Key skills
Cyber SecurityFirewallsCommunicationNetwork SecurityZero TrustFirewall
About this role
Role Overview
- Operate and maintain secure network solutions operated as a centralized enterprise capability for the United States Army
- Partner with key stakeholders and technical experts to perform legacy environment discovery, assessing current capabilities, configurations, and requirements to provide network firewall migration support for the Army global network
- Analyze and understand complex firewall security zones and policies with the ability to transform policies between multiple vendor firewall devices while meeting mission requirements
- Support secure access solutions leveraging zero trust network access (ZTNA) including support for creation of new access policies and maintenance of existing policies
- Integrate capacity planning and scaling of network and security stack environments into the overall operational support processes and staff
- Collect, investigate, and identify network resource management strategies and techniques to meet capacity and performance requirements
- Work with information assurance teams and the AGUN cybersecurity service provider (CSSP) to ensure compliance to DoD standards to assist with maintenance of the network security posture
- Document designs, diagrams, drawings, and technical narratives using wiki technologies and common diagram and drawing tools
Requirements
- Must currently possess and be able to maintain an active DoD SECRET security clearance
- Minimum of a Bachelor’s degree with 10+ years' experience or Master's degree with 10+ years of experience (additional years of directly applicable experience may be accepted in lieu of a degree)
- Require active DoD IAT Level II (i.e. Security+) certification or equivalent prior to start
- Must obtain and maintain an approved Computing Environment (CE) certification applicable to the supported technology environment within six (6) months of hire
- Expert understanding of networking and virtualization of firewalls including VSYS in a multi-tenant environment
- Demonstrated experience with networking concepts such as LAN, WAN, BGP, TCP/UDP, IPSec, VPN, Routing(L2/L3), and firewalls in a virtualized environment
- Demonstrate experience in one or more of the following enterprise network management tools such as Palo Alto Panorama, Cisco Prime, Cisco DNA, or Junos Space
- Demonstrate experience in system hardening of network infrastructure to include DoD STIG implementation
- Must have experience in working with two or more of the following vender network technologies: Cisco, Juniper, Palo Alto, Dell, RAVPN, Global Protect, or AppGate
- Experience with the following protocols: SFTP, SSH, SCP, MPLS, SNMP, NTP
- Must be able to work as part of a team to execute troubleshooting and resolve complex network security issues
- Must have excellent written and verbal communication skills
- Must be willing to work non-standard shifts to accomplish network migration objectives and goals
- Must be able to interface with customers
- Must be willing to travel up to 10% of the time
Tech Stack
- Cyber Security
- Firewalls
Benefits
- Health and Wellness programs
- Income Protection
- Paid Leave
- Retirement