Network Engineer Senior

Clearance Level
Secret
Category
Network Engineering
Location
Albuquerque, New Mexico

REQ#: RQ103124

Travel Required: Less than 10%
Requisition Type: Regular

DESIRED QUALIFICATIONS: BA/BS (or equivalent experience), 5+ years of experience.

U.S. Citizenship is required for all candidates to be considered for this position.

Must be able to obtain or currently possess a U.S. government security clearance. (Up to DOE Q or DOD TS equivalent depending on specific taking/job requirements)

ESSENTIAL JOB FUNCTIONS & REQUIREMENTS

  • The ideal candidate will have recent, relevant, and verifiable daily network operations hands-on experience in an enterprise or service provider environment deploying, troubleshooting, and documenting LAN and campus networks using Cisco network devices (including but not limited to the latest Catalyst, Nexus switches, Cisco ISR & ASR-series routers) and infrastructure applications such as Cisco ISE, Infoblox, Forescout, Wireshark, Nagios, etc.
  • Must have verifiable experience supporting Gigabit Ethernet switched LAN networks with a working knowledge of Spanning Tree Protocol (STP), VLAN Trunking Protocol (VTP), 802.1q Trunking, 802.3ad LACP, Etherchannel, and 802.1x-based Network Access Control (NAC).
  • Demonstrated ability to prepare diagrams and documentation for multiple audiences including federal customer leadership, contractors, and business partners.  Create project plans and presentations for executive level management, and technical working diagrams and checklists for operations staff.  Develop technical and non-technical standard operating procedures.  Submit Change Control Proposals (CCP) for the CAB (Change Approval Board).
  • Review and update technical documentation (network architecture text and diagrams, security plan controls annex and risk assessment, etc.) in support of certification and accreditation for the network enclave.
  • Must have recent, relevant, and verifiable experience configuring routing protocols, applying route filters and troubleshooting enterprise and/or service provider Internet edge and backbone routers running BGP, EIGRP and OSPF.  Must demonstrate understanding of BGP in a multi-homed/multi-carrier environment. Recent experience supporting multi-VRF networks using BGP and MPLS is a plus.
  • Assist and/or lead problem resolution activities, coordinating with Cisco TAC, vendors, and carriers, tracking and escalating trouble tickets, identify and implement service restoration workarounds, perform root cause analysis, and interface with customers at all levels to report status and lessons-learned.
  • Must have excellent problem solving skills and a solid understanding of how to troubleshoot connectivity, performance and QOS issues that involve routers, firewalls, network applications, and circuits (T-1, T-3, OC-3, 12, 192), ISDN, HDLC, PPP and MPLS).
  • Must have recent, relevant, and verifiable experience in a network operations role and understanding of current and emerging network technologies.
  • Must intimately understand the TCP/IP stack and how it operates on networks with hosts running Linux, Windows / 7-10 and Windows Server operating systems or vendor product appliances.
  • Must have a strong understanding of application transport and network infrastructure protocols (SSL/TLS, DNS, DHCP, WINS, NTP, FTP, HTTP, SMTP, CIFS, LDAP, and Microsoft AD) and their relationship to end-user applications.  Experience with 802.1x and Network Access Control (NAC) is a plus.
  • Proficiency with the Perl scripting language is preferred for automating configuration changes, parsing log data from firewalls and routers, generating reports, detecting network traffic anomalies, etc.
  • Past experience as a sys-admin for both Linux and Windows servers is a plus.
  • The candidate must excel in high-paced, demanding environments where each day provides a new set of challenges under short time constraints involving complex network configurations and/or troubleshooting multiple hosts scattered across a large campus network.
  • Must have a working understanding of the TCP/IP stack and previous verifiable experience supporting heterogeneous LAN, WAN, and wireless networks.  Understand common user applications and related protocols (e.g. HTTP/HTTPS, CIFS, LDAP, DNS, DHCP, NTP, FTP, SMTP).
  • Possess excellent problem solving skills and a solid understanding of how to quickly troubleshoot connectivity and performance issues that involve switches, routers, desktops, printers, and servers.
  • Can demonstrate proficiency with Linux command line utilities and familiarity with Perl or shell scripting languages to automate configuration changes, parsing log data from switches and routers, generating reports, detecting network traffic anomalies, etc.
  • Experience configuring BGP and EIGRP with both VRF-Lite and MPLS is a plus.
  • System administrator experience with VMware, Nagios, Cisco ISE, Forescout is a plus.

Other Job Functions

  • The successful candidate will demonstrate initiative and be able to operate without supervision when required. Must have strong time management, multi-tasking, organization, and administrative skills and must be highly proficient with Visio, Project, PowerPoint, Word, Excel, and Outlook.
  • As a member of the network operations team, the ideal candidate will be viewed as a mentor for junior technical staff as needed. This position will also be called upon regularly as a backup to other staff on the network team (e.g. update BIND DNS zones; create DHCP scopes with Infoblox, etc.).
  • Must have experience with Wireshark, Ethereal, tcpdump or equivalent packet decoding tools to collect and review packet captures.
  • Develop documentation to improve current network operating procedures.  Draft configuration Change Control Proposals (CCP) for submission to the Configuration Approval Board (CAB).
  • Create and update topology diagrams and associated documentation for each office location and network enclave.
  • Review log events and operate network management applications to perform fault detection, identify performance metrics, and generate reports to support specific service level requirements.
  • Possess strong Linux command-line skills.  Install and operate open source software to perform network monitoring functions.   Develop scripts to identify security events, fault detection, correlation of log events, performance metrics, and generate reports to support specific service level requirements.
  • Must be flexible and able to work nights, weekends and holidays as needed to support planned and unplanned network maintenance and troubleshooting events.  The successful candidate is expected to be available on-call 24x7.  Upon hire, the engineer will be issued a Smartphone (iPhone/Android) and VPN access to allow rapid response to network events whenever the network operations center escalates a problem to on-call network engineer staff.
  • Experience working in a remotely administered lights-out environment is preferred, where equipment is deployed pre-configured and out-of-band access via remote access appliance is used when necessary, during circuit problem determination.
  • Ability to travel as needed, primarily within the Albuquerque, NM region in support of adjacent DOE field sites, Labs and plants.  Limited travel to field sites within CONUS may be required (a few times per year).
  • As part of the selection process, the candidate must demonstrate excellent verbal and written communication skills, with fluency in English equivalent to a native speaker.
  • Past employment supporting the U.S. Federal government and/or military experience is a plus.

Knowledge, Skills and Abilities

Cisco IOS Routers, Perl, Red Hat Linux, Scripting, Technical Writing, Presentations, Network Design, MPLS, BGP, VRF, EIGRP, OSPF, QOS, TCP/IP, DMVPN, VPN, IPSEC, ITIL, PMI/PMP

Work Environment and Physical Demands

The successful candidate will work in an IT data center (raised-floor) environment and be able to lift up to 50 pounds.  Dress code is business casual.

---x---

Analyzes customer requirements and provides technical solutions to a wide range of difficult problems.

Performs maintenance and upgrade of networks including servers, routers, switches, firewalls, remote access systems, and networks.

Maintains network integrity and connectivity while ensuring compliance with policies and maintains system backup and recovery capability.

Coordinates the acquisition of hardware and software as well as subcontractor services as needed.

Creates plans and configures systems for data communication networks.

Evaluates new communications technologies to enhance capabilities of the network.

Maintains current knowledge of relevant technology as assigned.

Designs and builds the hardware and software components for computer or telecommunications networks.

Provides guidance and leadership to less-experienced network personnel.

This position requires being fully vaccinated against COVID-19 by January 18, 2022 or the start date, if after January 18. Individuals who work in or reside in Texas or Montana or work outside of the United States may be excluded from this requirement.

We are GDIT. The people supporting some of the most complex government, defense, and intelligence projects across the country. We deliver. Bringing the expertise needed to understand and advance critical missions. We transform. Shifting the ways clients invest in, integrate, and innovate technology solutions. We ensure today is safe and tomorrow is smarter. We are there. On the ground, beside our clients, in the lab, and everywhere in between. Offering the technology transformations, strategy, and mission services needed to get the job done.

GDIT is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.