Network Security Engineer

Qualification Requirements

• Perform in a SME network security engineering (NSE) role responsible for the design, deployment, integration, and connectivity of IT systems, network, and threat management systems to ensure stable, scalable, redundant, and secure 24x7 security operations
• Apply knowledge of best practices and latest trends in the network security engineering industry to support the deployment and operation of IT services and solutions
• Understand, promote, and apply network standards, reference architectures, and frameworks in the design, test, and implementation of IT systems and services
• Work with Solution Architects to conduct Proof of Concepts (POCs), and assist in production implementations
• Work with members of the infrastructure and applications teams to design, implement, operate, and troubleshoot client security infrastructure systems
• Provide daily support and perform maintenance tasks (as required) for security infrastructure components, including (but not limited to) Web Security Gateways, Network Access Control systems (ISE), Intrusion Detection and Prevention Systems (IDS/IPS), Firewall policy and rules implementation, etc
• Triage, analyze, and perform root cause analysis for security and network-related issues.
• Provide input to programs throughout the lifecycle to ensure systems meets Risk Management Framework standards
• Participate in special projects as required to include technology evaluations and produce Analysis of Alternatives (AoA) and provide Network Security SME recommendations

Position Requirements

• BA or BS degree, or at least 4 years of experience in related field
• Excellent communication skills, verbal and written, with ability to influence and collaborate with leadership, peers, and team members
• Approved to work in the United States
• Ability to work well in a team environment
• Experience in customizing application delivery with rules, understanding of NAT (Network Address Translation) and SNAT (Source Network Address Translation), managing application health and server status, SSL Offloading, TLS security and cipher management, and BIG-IP Access Policy Manager (APM) in a federal government environment
• Awareness of the general cyber security threat landscape, including common vulnerabilities, exploits, social engineering, and malware.
• Experience in end-to-end problem determination and troubleshooting system issues, including root cause analysis.
• Experience with Cloud-based Computer Network Defense (CND)
• Experience with Networking in Cloud and On-Prem environments
• Experience with A&A practices and processes under Risk Management Framework (RMF) and implementing NIST 800-53 security controls for U.S. Government networks and applications
• Extensive experience and understanding of security operations, practices, and methodologies
• Implement and apply technologies, processes, and practices designed to protect networks, devices, programs, and data from malicious attack, damage, or unauthorized access
• Experience with A&A practices and processes under Risk Management Framework (RMF) and implementing NIST 800-53 security controls for U.S. Government networks and applications
• Active clearance, or ability and willingness to submit for a clearance/BI process