View Our Website View All Jobs

Security Network Engineer

Security Network Engineer, you will architect and implement optimal deployments and respective configuration of hardware and software for enterprise security solutions, covering a wide-range of security topics. This includes, but is not limited to: Vulnerability Management, Configuration Management, Network Access Controls, Malware Defenses, Application Software Security, Security Code Review, Software Asset Management, Hardware Asset Management, Vulnerability Remediation, Security Event and Log Management, Incident Response, Penetration Testing, Wireless Access Control, Least Privilege, Network Monitoring, Boundary Defense, Security Assessment, Account Monitoring and Control, Data Protection, Insider Threat, Continuous Monitoring, and/or others as requested by the Government. 

Responsibilities:

Note: This position is in the Williston, VT area

Create actionable intelligence through triggers, filters, and signatures that pinpoint threats contained within the Security Event Management system for the Security Operations Center to investigate from new and existing continuous monitoring security products, such as, but not limited to: Tenable SecurityCenter, McAfee EPO, DbProtect, Splunk, ArcSight, CISCO ISE, IDS, IOS and Microsoft SCCM, WSUS, Xceedium, NetWitness, HP WebInspect and Fortify, etc
Perform hardening and rule creation for new firewalls, switches, routers and other network equipment.  Review and re-evaluate existing networking equipment to reasonably ensure that there are no rules that expose Federal Governement Agency's security posture to unnecessary risk
Attend all meetings, design reviews, engineering conference calls, system readiness reviews, and participate in Integrated Planning Teams (IPTs) and/or Scrum Sprints/Increments to monitor security requirement execution throughout the Federal Government Agency's Systems Lifecycle process and deliver minutes, and any ad-hoc project reporting requested by the Government
Write system lifecycle documentation for security products or security-relevant system components. 
Perform product/standards comparisons based upon research, independent lab test result reports, intelligence agency recommendations, and other resources authoritative, mandatory, or compelling to a U.S. Federal agency.
Support the design and deployment of information security solutions at all layers of the OSI model, physical layer to application layer, to facilitate a comprehensive defense-in-depth strategy and intrusion defense chain methodology.

Required Qualifications:

Note: This position is in the Williston, VT area

15 years' experience or Master's degree from a related IT field
Minimum of 5 years' experience in network engineering and  years' specialized experience in Cisco firewall and IDS management.
U.S. citizenship required
Active or Interim Secret clearance required
Shall be proficient in configuring, securing, and creating custom rule sets for: Cisco Nexus, Flexpod, IOS, Identity Services Engine (ISE), Cisco Sourcefire and any other additional networking technologies introduced by the Government during the duration of the contract
Experience will NIST SP800 guidance, DHS policy, Agency's policy, and industry best practice (i.e. OWASP)
Proven experience with Tenable SecurityCenter, McAfee EPO, DbProtect, Splunk, ArcSight, CISCO ISE, IDS, IOS and Microsoft SCCM, WSUS, Xceedium, NetWitness, HP WebInspect and Fortify, etc.
Proven experience hardening and creation of rules for firewalls, switches, routers and other network equipment
Thorough understanding of the latest security principles, techniques, and protocols
Problem solving skills and ability to work under pressure
Strong Communication skills, verbal and written

Read More

Apply for this position

Required*
Apply with Indeed
Attach resume as .pdf, .doc, or .docx (limit 2MB) or Paste resume

Paste your resume here or Attach resume file

150