Network Security Engineer (SME) | Req#3853

Description

Duties and Responsibilities

• Add and manage nodes in Splunk and Riverbed for monitoring purposes
• Update monitoring tools using Ansible
• Interact successfully with both program leads and DOJ partners to ensure objectives are completed on time
• Manage IT security, including backups, firewalls, and routers
• Provide guidance for the design and management of information systems security policies and implementation across a globally distributed MPLS infrastructure
• Provide network security management and support for Windows servers
• Resolve routing and NAT issues using tcpdump and other tools
• Perform system upgrades and implement new security policies per agency guidance
• Troubleshoot complex LAN/WAN infrastructure involving BGP, EIGRP, OSPF, VPNs, web proxy, and XML gateway for enterprise web services
• Work with networking concepts and routing protocols like BGP, EIGRP, DMVPN, and other LAN/WAN technologies
• Recommend enterprise information assurance and security standards
• Develop and implement information assurance/security standards and procedures
• Coordinate, develop, and evaluate security programs for the organization
• Recommend information assurance/security solutions to meet customer requirements
• Identify, report, and resolve security violations
• Establish and satisfy information assurance/security requirements based on user, policy, regulatory, and resource demands
• Support customers at the highest levels in developing and implementing doctrine and policies
• Perform a variety of system engineering tasks related to major systems design, integration, and implementation (including personnel, hardware, software, and support infrastructure)
• Apply expertise to government and commercial systems, including those requiring specialized security features
• Analyze, design, and develop security features for system architectures
• Define security requirements for various computer systems (mainframes, workstations, personal computers)
• Design, develop, and implement security solutions
• Provide integration and implementation of system security solutions
• Analyze complex information assurance technical problems and provide engineering support to resolve them
• Conduct vulnerability/risk analyses of systems and applications throughout the system development life cycle
• Ensure all information systems are functional and secure
• Perform system security tuning, monitoring, account management, and review COTS software upgrades and patches
• Monitor and perform script writing, storage management, network interfaces, and other system interfaces
• Design and execute security system tests
• Support all system/service certification and accreditation activities

Basic Qualifications

• 5 years of total experience, including 2 years of current experience supporting and troubleshooting various computing devices and operating systems
• Strong technical background (CompTIA A+ certification preferred)
• Proficiency in networking and cybersecurity technologies and protocols
• Experience managing and troubleshooting Linux or Unix-based operating systems
• Experience with Application Layer Gateway (ALG) protocols including RTP, RTSP, FTP, DNS, HTTP, and DHCP
• CompTIA Security+ certification required
• CASP+ or Cisco Certified Cybersecurity Professional (CCCP) certification preferred
• Experience working in Agile environments using Scrum, XP, Kanban, and SAFe

Preferred Qualifications

• Bachelor’s degree in Computer Science, Information Systems, Engineering, or a related field preferred