Network Security Engineer 3

About The Position

Requirements

• TS/SCI with Agency Appropriate Polygraph
• Fifteen (15) years experience as a Network Security Engineer analyzing complex hardware systems on programs and contracts of similar size, scope, and complexity is required
• Bachelor’s degree in Communications Engineering, Computer Engineering, Computer Science, Electrical Engineering, Information Systems, Mathematics, or related discipline from an accredited college or university is required
• Five (5) years of Network Security engineering experience may be substituted for a Bachelor’s degree
• Must meet DoD approved 8570 Baseline Certification for IAT Level III
• Must possess at least three (3) of the following vendor certifications: Palo Alto Next-Generation Firewall Engineer (NGFE), Sonicwall Network Security Certification (Administrator (SNSA) or Professional (SNSP)), Cisco Enterprise Certification (CCNA, CCNP, or CCIE)
• Computer Network Operations NSE-3/Architecture Lead Network - Ten (10) years experience completing component testing on switches, VPN concentrators, or routers
• Led a minimum of 2 evaluations on switches, routers, or VPN devices
• Information Assurance NSE-3/Architecture Lead Firewall/Proxy - Ten (10) years experience completing component testing on Firewalls and/or Web Proxies
• Led a minimum of 2 evaluations on Firewall and/or Web Proxy devices
• Information Technology NSE-3/Technical Lead - Ten (10) years experience directing up to 30 engineers scoping a minimum of 5 IT security systems
• Two (2) years experience with IAVA scanning and patching requirements
• Other NSE-3/Deployment Lead - Served as a Deployment Lead for Network Boundary systems for a minimum of 5 large deployments (5 or more racks) and 5 small deployments (4 or less racks)
• Prepared a minimum of 10 site Technical Design packages (implementation packages) that include Architecture diagrams, Rack Elevation Diagrams, Inventory information, Cabling information, and IP addressing tracking
• Worked a minimum of 5 deployments through a defined acquisition logistics management process
• United States Citizenship
• Position appropriate security clearance (e.g. Active TS/SCI security clearance with customer appropriate polygraph)

Responsibilities

• Provide engineering expertise to analyze complex systems, architecture, network design and other technical hardware issues
• Procure and perform acceptance testing on equipment
• Provide hardware maintenance support, both preventative and remedial
• Deploy, install, and implement hardware at Continental United States (CONUS) and Outside Continental United States (OCONUS)
• Prepare specifications for hardware by analyzing documented and derived system requirements
• Conduct site surveys
• Prepare engineering plans and site Technical Design Packages
• Organize and direct hardware installations
• Configure (and document configuration of) computers, networking devices and various peripheral equipment
• Prepare site installation and test reports
• Ensure that problems have been properly identified and solutions will satisfy the user’s requirements
• Prepare reports and recommendations concerning existing and emerging hardware technologies
• Provide specific input to the hardware components of system design to include end-user devices, servers, networking devices, data storage devices, and specialized processors
• Configure network devices, firewalls, web proxies, VPNs and load balancers
• Direct the work of other Network Security engineers on a project requiring a variety of Network Security engineering activities and tasks
• Plan all phases of hardware projects to include schedules, budgets, and maturation of technical performance parameters
• Work closely with system engineering and test engineering to develop and validate hardware portion of test plans, test procedures, throughput models, failure analysis, and risk analysis
• Develop proposals for the program manager to reduce or avoid customer costs in up-front acquisition costs or operational/disposal costs
• Organize and direct teams to address critical system failures that potentially derive from hardware component failure or misconfiguration
• Perform system or network designs that encompass multiple enclaves, to include those with differing data protection/classification requirements
• Recommend system-level solutions to resolve security requirements
• Provide security planning, assessment, risk analysis, and risk management
• Support the Government in the enforcement of the design and implementation of trusted relationships among external systems and architectures

Benefits

• The company automatically contributes an additional 10% of each employee's gross compensation to the company SEP IRA plan, with no requirement for employee matching
• All contributions are fully vested from day one, ensuring immediate ownership of retirement funds
• A Choice of CareFirst BlueChoice Medical Plans, some with Health Savings Account (HSA)
• CareFirst Preferred Dental
• CareFirst BlueVision