Support and maintain KFC UK&I’s network infrastructure for 1,000+ restaurants, ensuring secure and reliable connectivity.
Responsibilities include SD-WAN, switch management, security settings, supplier coordination, troubleshooting, upgrades, performance monitoring, and compliance. Requires strong stakeholder engagement and expertise in large-scale networks.
WHAT WILL YOU SPEND YOUR TIME DOING?
Network Operations & Support
- Provide operational support for WAN, LAN, Wi-Fi solutions and cloud-based network services across the estate, including cloud.
- Respond to incidents and service requests, including hybrid connectivity issues between data centers, store sites, and cloud platforms.
- Troubleshoot complex issues: routing, switching, 802.1X, Wi-Fi performance, firewall policies, and SD-WAN overlays/underlays.
- Monitor capacity, performance, and availability; proactively remediate risks and single points of failure.
- Maintain and test regular backups of network device configurations.
- Ensure backup processes are automated, tested, and stored securely in compliance with organisational policies.
- Develop and maintain disaster recovery procedures for network infrastructure, including restoration steps and failover strategies.
Configuration & Deployment
- Implement and maintain network configurations in line with organisational standards and best practices.
- Support network upgrades, migrations, and technology refresh projects across distributed environments including cloud.
- Ensure accurate configuration of network devices, including switches, firewalls, and wireless controllers and both in the physical and virtual space.
- Validate and test changes before deployment to minimise risk and ensure service continuity.
- Plan and execute pilots, phased rollouts, and post-implementation reviews across distributed sites.
Security & Compliance
- Enforce network security baselines across on-premise and cloud environments, including least privilege, segmentation, encryption, secure management, logging, and patching.
- Collaborate with the Security team on vulnerability management, incident response, and audit readiness.
- Update and maintain secure configurations in line with company polices and standards.
Supplier & Stakeholder Management
- Act as technical lead with network service providers and hardware vendors; ensure SLA adherence, capacity planning, and service improvement.
- Coordinate change windows, communications, and post-change validation with store operations and IT stakeholders.
Documentation & Governance
- Maintain accurate network diagrams, inventories, runbooks, standard operating procedures, and change records.
- Contribute to architecture standards, design reviews, and continuous improvement initiatives.
On-call
- Participate in an on-call rota for major incidents and perform occasional travel to sites and data centers.
Working relationships
- Cross functional teams within technology; collaborate with infrastructure, security, and Tech teams to align network designs and configurations with security standards.
- Wider business teams: Engage with operational and business units to promote awareness of network security best practices.
- Global teams; work closely with global partners (e.g., Yum! brands) to maintain compliance with corporate standards and security policies.
WHAT WE LOVE FROM YOU:
Education & Certifications
- Bachelor’s degree in Computer Science, Information Security, or related field (or equivalent experience).
- CCNA/CCNP or equivalent; cloud networking certification (Azure/AWS) preferred.
- Security certifications (e.g., Security+, CySA+, SSCP) a plus.
Experience
- Experience in large enterprise network engineering, ideally in retail or multi-site environments.
- Hands-on delivery and support of SD-WAN, large-scale Wi-Fi, NAC, and firewall solutions across hybrid (cloud/on-prem) environments.
- Experience managing switches, routers, firewalls, and wireless controllers across multi-vendor networks.
- Proven ability to deliver change in high-availability, mission-critical environments with minimal downtime.
- Strong vendor management experience, including SLA oversight.
Technical Knowledge
- Networking: BGP, static routing, VLANs, STP, LACP, TCP/IP, DNS, DHCP, QoS, subnetting.
- Cloud: Azure/AWS networking, including ExpressRoute, VNets, routing tables, and security services.
- Security: Firewalls (IPS/IDS, VPNs, SSL inspection, NAT, segmentation), NAC, and network security controls.
- Monitoring & Automation: SNMP, syslog, SIEM, network monitoring, automation, and capacity planning.
- Risk & Compliance: Understanding of network threats, defense-in-depth, and frameworks such as ISO 27001, NIST, and CIS.
Skills & Behaviours
- Strong analytical skills with attention to detail and documentation.
- Clear communicator, able to translate technical risk into business terms.
- Collaborative, proactive, and able to work across technical and business teams.
- Organized, self-directed, and committed to ethical handling of sensitive information
Gmail
Yahoomail