Builds, designs, tests and deploys perimeter, cloud security systems to include firewalls and proxy devices. Responsible for firewall rule changes by process that includes analysis of the request, security recommendation, change control documentation and obtaining approval, and implementation.
Facilitates system implementation planning, providing review of firewall rules and security risk analysis.
Conducts troubleshooting of firewall (VM, appliance, cloud based) and network application issues, providing root cause determination and recommend resolution options. Manage vendor ticket, information gathering, and troubleshooting in the event of a platform issue.
Plans, documents, and implements hardware and software refresh and upgrade of Palo Alto perimeter devices.
Conducts periodic firewall rule set review and auditing for standards and use. Competence with Linux and firewall command line interfaces.
Creates and maintains standard operating procedures and guides for new cloud and/or existing perimeter hardware and software. Attends weekly teleconferences, onsite meetings, and participates in working groups, as related to constant changing security environment.
Required Education/Experience: Bachelor degree in a computer science/computer engineering related discipline or 10 years of work experience. Required Experience/Skills/Attributes: 10+ years IT network engineering support experience (Tier II, Tier III, network infrastructure implementation and maintenance). 3+years supporting cloud environments such as AWS and Azure with a security specialty and focus. Expert experience in one or more of the following security devices: Palo Alto Firewalls, Cisco ASA/FirePower, Checkpoint, Netscreen. Experience supporting the configuration and maintenance of Firewall/DMZ infrastructure including Network and Application Firewall Packet Filtering technologies. Firsthand experience in developing and providing quality assurance review of engineering change orders relating to the replacement or enhancement of perimeter security hardware and software. Experienced with performing root cause analysis, risk identification and risk mitigation. Experienced with network monitoring devices such as HP Openview, Nagios, Zenoss, NeuralStar or other similar monitoring tools. Desired Experience/Skills/Attributes: Certifications: CISSP, CCNP Security, PCNSE, Network+, Security+, CEH, ITIL (r) Foundation certification, AWS Security, AWS Advanced Networking, Linux scripting and programming in Python and or Pearl greatly desired.
Interpersonal skills including the ability to collaborate effectively, self-awareness, and excellent written and oral communications.
We are GDIT. The people supporting some of the most complex government, defense, and intelligence projects across the country. We deliver. Bringing the expertise needed to understand and advance critical missions. We transform. Shifting the ways clients invest in, integrate, and innovate technology solutions. We ensure today is safe and tomorrow is smarter. We are there. On the ground, beside our clients, in the lab, and everywhere in between. Offering the technology transformations, strategy, and mission services needed to get the job done.
GDIT is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.