Network Engineer Lead

Network Engineer Lead. 

Functional LCAT Title: Network Engineer/IA-RMF II

Principle Duties and Responsibilities:

The Network Engineer shall act as the overall communications architect for the MTC with coordination responsibility with outside agencies and MTC branches. The Network Engineer Lead coordinates all aspects of the communications architecture and exercise support plans with communications planners at other simulation facilities, the USARPAC NECs, and participating tactical units. Plans include distribution of data, voice, and VTC over LAN and WAN in classified and unclassified modes for simulations/stimulation networks; NIPRNET, SIPRNET, and tactical networks. The Network Engineer Lead shall create/establish communications architecture, and be required to provide installation, operation, and maintenance support to Layer 2 and 3 networking devices in support of distributed exercises. Responsibilities will also include building network connections and configurations in order to support our integrated systems architecture and controlled application framework. Additional skills will also be required to configure and maintain security posture of the training networks by following all DOD STIGs associated with systems on supported network domains, including VTC, VoIP, CUCM and Layer 2 and 3 networking devices. The Network Engineer Lead will also be required to troubleshoot all problems that arise with the network to maintain optimal performance and provide relevant operational feedback and reports.

• Design and implement the Cisco Nexus series, Firepower NextGen IPS, Wireshark, STP, VTP, VLAN, Ipv6, SolarWinds and etc. 
• Develop and update Network Topologies to include supporting RMF artifact creation.
• Design and implement the security boundary network architecture by creating a blueprint and carefully detailing all aspects of its design in order to establish the networking environment. 
• Ensure the training network architecture meets the DoD/USARMY/NSA/DISA Cybersecurity RMF compliance to include eMASS, ACAS, STIGs and etc. 
• Performs all procedures necessary to ensure the safety of information systems assets and to protect systems from intentional or inadvertent access or destruction.
• Performs periodic and on-demand system audits and vulnerability assessments, including user accounts, application access, file system and external Web integrity scans to determine compliance. 
• Schedule upgrades when needed and collaborate with other network engineers/ architects in order to fully optimize the organization’s network. 
• Provide Installation, Operation, and Maintenance support to the VoIP system (such as Cisco Call Manager) and end user devices.
• Design and implement network security to include Cisco IOS ASA, gateway, IDS/IPS and support HBSS implementation.  
• Supports the design and implementation of Windows sever 2012/2016, Redhat Linux, DNS, DHCP, Clustering, SQL, Exchange server, SMS, SCCM, VMware and vSAN.
• Supports the design and implementation of NetBackup, Tape backup library, Windows scripting host, JavaScript, proxy configuration and etc. 
• Collaborate with engineers from other sites to evaluate plans for implementing new computer network technologies, following specific program requirements.
• Prepares incident reports of analysis methodology and results. 
• Provides guidance and work leadership to less-experienced technical staff members, and may have supervisory responsibilities. 
• May serve as a technical team or task leader.
• Participates in special projects as required.

Network Engineer Lead Minimum Qualifications.

• DoD 8570 Baseline Certification as IAT II or above 
• Professional Certification in one or more specific technologies may be required to meet DoD Approved RMF Baseline Certifications.
• Advanced knowledge of data security administration principles, methods, and techniques.
• Requires familiarity with domain structures, user authentication, and digital signatures.
• Requires understanding of firewall theory and configuration.
• Understands the Risk Management Framework (RMF) Certification & Accreditation process and Information Assurance requirements including DHS/DoD policies and procedures, FIPS 199, NIST 800-53 and other applicable policies.
• Shall possess advanced planning, troubleshooting and maintenance skills on CISCO router, switch and firewall configuration and SONET configuration/ architecture. 
• Will have a strong understanding of technology integration and information flow including LAN/WAN, firewalls, security, storage, and backup methodologies. 
• Knowledge of specific product lines (Cisco, Fujitsu, Hewlett Packard, and Tripwire) 

Education:

BS/B in computer science, information systems, engineering, or related field with concentration in computer based technology

Yrs Experience: 6-8 yrs

Clearance: TS