Network Security Engineer/Architect

About The Position

Requirements

• Bachelor’s degree in computer science , c ybersecurity, i nformation t echnology or a related field + 8 years of professional experience ; or 12 years equivalent professional experience
• Must meet or exceed DoD 8140 IAT Level II minimum Security+ certification
• A minimum of 3 years of dedicated experience in application delivery and network security, with a primary focus on the F5 Big-IP platform
• Clearance Required: Active Secret
• Expert-level, hands-on experience with the F5 Big-IP platform and its core modules: LTM, ASM, APM and DNS (GTM)
• Proficiency in iRules development and scripting to customize traffic handling and implement business logic
• In-depth knowledge of core application protocols (HTTP/S, DNS, SSL/TLS, TCP/IP) and the ability to perform deep-dive packet analysis
• Demonstrable experience integrating F5 solutions with external authentication services (e.g., RADIUS, SAML, LDAP) for 2FA/MFA
• Strong understanding of security infrastructure integration, including experience working with Palo Alto NGFWs, Cisco Firepower and Infoblox DDI
• Experience managing Load Balancing, WAF, Reverse Proxy and Forward Proxy functions within an enterprise DMZ

Nice To Haves

• F5 Certified Administrator (F5-CA) or F5 Certified Technology Specialist (F5-CTS) certifications.
• Experience with F5 automation using AS3, Declarative Onboarding and BIG-IP's iControl REST API
• Familiarity with F5 BIG-IQ for centralized management, monitoring, and analytics.
• Hands-on experience with secure remote access solutions like Palo Alto Networks Global Protect
• Knowledge of adjacent technologies, including VERSA (SD-WAN), FortiGate firewalls, Riverbed (WAN Optimization ) and NetBrain (Network Automation)
• Experience working in large government or enterprise environments with strict change control and compliance frameworks

Responsibilities

• Application Delivery Control: Design, implement and manage advanced traffic management solutions using F5 Big-IP Local Traffic Manager (LTM). This includes writing and maintaining complex iRules , developing custom health monitors and configuring advanced persistence profiles
• Web Application Security: Deploy, tune and manage F5 Big-IP Application Security Manager (ASM) policies to protect web applications against the OWASP Top 10, zero-day attacks and other vulnerabilities (WAF)
• Secure Access Management: Engineer and maintain secure remote and internal access solutions using F5 Big-IP Access Policy Manager (APM), integrating with Two-Factor (2FA) and Multi-Factor Authentication (MFA) services to enforce strong authentication
• Global and DNS Services: Configure and administer F5 Big-IP DNS (formerly GTM) for intelligent DNS resolution and global server load balancing (GSLB) across multiple data centers
• Infrastructure Integration: Serve as the primary point of contact for integrating the F5 Big-IP platform with other critical infrastructure, including NGFWs (Palo Alto, Cisco Firepower), DDI solutions (Infobox) and enterprise monitoring tools
• SSL/TLS Management: Manage the SSL/TLS traffic lifecycle, including certificate management, implementing Break and Inspect policies and offloading SSL processing from backend servers
• Troubleshooting and Performance Tuning: Lead advanced troubleshooting efforts for application availability and performance issues, utilizing tools like Wireshark and F5-specific diagnostics to isolate and resolve problems
• Collaborate with network and security teams to design and enforce Zero Trust security models and the principle of least privilege access
• Assist in implementing and troubleshooting certificate-based authentication (TLS/SSL, OpenSSL operations and PKI infrastructure)
• Conduct deep-dive traffic analysis using tools like Riverbed, Wireshark, TCPDump and SolarWinds to diagnose authentication issues and identify network anomalies

Benefits

• Employee Assistance Program (EAP)
• Corporate Discounts
• Learning & Development platform, to include certification preparation content
• Training, Education and Certification Assistance
• Referral Bonus Program
• Internal Mobility Program
• Pet Insurance
• Flexible Work Environment