Senior Network Security Engineer

This is a fully remote position, open to applicants in United States.

📋 Description

• Manage and oversee secure network solutions functioning as a centralized enterprise capability for the United States Army.

• Collaborate with essential stakeholders and technical specialists to execute legacy environment discovery, evaluating current capabilities, configurations, and requirements to facilitate network firewall migration support for the Army's global network.

• Analyze and comprehend intricate firewall security zones and policies, demonstrating the ability to transform policies across various vendor firewall devices while fulfilling mission objectives.

• Aid in secure access solutions utilizing zero trust network access (ZTNA), which includes supporting the development of new access policies and the upkeep of existing ones.

• Incorporate capacity planning and scaling of network and security stack environments into the broader operational support processes and staffing.

• Gather, investigate, and define network resource management strategies and techniques to satisfy capacity and performance demands.

• Collaborate with information assurance teams and the AGUN cybersecurity service provider (CSSP) to ensure compliance with DoD standards, assisting in the maintenance of the network security posture.

• Document designs, diagrams, drawings, and technical narratives using wiki technologies and standard diagram and drawing tools.

⛳️ Requirements

• Must currently hold and be able to maintain an active DoD SECRET security clearance.

• A minimum of a Bachelor’s degree with over 10 years of experience or a Master’s degree with 10+ years of experience (additional relevant experience may be accepted in place of a degree).

• Requires an active DoD IAT Level II (e.g., Security+) certification or equivalent before starting.

• Must obtain and maintain an approved Computing Environment (CE) certification relevant to the supported technology environment within six (6) months of employment.

• Profound understanding of networking and firewall virtualization, including VSYS in a multi-tenant setting.

• Proven experience with networking concepts such as LAN, WAN, BGP, TCP/UDP, IPSec, VPN, Routing (L2/L3), and firewalls in a virtualized environment.

• Demonstrated proficiency in one or more enterprise network management tools such as Palo Alto Panorama, Cisco Prime, Cisco DNA, or Junos Space.

• Experience in system hardening of network infrastructure, including DoD STIG implementation.

• Must have experience with two or more of the following vendor network technologies: Cisco, Juniper, Palo Alto, Dell, RAVPN, Global Protect, or AppGate.

• Familiarity with protocols such as SFTP, SSH, SCP, MPLS, SNMP, NTP.

• Capability to work collaboratively as part of a team to troubleshoot and resolve complex network security issues.

• Excellent written and verbal communication skills are essential.

• Willingness to work non-standard shifts to achieve network migration objectives and goals.

• Ability to interface effectively with customers.

• Willingness to travel up to 10% of the time.

🏝️ Benefits

• Health and Wellness programs.

• Income Protection.

• Paid Leave.

• Retirement.