Job Description: Network Technician

Position Id: G0426-0034
Job Type:6-12 months (contract)
Country: Haiti
Location: Port-au-Prince
Pay Rate: Open
Contact Recruiter:+91 9324978485

Job Description:

Trigyn has a contractual opportunity for a Network Technician. This resource will be working from the client site in Haiti.

Job Description:

The Network Support Technician will provide Tier 2 network infrastructure support and assist in Network Team for client operations located in Port-au-Prince, Haiti. The technician is responsible for the deployment, configuration, management, monitoring, and troubleshooting of the organization’s network infrastructure, including LAN, WAN, and Wi-Fi environments, with a primary focus on Cisco and Check Point technologies. The role also encompasses network security administration and log management to ensure the integrity, availability, and security of mission-critical connectivity.

Note: This position will be deployed in a conflict zone (Haiti) under UN operational conditions. Personnel must be prepared to work in austere environments with heightened security risks, limited infrastructure, and strict security protocols.

II. Equipment Scope

The technician will install, configure, and maintain, including but not limited to:
• Cisco network equipment: routers, switches (Layer 2/3), wireless LAN controllers (WLC), and access points.
• Cisco Identity Services Engine (ISE) for network access control (NAC) and policy enforcement.
• Check Point security appliances: firewalls, gateways, and security management servers.
• WAN connectivity equipment: SD-WAN devices, MPLS termination points, and satellite/VSAT terminals.
• Wi-Fi infrastructure: access points, wireless controllers, and associated RF management tools.
• Network monitoring and management systems: SNMP-based platforms, syslog servers, and SIEM/log management tools.
• Supporting ICT peripherals: UPS systems, KVM switches, and out-of-band management devices.

III. Technical Knowledge

Cisco Technologies
• Cisco IOS/IOS-XE and NX-OS configuration and administration.
• Routing protocols: OSPF, EIGRP, BGP; static routing and route redistribution.
• Switching: VLANs, STP/RSTP, EtherChannel (LACP/PAGP), port security, and inter-VLAN routing.
• Cisco wireless: deployment and management of Cisco WLC and Catalyst Center (DNA Center) for unified wireless management.
• SD-WAN fundamentals for WAN optimization and failover.
• Quality of Service (QoS) policies for voice and video traffic prioritization.
• Network Address Translation (NAT), ACLs, and prefix lists.
• Cisco Identity Services Engine (ISE)
• Deployment and configuration of Cisco ISE nodes (PAN, PSN, MnT) in standalone and distributed architectures.
• Policy configuration: authentication, authorization, and accounting (AAA) using RADIUS and TACACS+.
• 802.1X wired and wireless authentication with EAP methods (EAP-TLS, PEAP, EAP-FAST).
• MAC Authentication Bypass (MAB) for non-802.1X-capable devices.
• Guest portal configuration and sponsor workflows for visitor network access.
• Device profiling, posture assessment, and TrustSec/SGT policy enforcement.
• Integration of ISE with Microsoft Azure for identity-based access control.
• ISE monitoring: live sessions, RADIUS logs, and failure reason analysis.

Check Point Technologies
• Deployment and configuration of Check Point Security Gateways and Management Servers (SMS/MDS).
• SmartConsole administration: security policy creation, rule base management, and object management.
• Check Point software blades: Firewall, IPS, Application Control, URL Filtering, Anti-Virus, Anti-Bot, and Threat Emulation.
• Site-to-Site and Remote Access VPN configuration (IPsec, SSL/TLS).
• Check Point ClusterXL for high availability (HA) and load sharing.
• Monitoring and log analysis using SmartLog, SmartEvent, and SmartView Monitor.
• Check Point policy installation, package management, and hotfix/upgrade procedures.
• Integration of Check Point with SIEM platforms for centralized event correlation.

LAN / WAN / Wi-Fi
• In-depth understanding of OSI model layers and TCP/IP protocol stack.
• LAN design, deployment, and troubleshooting: structured cabling, VLANs, spanning tree, and port aggregation.
• WAN technologies: MPLS, leased lines, broadband failover, and VSAT/satellite link management.
• Wi-Fi standards (802.11a/b/g/n/ac/ax), RF planning, channel management, and interference mitigation.
• Wireless security protocols: WPA2/WPA3-Enterprise, 802.1X, and RADIUS integration.

Network Security
• Firewall policy design and management: zone-based firewall, stateful inspection, and micro-segmentation.
• Intrusion Prevention System (IPS) tuning and signature management.
• Network segmentation strategies: DMZ design, VLAN isolation, and zero-trust principles.
• VPN administration: IPsec tunnels, SSL VPN, and remote access gateways.
• PKI fundamentals: certificate management, CA integration for 802.1X and VPN authentication.
• Vulnerability assessment tools and remediation of network-level findings.

IV. Duties

The technician will perform, but not be limited to:

Cisco Infrastructure
• Deploy, configure, and maintain Cisco routers, switches, and wireless infrastructure in accordance with organizational standards.
• Perform firmware upgrades and patch management on Cisco devices following change management procedures.
• Maintain accurate network diagrams and device configuration backups.
• Troubleshoot Layer 2/3 network issues including routing loops, STP failures, and VLAN misconfigurations.

Cisco ISE Administration
• Administer Cisco ISE policies for wired, wireless, and VPN network access control.
• Onboard new devices and user endpoints into ISE-managed network segments.
• Monitor ISE health, replication status, and authentication session logs.
• Respond to ISE-related access failures and coordinate resolution with the security team.
• Update ISE profiling policies and posture conditions to reflect organizational compliance requirements.

Check Point Administration
• Manage and maintain Check Point firewall policies and security rule bases.
• Conduct scheduled policy reviews and clean-up of redundant or shadow rules.
• Deploy and monitor Check Point threat prevention blades; review IPS alerts and tune signatures to minimize false positives.
• Configure and maintain VPN tunnels; troubleshoot VPN connectivity issues for site-to-site and remote access users.
• Perform Check Point system health checks, certificate renewals, and license management.
• Coordinate with Check Point TAC or Tier 3 for escalation of complex issues.

LAN / WAN / Wi-Fi Operations
• Monitor WAN link performance and availability; liaise with ISP and VSAT vendors for circuit fault resolution.
• Manage and optimize Wi-Fi coverage, channel allocation, and roaming configurations.
• Perform cable management, patch panel labelling, and structured cabling installations as required.
• Conduct periodic network audits and capacity planning assessments.
Network Security Operations
• Implement and maintain network security policies in alignment with client ICT security standards.
• Conduct periodic firewall rule base audits and access control reviews.
• Enforce network segmentation and ensure proper isolation of critical systems.
• Support ICT security awareness activities and advise end users on network security best practices.

Log Management & Monitoring
• Maintain the centralized log management system; ensure all network devices forward logs to the SIEM/syslog platform.
• Create and maintain correlation rules, dashboards, and automated alerts for security and operational events.
• Perform daily review of network monitoring dashboards and escalate anomalies or incidents.
• Ensure log integrity and retention in compliance with organizational data retention policies.

General ICT Duties
• Maintain comprehensive and up-to-date network documentation, including topology diagrams, IP addressing plans (IPAM), and configuration records.
• Participate in ICT asset management and ensure network device inventory is accurately maintained.
• Provide Tier 2 escalation support to Tier 1 ICT end-user staff for network-related incidents.
• Comply with client ICT policies, change management procedures, and information security standards.

VI. Experience & Certification
• Minimum 5–7 years’ experience in network infrastructure support and administration roles.
• Proven hands-on experience with Cisco routing, switching, and wireless technologies in enterprise or mission-critical environments.
• Demonstrated experience deploying and administering Cisco ISE for network access control.
• Proven experience configuring and managing Check Point firewalls and security policies.
• Experience in NGO, or international mission environments is highly desirable.

Required / Preferred Certifications:
• Cisco Certified Network Associate (CCNA) – Required.
• Cisco Certified Network Professional (CCNP) Enterprise or Security – Desirable.
• Cisco ISE specialist training or certification – Desirable.
• Check Point Certified Security Administrator (CCSA) – Desirable.
• Check Point Certified Security Expert (CCSE) – Desirable.
• CompTIA Network+ or CompTIA Security+ – Desirable.
• ITIL Foundation – Desirable.
• National driver’s license for light motor vehicles is required.

VII. Language
• Fluency in English, both written and oral, is required.
• Fluency or working knowledge of French is highly desirable as an additional language.

For Immediate Response, please send your Resume to Global-Recruitment@Trigyn.com

TRIGYN TECHNOLOGIES is a multinational IT services company with resources deployed in 28 countries. TRIGYN is an ISO 9001:2015, ISO 27001:2022 (ISMS) and CMMI Level 5 certified company. TRIGYN has offices in the United States, Canada, Switzerland and India.

Apply NowBack

More Insights