Senior Network Security Engineer

This is a fully remote position, open to applicants in Maryland.

📋 Description

• Assists the U.S. Census Bureau by designing, implementing, operating, troubleshooting, and enhancing enterprise network security services within on-premises, hybrid-cloud, and cloud-connected environments.

• Specializes in firewall engineering, VPN and remote access services, RSA SecurID or equivalent MFA/token services, content filtering, network access control, edge security services, monitoring and logging integration, vulnerability remediation, security documentation, and policy compliance for TCO-managed systems.

• Acts as a senior technical advisor for secure network architecture, operations support, incident response coordination, and compliance assistance.

• Designs, configures, administers, maintains, and troubleshoots enterprise firewall solutions, including platforms from Cisco and Palo Alto.

• Manages VPN services, encompassing remote access VPN, site-to-site VPN, client/clientless access, partner connectivity, mobile device access, and cloud connectivity.

• Oversees network access control services, including NAC policy administration, endpoint posture or 802.1X controls, identity-aware access policies, and integrations with firewalls, wireless, LAN, and identity management systems.

• Implements and oversees network security controls across AWS, Azure, and hybrid environments.

• Reviews logs, alerts, vulnerability notices, and vendor advisories; suggests and implements enhancements to minimize risk.

⛳️ Requirements

• Over 7 years of experience in network security engineering, network infrastructure, cybersecurity infrastructure, or a closely related field.

• More than 5 years of hands-on experience in designing, implementing, administering, and troubleshooting enterprise firewall platforms in operational settings.

• Practical experience with Cisco firewall technologies such as Cisco FTD/FMC, ASA, AnyConnect/Secure Client, or comparable Cisco security platforms.

• Practical experience with Palo Alto Networks technologies including NGFW, Panorama, GlobalProtect, App-ID/User-ID, security profiles, and policy optimization.

• Familiarity with firewall policy design, NAT, segmentation, remote access VPN, site-to-site VPN, IDS/IPS integrations, high availability, logging, and operational troubleshooting.

• Working knowledge of Cloudflare or similar DNS, DDoS, WAF, CDN, Zero Trust, or edge security solutions.

• Experience with VPN services, secure remote access, RSA SecurID or equivalent MFA/two-factor authentication services, hardware and software token support, directory integration, partner tunnels, cloud tunnels, and cloud connectivity troubleshooting.

• Experience supporting MFA server operations, including software updates, patching, certificate/configuration changes, backups, log review, monitoring, vulnerability remediation, and vendor/support escalation.

• Proficient understanding of TCP/IP, DNS, DHCP, IPAM, BGP, routing, subnetting, TLS/certificates, VPN protocols, packet capture, NetFlow/traffic analysis, and common network diagnostic tools.

• Experience supporting network security in AWS and/or Azure environments.

• Experience integrating network security controls with enterprise monitoring, logging, SIEM, SOC/NOC, or incident response workflows.

• Familiarity with formal change management, configuration management, release management, incident management, and vulnerability remediation processes.

• Capability to produce clear technical documentation, diagrams, SOPs, runbooks, implementation plans, rollback plans, status updates, and audit evidence.

• Excellent communication and collaboration skills, including the ability to elucidate technical risks, operational impacts, and recommended actions to both technical and non-technical stakeholders.

• Capacity to obtain and maintain a Public Trust / Background Investigation and complete necessary DOC/Census security processing, security/privacy training, and non-disclosure requirements.

🏝️ Benefits

• 401(k)

• 401(k) matching

• Dental insurance

• Flexible schedule

• Flexible spending account

• Health insurance

• Health savings account

• Life insurance

• Paid time off

• Professional development assistance

• Referral program

• Retirement plan

• Tuition reimbursement

• Vision insurance