ANP Network Security Engineer (Palo Alto/Zscaler) - U.S. Citizenship Required
About The Position
CGI Federal is seeking an ANP Network Security Engineer with hands-on experience in Palo Alto Networks and/or Zscaler technologies to strengthen our cybersecurity posture across cloud and on-premise environments. In this role, you will design, implement, and manage secure network architectures, leveraging next-generation firewalls, secure web gateways, and zero-trust solutions. You will work in a dynamic, fast-paced environment supporting federal cybersecurity initiatives for civilian agencies, following Scaled Agile (SAFe) principles and utilizing advanced monitoring and security tools such as Wireshark, Nessus, Qualys, Corelight, and ExtraHop. This position is located in our Fairfax, VA office; however, a hybrid working model is acceptable. You will be required to be in our Fairfax, VA office a minimum of two days per week.
Requirements
- Due to the nature of the contract requirements, US citizenship and successful passing of CGI background check is required prior to beginning work. In addition, candidates must have the ability to obtain and maintain a DHS EOD/Public Trust clearance.
- Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or related field (or equivalent experience).
- 5+ years of experience in network security engineering.
- Hands-on experience with Palo Alto Networks firewalls and/or Zscaler Internet Access/Private Access.
- Strong knowledge of VPNs, SSL inspection, secure remote access, and traffic segmentation.
- Proficiency in network configuration, performance tuning, and troubleshooting.
- Familiarity with NIST cybersecurity framework, FedRAMP compliance, and Zero Trust architecture.
- Experience with IDS/IPS, network sensors, and traffic analysis tools.
Responsibilities
- Configure and manage Palo Alto Networks firewalls and/or Zscaler Internet Access/Private Access platforms for secure connectivity and traffic inspection.
- Develop and enforce network security policies aligned with Zero Trust principles.
- Monitor and analyze network traffic using advanced tools (Wireshark, Corelight, ExtraHop) to detect and respond to threats.
- Collaborate with IT and cloud teams to integrate security controls into AWS/Azure environments.
- Lead network-focused incident response activities, including investigation, containment, eradication, and recovery.
- Deploy and manage network security tools such as IDS/IPS and network sensors.
- Conduct regular security audits and ensure compliance with NIST, FedRAMP, and other federal cybersecurity standards.
- Maintain detailed documentation of security policies, configurations, and incidents; prepare reports for management.
- Stay current with emerging security technologies and trends to continuously improve the organization’s security posture.
Benefits
- Competitive compensation
- Comprehensive insurance options
- Matching contributions through the 401(k) plan and the share purchase plan
- Paid time off for vacation, holidays and sick time
- Paid parental leave
- Learning opportunities and tuition assistance
- Wellness and well-being programs
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
Number of Employees
5,001-10,000 employees
