Sr. Network Security Engineer

Clearance Level
Information Security
Bethesda, Maryland

REQ#: RQ101870

Travel Required: None
Public Trust: NACI (T1)
Requisition Type: Regular

GDIT is seeking a Sr Network Security Engineer to support the National Institutes of Health (NIH) Center for Information Technology (CIT) program. In this role you will be responsible for the configuration, deployment, and management of the customer’s security and Network Access Control (NAC) solutions in a 24x7x365 environment. You will also be responsible for monitoring, configuration changes, accounts, and software updates for the customer’s security appliances and infrastructure.

This position is expected to remain primarily remote. However you should be within a reasonable commuting distance should you need to attend a meeting or circumstances change.

Responsibilities and Duties:

  • Architecture and administration of LAN technologies for Cisco Switches and Cisco ASA Firewalls
  • Architecture and administration of NAC systems, including Cisco ISE, Forescout, Cisco ACS, RSA, Cisco AnyConnect, and Gigamon
  • Act as an escalation point for LAN/NAC related issues
  • Maintain a relationship with key Third-Party vendors, such as software/hardware vendors
  • Create and maintain network diagrams and document activities
  • Provide Subject Matter Expertise for all networking technologies with heavy participation in key decision-making processes for the acquisition of current/new technologies
  • Meet with GDIT management and the Federal customer to review design and implementation efforts as requested
  • Work closely with other IT functional teams to ensure cohesive support and strategies across the IT organization
  • Execute project plans as authorized 


  • Determine Level of Effort (LOE) for service/solution requests
  • Produce daily/weekly status reports
  • Develop change management plans
  • Maintain the project risk register
  • Attend weekly PMO team meetings


  • BS degree in Computer Science, Information Systems or equivalent and 15 years related experience
  • Extensive experience in analyzing, troubleshooting, and remediating issues within the enterprise
  • Minimum of 10 years of experience implementing and maintaining NAC technologies (i.e. Cisco ISE, Forescout, Cisco AnyConnect, )
  • Minimum of 10 years of experience in a Network Security Engineering role
  • Experience with network security / infrastructure in enterprise datacenter solutions
  • Experience with Cisco VPN Architecture / AnyConnect
  • Experience with PKI / RSA Security
  • Experience with ACS / ISE Implementation / Design
  • Experience with running mid to large scale implementations of NAC technologies
  • Excellent written and verbal communication skills
  • Must be able to obtain Public Trust


  • Related certifications, such as Cisco CCNA/CCNA/Security, CCNP/CCNP Security, CCIE
  • Cisco SISE certification
  • Palo Alto Certification
  • Forescout FSCA/FSAA/FSCE certifications
  • Experience with ServiceNow


  • Ability to explain and elaborate on technical details.

This position requires being fully vaccinated against COVID-19 by January 18, 2022 or the start date, if after January 18. Individuals who work in or reside in Texas or Montana or work outside of the United States may be excluded from this requirement.

We are GDIT. The people supporting some of the most complex government, defense, and intelligence projects across the country. We deliver. Bringing the expertise needed to understand and advance critical missions. We transform. Shifting the ways clients invest in, integrate, and innovate technology solutions. We ensure today is safe and tomorrow is smarter. We are there. On the ground, beside our clients, in the lab, and everywhere in between. Offering the technology transformations, strategy, and mission services needed to get the job done.

GDIT is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.