Network Operations Lead - Zero Trust

About The Position

Requirements

• 7–10 years of progressive, hands-on experience in enterprise network operations leadership, with hands-on experience implementing or operating in a Zero Trust architecture.
• Bachelor’s degree in Computer Science, Network Engineering, Information Systems, or a related technical field. Equivalent professional experience considered.
• Demonstrated experience leading network operations in a federal or comparable regulated environment.
• Hands-on expertise designing, implementing, or operating Zero Trust architectures — including identity-based access, micro-segmentation, and continuous-verification controls.
• Strong working knowledge of enterprise network infrastructure — routing, switching, firewalls, VPN, SD-WAN, wireless, and IPv4/IPv6 networking.
• Hands-on experience with Cisco, Palo Alto, Juniper, or equivalent enterprise infrastructure.
• Strong understanding of network security — segmentation, NAC (802.1X, RADIUS), WAF, SIEM integration, and STIG compliance.
• Proven leadership; track record of leading technical teams through operational incidents and strategic transitions.
• Excellent written and verbal communication; ability to brief senior federal stakeholders.
• U.S. Citizenship and the ability to obtain and maintain a Secret clearance.

Nice To Haves

• Professional-level networking certification — Cisco CCNP/CCIE or Palo Alto Networks Certified Network Security Engineer (PCNSE). CCNA may be considered with substantial hands-on experience.
• CISSP, CISM, or comparable security leadership certification.
• Cloud networking certification — AWS Advanced Networking, Azure Network Engineer Associate, or equivalent.
• Prior federal civilian or defense network operations experience.
• Familiarity with NIST 800-207 (Zero Trust Architecture) and the CISA Zero Trust Maturity Model.
• Hands-on experience with Aruba Central, Aruba Wireless infrastructure, and Aruba ClearPass Policy Manager in large enterprise or government networks.
• Practical experience deploying, configuring, and troubleshooting Palo Alto Networks firewalls, including Panorama management.
• Experience integrating Zscaler Internet Access (ZIA) and Zscaler Private Access (ZPA) for secure remote connectivity and Zero Trust enforcement.
• Extensive experience in enterprise network architecture and topology design — LAN/WAN, wireless, SD-WAN, and hybrid cloud integrations — including: IPv4 and IPv6 configuration, migration, and troubleshooting. Routing protocols (BGP, OSPF, EIGRP) and switching technologies (VLANs, STP, VTP). Network security technologies (VPNs, ACLs, IPsec, SSL/TLS, NGFW). Cloud networking in AWS, Azure, or GCP. Network automation tools (Python, Ansible, Terraform).
• Proven ability to activate, back up, deactivate, and restart network resources and services with minimal downtime.
• Strong background diagnosing complex LAN/MAN/WAN issues using packet analysis and performance monitoring tools (Wireshark, SolarWinds, PRTG).
• Excellent documentation skills, including network diagrams in Visio or Lucidchart.

Responsibilities

• Lead the Network Operations workstream across DFC, owning the reliability, performance, and security posture of DFC's enterprise network.
• Drive operational execution of DFC's Zero Trust strategy — identity-based access, micro-segmentation, continuous verification, and least-privilege enforcement across network and application traffic.
• Own incident response for network and connectivity issues across DFC HQ (Washington, DC) and DFC NYC (100 Pearl St); maintain availability SLAs.
• Lead and mentor the network engineering and operations team; set clear technical direction and develop talent on engagement.
• Maintain and continuously improve network architecture documentation, runbooks, and operational procedures.
• Operate and evolve DFC's perimeter and internal network controls — next-generation firewalls (Palo Alto, Cisco, or equivalent), WAF, network access control (802.1X, NAC), and SD-WAN where applicable.
• Coordinate with the security operations team on threat detection, SIEM integration, vulnerability management, and incident response.
• Support DFC's CIO and security leadership with executive briefings, capacity planning, and technology investment decisions.
• Lead vendor coordination with DFC's ISPs, carrier partners, and security tool vendors.
• Define network operations metrics and produce regular reporting for DFC government leadership.

Benefits

• Competitive Salary, commensurate with experience, certifications, and clearance.
• Managed Revenue Bonus eligibility: tied to performance against revenue and margin targets on the assigned portfolio. Specific structure and targets to be discussed during the offer process.
• Health Care Plan (Medical, Dental & Vision)
• Retirement Plan (401k, IRA)
• Life Insurance (Basic, Voluntary & AD&D)
• Paid Time Off (Vacation, Sick & Public Holidays)
• Family Leave (Maternity, Paternity)
• Short Term & Long Term Disability
• Training & Development
• Work From Home
• Wellness Resources