Lead Systems Engineer - Cisco WIFI

Role Summary

We are seeking a Lead Network Engineer with strong enterprise wireless expertise to design, build, implement, and support campus WiFi solutions across Cisco Wireless LAN Controllers (WLC), Cisco Access Points, and HPE Aruba wireless infrastructure. This is a hands-on role requiring an experienced technical lead who can independently work with stakeholders (Workplace/Facilities, Security, Network, IAM, Endpoints, Applications, and Service Desk) to gather requirements, develop HLD/LLD, execute deployments and migrations, and provide expert-level troubleshooting and operational support.

Key Responsibilities

1) Stakeholder Engagement & Requirements Discovery

• Independently engage business and IT stakeholders to collect wireless requirements across offices, campuses, warehouses, and critical environments.
• Define wireless outcomes for coverage, performance, capacity, resiliency, roaming, security, and guest/BYOD use cases.
• Lead design workshops and produce clear recommendations with options, tradeoffs, risks, and timelines.
• Coordinate cross-functional readiness (security policies, device onboarding, NAC integrations, change windows, operational support model).

2) Wireless Architecture, Design & Standards (HLD/LLD)

• Own enterprise wireless architecture and design for Cisco and Aruba environments including:
  • Controller-based and/or distributed wireless designs (as per platform)
  • SSID architecture (corporate, guest, IoT), RF design strategy, roaming design
  • High availability, redundancy, controller/AP failover, and resilience patterns
• Develop High-Level Design (HLD), Low-Level Design (LLD), RF/coverage plans, cutover plans, and runbooks.
• Define and standardize:
  • WLAN security (WPA2/WPA3 enterprise, 802.1X, PSK where appropriate)
  • Authentication/authorization flows (RADIUS, SSO where applicable)
  • Network segmentation (VLANs, roles, ACLs), QoS for voice/video
  • Monitoring and logging standards (alerts, dashboards, health metrics)

3) Build, Implementation & Migration Delivery

• Implement wireless solutions end-to-end across Cisco WLC and Aruba:
  • WLAN/SSID configuration, policy profiles, RF profiles, AP groups, templates
  • AAA integration (RADIUS), certificate-based auth (EAPTLS), posture/NAC integration where applicable
  • Guest access and captive portal design (where in scope)
• Lead deployment activities including:
  • New site bring-up, AP staging, code upgrades, controller migrations
  • Legacy-to-modern WLAN migrations (SSID rationalization, new security standards, WPA3 adoption where appropriate)
• Validate designs via pilots, performance testing, and controlled rollouts; ensure smooth transition into operations.

4) Operations & Expert Troubleshooting (Run)

• Provide L3/L4 engineering support for wireless services:
  • Roaming issues, intermittent connectivity, authentication failures, performance degradation
  • RF interference/coverage challenges, channel/power tuning, high-density tuning
  • Controller/AP software defects, compatibility issues with client devices and OS updates
• Own incident/problem/change management for wireless and drive:
  • Root cause analysis (RCA), corrective actions, and preventative controls
• Monitor wireless health and user experience through telemetry, logs, and performance metrics; continually optimize capacity and reliability.

5) Security, Compliance & Governance

• Ensure wireless solutions meet enterprise security standards:
  • Strong authentication (802.1X), encryption, and segmentation
• Support audits, compliance checks, and security assessments (documented controls and evidence).
• Maintain secure operational practices (access controls, patching cadence, vulnerability remediation).

6) Leadership & Collaboration

• Serve as the Wireless SME for the organization; mentor junior engineers and provide design/config reviews.
• Collaborate closely with:
  • Security/IAM/NAC teams for authentication and access controls
  • End-user computing teams for device onboarding and client troubleshooting
  • Facilities for AP placements, cabling, power, and site readiness

Coordinate vendors/partners (Cisco/HPE Aruba) for escalations and roadmap planning.

Required Qualifications

• 10 years of enterprise network engineering experience with significant wireless focus. hands-on experience with Cisco WLC and Cisco APs and HPE Aruba WiFi (both preferred).
• Proven ability to lead end-to-end delivery independently: requirements design (HLD/LLD) implementation operations.
• Strong skills in:
  • Wireless fundamentals: RF, coverage/capacity planning, roaming, high-density design
  • WLAN security: 802.1X, WPA2/WPA3, EAP methods (EAPTLS/PEAP), RADIUS/AAA
  • Troubleshooting: packet captures, logs, RF analysis, client interoperability issues
• Solid networking fundamentals: VLANs, routing, DHCP, DNS, QoS, multicast basics (where relevant).

Preferred / Nice-to-Have Skills

• Experience with wireless design tools and surveys (Ekahau/AirMagnet) and spectrum analysis.
• Aruba and Cisco specific experience such as:
  • Aruba Mobility Controllers / Aruba Central (if applicable)
  • Cisco WLC platforms and operational models (legacy and modern controller approaches)
• NAC integrations (Cisco ISE / ClearPass), guest portal/BYOD onboarding flows.
• Automation: templates/APIs, scripting (Python/PowerShell), configuration standardization.
• Experience supporting voice/video over WiFi (QoS, fast roaming, latency sensitivity).