Hybrid Network Administrator & Information Security Analyst

Please take this opportunity to join one of GDIT’s fastest long-standing growing programs!  US Battlefield Information Collection and Exploitation System eXtended (US BICES-X) is a cutting-edge program supporting DoD intelligence information sharing on current and emerging global threats to mission and coalition partners and emerging nations. With an internationally dispersed team supporting each combatant command, the US BICES-X team is in direct support of the war fighter and their missions. We are seeking a creative and driven professional with a passion for solving real world issues on a cross-functional, fast paced team. 

Responsibilities:

• Identifies, analyzes, and resolves network incidents and problems.
• Provides network/equipment/specialized training and technical guidance.
• Determines network specifications, input/output processes, and working parameters for hardware/software compatibility.
• Knowledge of the associated hardware, software, and equipment associated with USBICES.
• Analyzes, administers, and maintains voice, video, and/or data communications networks.
• Maintains network to meet Enterprise Service Availability and Service Level Agreement requirements.
• Utilizes IT Service Management (ITSM) Principles to identify, categorize, prioritize, escalate, troubleshoot, and resolve incidents.
• Participates in the development and implementation of network and security-related procedures and standards.
• Interfaces with vendors to ensure appropriate resolution during network outages or periods of reduced performance.
• Within our Cyber Security Infrastructure environment provide implementation and administration of Security Ops, SPLUNK, ACAS, ESS, Cisco Firepower/ASA, ISE and security related activities to secure and harden systems.
• Assists with the configuration, operation, and troubleshooting of the Cisco Network Infrastructure, to include security hardening, implementation of 802.1x/MAB, TACACS+ authentication, OSPF Routing, Site-to-Site VPN’s, Campus and Data Center LAN’s.
• Uses defensive measures and information collected from a variety of sources to identify, analyze, and report events that occur or might occur within the network to protect information, information systems, and networks from threats.
• Utilize available resources to conduct Cybersecurity activities, and report to senior GDIT and government personnel on overall program security posture.
• Conduct network and system audits for vulnerabilities using Security Technical Implementation Guides (STIGs), ACAS vulnerability scanner, and DISA SCAP to mitigate those findings for Solaris, Linux, Windows, and associated network operating systems.
• Ensures the integrity and protection of networks, systems, and applications by technical enforcement of organizational security policies, through monitoring of vulnerability scanning devices.

Required Qualifications:

• 5+ years of experience.
• Must possess and maintain a TS/SCI Security Clearance.
• BA/BS degree – may substitute additional years of experience.
• Must possess a completed CCNA certification.
• Must possess a completed Security+ certification.
• Must meet DOD 8750 requirements and be eligible for IAT level II access upon hire.
• Knowledge and experience with routing and switching protocols (e.g. OSPF, EIGRP, BGP, Spanning Tree Protocol, ISAKMP, ESP, SIP, SCCP, etc.)
• Knowledge and experience with current Cisco IOS software and hardware features.
• Requires understanding of DOD RMF.
• SPLUNK & SYSLOG operating, and management experience is a must.
• Experience with STIG patching, compliance, and other security activities
• The candidate must be willing to perform systems maintenance duties after-hours and on weekends.
• Candidate must be willing to be on-call for troubleshooting and support.
• The work is performed at client site locations, which requires proper safety precautions; work may require some physical effort in the handling of light materials, boxes or equipment.

***Must be willing to work shift work, weekends, and holidays when required***
 

Preferred Qualifications:

• ESS Proficiency with a focus Endpoint Product compliance.
• Red Hat Enterprise Linux operation and maintenance experience
• Knowledge and experience with VoIP/VTC collaboration systems
• Knowledge and experience with HAIPE-based encryption devices
• Knowledge and experience with Multicast and GRE Routing
• Knowledge of Virtualization technologies as they apply to networking: VMware, Citrix, and Microsoft
• Knowledge and experience with data center networking
• Experience with firewalls and firewall rule sets
• Understanding of network virtualization