Inline Encryption/Crypto Engineer

About The Position

Requirements

• Demonstrated senior-level experience implementing or integrating inline encryption, network encryption, COMSEC-dependent transport, or secure network boundary capabilities in classified or high-assurance environments.
• Working knowledge of Type 1 encryption concepts, A-side/B-side design, red/black separation, encrypted transport integration, crypto boundary placement, and keying dependencies.
• Experience supporting global or multi-site enterprise networks across WAN, LAN, private transport, carrier services, classified enclaves, or air-gapped operating environments.
• Ability to coordinate technical dependencies among COMSEC, network engineering, cybersecurity, systems engineering, operations, and mission stakeholders.
• Strong understanding of routing, switching, segmentation, transport diversity, high availability, failover, monitoring, and troubleshooting as they relate to encryption deployments.
• Experience supporting RMF processes, ATO documentation, STIG compliance, security controls, or equivalent cybersecurity compliance activities for network infrastructure.
• Ability to produce clear technical documentation, diagrams, implementation guides, test procedures, and operational handoff materials.

Nice To Haves

• Experience with NSA Type 1 inline encryptors, HAIPE environments and cross domain solutions, TACLANE or equivalent controlled cryptographic equipment.
• Familiarity with COMSEC operations, KMI processes, key material handling dependencies, and controlled equipment lifecycle processes.
• Professional certifications such as Security+, CISSP, SANS, INCOSE CSEP or ESEP, OCSMP (MBSE), CCNP, JNCIP, or equivalent technical credentials.
• Experience integrating encryption with SD-WAN, MPLS, satellite, cloud interconnect, UC, and mission communications environments.
• Experience with packet capture, crypto troubleshooting, path validation, network performance analysis, or transport failover testing.
• Familiarity with Zero Trust principles, defense-in-depth network design, and secure enclave integration.

Responsibilities

• Support end-to-end inline encryption engineering activities, including architecture input, detailed design, implementation planning, integration, validation, and operational transition.
• Design, implement, integrate, and modernize Type 1 inline encryption capabilities across global enterprise networks, classified enclaves, multi-enclave environments, and air-gapped networks.
• Engineer A-side/B-side placements, red/black separation, crypto boundary designs, keying dependencies, management paths, high availability, and failover behavior.
• Integrate encryption capabilities across multiple transport layers, including WAN, LAN, private transport, commercial transport, cloud interconnect, satellite, and mission communications paths.
• Coordinate crypto engineering dependencies with COMSEC, KMI, WAN, LAN, UC, identity, cybersecurity, infrastructure, and operations teams.
• Develop crypto implementation plans, connection diagrams, test procedures, migration runbooks, configuration records, and operational support documentation.
• Support lab validation, proof-of-concept activities, integration events, cutovers, troubleshooting, and operational acceptance testing.
• Ensure encryption designs and implementation activities support applicable DoD, NSA, CNSS, RMF, ATO, STIG, and program security requirements.
• Provide technical mentoring and implementation guidance to network and mission communications teams on crypto integration dependencies and operational impacts.

Benefits

• Competitive Salary
• benefits package designed to attract and retain senior technical talent