/FirePower (pref), Checkpoint, Fortinet along with associated Management Systems and Firewall rule analysis tools like Skybox, Tufin
• High levels of knowledge of remote access and two factor authentication technologies and AAA solutions – RSA, Juniper/Pulse, Cisco ISE, Radius  
• High levels of experience of Threat prevention and detection techniques and associated technologies like IPS, IDS, APT/SEIM, Secure Proxy.
• Latest 802.11-based Wi-Fi standards and technologies with practical design and installation of provider solutions and tools from Cisco, Aruba or MIST and all associated survey techniques      
• Familiarity with VMware NSX and wider VMware software stack (vCentre, vRealize)
• Good understanding of Internet/Web Technologies both hardware and cloud based, like CDN, Proxy/Caching, SSL Offloading/Interception, URL forwarding/re-direction from suppliers like Akamai, Bluecoat, Zscaler
• General understanding of Load balancing & Global/DNS balancing technologies and techniques
• Knowledge of Wide Area Networking technologies and protocols, such as MPLS, WAN Optimisation (Riverbed Steelhead or Cisco WAS), CoS, DWDM. Ideally, with experience of dealing with major Global Comms suppliers

• An annual bonus scheme.
• Colleague Clubcard (including a 2nd card for a family member) after 3 months service with 10% off most purchases at Tesco.
• Holiday starting at 25 days plus a personal day.
• A retirement savings plan - 4%-7.5% contribution rate.
• Life Assurance - 5 x contractual pay.
• Buy As You Earn Scheme which allows you to buy Tesco shares and save tax after 3 months of service.
• Save As You Earn Scheme which gives you the opportunity to save direct from your pay for three or five years with the option of using your savings to buy Tesco shares at a discounted price after 1 year of service.
• Access to Tesco Learning and Development Academy.
• Deals & Discounts through Tesco including Tesco Mobile & Tesco Bank.
• Deals and Discounts through many other external businesses.
• Cycle to work and Car Share Schemes.
• Onsite discounted Nuffield Health Gym.
• Subsidised Canteen.

Our vision here at Tesco is to become every customer's favourite way to shop online, whether they are at home, out shopping, on the move, anywhere in the world.

We want our customers to be inspired and whatever they are looking for, we’re finding bigger and better ways to provide it.

Everything is underpinned by our continuous drive for the best tools and technology to deliver our vision. We’re driving innovation and transforming our Technology to become the world’s leading e-commerce business.

We need people who share our ambition to deliver for our customers; Passionate and confident people willing to take the initiative and drive us forwards. In return we offer excitement, a great team, an excellent benefit package, and significant career development opportunities.

The position will be based at our Head Office, Welwyn Garden City, Hertfordshire. (However, staff have opportunity to work at other offices as well as their home where circumstances require. Staff will also be required to occasionally travel on business to other parts of UK and abroad where necessary).