Network Security Engineer

Noblis•Washington, DC

2d•Remote

About The Position

We are looking for highly technical professionals with a strong foundation in network architecture, design, and security — individuals who are ready to step up from traditional network engineering roles to take ownership of strategic, architecture-level responsibilities. Ideal candidates will have deep understanding of networking, security architecture and design, and experience applying Federal security guidelines (e.g, NIST 800-53, FISMA, etc.) to harden and secure systems. These are the types of professionals who understand both the big-picture architecture and the hands-on technical details, and who are prepared to make security-focused architectural recommendations in complex environments. The TIS Security Engineer will support the FAA Telecommunications and Integrated Services (TIS) Group and provide expert-level security engineering across the FAA’s FTI environment. This includes: Analyzing and guiding network architecture to ensure cybersecurity is built-in from the ground up. Performing hands-on reviews of system configurations, firewall rules, and network paths to align with FAA Orders, NIST 800-53, and federal cybersecurity standards. Leading efforts in transitioning technologies (e.g., IPv4 to IPv6, microwave radio refreshes) from a cybersecurity and network architecture perspective. Supporting the integration of Zero Trust, Software-Defined Networking (SDN), and defense-in-depth strategies into enterprise-level solutions. Acting as a technical bridge between FAA cyber stakeholders and infrastructure providers (network, security, cloud). Evaluating vendor-proposed architectures and making expert-level recommendations based on federal policy, security principles, and industry best practices.

Requirements

Experience supporting federal government programs, ideally within the FAA or transportation sector.
Proven experience with hands-on network engineer or architecture and understands network design, configurations, firewalls, VPNs, IDS/IPS, and load balancing.
Knowledge of telecommunications infrastructure, including IPv4/IPv6, and WAN/LAN environments.
Understand federal cybersecurity frameworks (NIST RMF, FISMA, NIST SP 800-53 rev 5).
Can evaluate network and system security concepts for large-scale, safety-critical systems like those in the National Airspace System (NAS).
Comfortable advising on defense-in-depth architectures, Zero Trust CONOPS, SD-WANs, and emerging tech.
Have experience collaborating with engineers, PMs, and cybersecurity stakeholders to support ATO packages and continuous monitoring.
Ability to develop system security plans, risk assessments, and related security documentation.
U.S. Citizenship or Permanent Residency with 3+ years U.S. residency.
Bachelor’s degree in Cybersecurity, Information Technology, Telecommunications, or a related field.
12+ years of experience in cybersecurity or network security roles
Subsitutions: For anything requiring a substitution, the governemnt customer is subject to further review and either approve or deny the request.
A High School degree with a total of 18 years of experience in cybersecurity or network security roles
Masters degree with a total of 9 years of experience in cybersecurity or network security roles

Nice To Haves

CISSP, Security+, CCNA, or similar certification.
FAA or transportation sector experience preferred.
Familiarity with Zero Trust Architecture, Security Orchestration, and network virtualization (e.g., NFV).
Strong written, verbal, and interpersonal skills.

Responsibilities

Analyzing and guiding network architecture to ensure cybersecurity is built-in from the ground up.
Performing hands-on reviews of system configurations, firewall rules, and network paths to align with FAA Orders, NIST 800-53, and federal cybersecurity standards.
Leading efforts in transitioning technologies (e.g., IPv4 to IPv6, microwave radio refreshes) from a cybersecurity and network architecture perspective.
Supporting the integration of Zero Trust, Software-Defined Networking (SDN), and defense-in-depth strategies into enterprise-level solutions.
Acting as a technical bridge between FAA cyber stakeholders and infrastructure providers (network, security, cloud).
Evaluating vendor-proposed architectures and making expert-level recommendations based on federal policy, security principles, and industry best practices.