Position: GCP Networking Consultant

Location: Remote

Work Type: Contractual (1 year extendable)

Overview:

We are seeking an experienced Google Cloud Platform (GCP) Networking Consultant to implement a secure, multi-VPC architecture that integrates Shared VPCs, Palo Alto NGFW appliances, Apigee, and multi-cloud connectivity (AWS/Azure). The consultant will work closely with our cloud and security teams to configure, validate, and optimize the network topology depicted in our high-level design.

Scope of Work / Key Responsibilities:

Architecture Implementation:

• Configure and deploy the GCP network architecture as per the provided diagram.
• Establish Hub-and-Spoke connectivity between Transit VPC, Hub (Trust) VPC, and multiple Spoke/Shared VPCs.
• Ensure proper VPC peering, routing, and firewall rules to enable communication across environments.

Palo Alto VM-Series Firewall Configuration:

• Deploy and configure Palo Alto NGFW appliances (VM-Series) within the Transit and Hub VPCs.
• Implement and validate north-south and east-west traffic inspection between VPCs and external networks.
• Configure NAT, UDRs, and next-hop routing for secure traffic flow.

Shared VPC and Apigee Integration

• Configure Shared VPCs for multiple service projects and ensure proper IAM roles and subnet allocations.
• Integrate Apigee X (deployed in the Trust VPC) with the producer spoke networks.
• Manage static routes, NCC (Network Connectivity Center) integration, and Apigee connectivity for API traffic routing.

Connectivity & Routing o Configure interconnects/VPNs between GCP, AWS, and Azure.

• Implement load balancing (ILB/XLB) configurations as per architecture.
• Ensure traffic from Akamai/internet consumers to Apigee endpoints flows securely through Palo Alto firewalls.

Validation & Documentation

• Conduct end-to-end validation of routing, firewall policies, and latency testing.
• Deliver network configuration documentation, routing tables, and test reports.
• Provide knowledge transfer and handover documentation to internal teams.

Required Skills & Experience:

• 5+ years of hands-on experience in GCP networking.
• Excellent communication skills to communicate with International clients.
• Proven expertise in Shared VPC architecture design and implementation.
• Strong understanding of VPC Peering, UDRs, Routes, and ILB/XLB configurations.
• Experience deploying and managing Palo Alto VM-Series firewalls in GCP.
• Familiarity with Apigee X, Network Connectivity Center (NCC), and multi-cloud VPN/interconnect setups.
• Knowledge of Terraform or Deployment Manager for IaC (preferred).
• GCP certifications such as Professional Cloud Network Engineer or Cloud Architect (preferred).

Deliverables:

• Fully configured GCP networking environment per the approved design.
• Documented network topology, routing table, and security configuration.
• Knowledge transfer and operational handover.