Senior Firewall Engineer - Commercial Solutions for Classified (CSfC), Government Clearance Required

Clearance Level
Interim Secret
Category
Network Engineering
Location
Sterling, Virginia

REQ#: RQ137880

Travel Required: Less than 10%
Requisition Type: Regular

Project Overview

Join us to help build a secure cloud from the ground up.  We need someone who has established firewalls before from start through development to production.

Program Description

This program supports a new initiative at a cabinet level agency to improve and enhance information sharing efforts. To support this effort, the Senior Firewall Engineer will build, implement, and maintain multiple client networks including unclassified and classified network components.

This includes installing firewalls, establishing rules and troubleshooting network connectivity. This position will also troubleshoot and resolve connectivity issues.

The ideal candidate will have in depth experience in building, implementing, managing, and maintaining multiple firewalls. The selected candidate will serve as a generalist and will need to be able to balance supporting multiple task lanes.

 Functional Duties

The Senior Firewall Engineer should be able to:

•             Design and implement enterprise solutions for our network infrastructure

•             Document network infrastructure and support playbooks

•             Maintain and optimize networks

Key Personality traits that will do well in this environment

•             Inquisitive by nature; you know where to look to find answers

•             You enjoy collaboration and sharing information with other highly technical people

Environment you will work in

•             The intersection of Cybersecurity and data analytics. No better place to be.

•             Highly technical and fast-paced environment.

Daily Responsibilities

•             Lead installation of EMC pure storage hardware and configure network

•             Conduct network analysis and resolve inefficiencies on the network.

•             Perform day to day network maintenance which will include configuring, upgrades, installation and troubleshooting.

•             Monitor network performance and troubleshoot problems and outages.

•             Schedule and perform upgrades to all switches and firewalls

•             Define, document, and enforce industry standards.

•             Design, recommend and implement new solutions to improve the resiliency of the network

•             Coordinate with other teams and vendors to resolve issues affecting our network. 

Requirements

B.A. or B.S. in computer science, information technology or relevant degree from accredited institution of higher education or the equivalent work experience

•             To fit into our environment, you must have these core skills:

•             Minimum of 5 years of experience (** 7+ years preferred and ability to elevate position to Senior Advisor level as appropriate**) with the government, public, or private industry

•             Experience with cloud-native and 3rd party network solutions to protect information hosted across multiple Cloud Service Providers (CSPs), (e.g., AWS, Microsoft Azure), web application firewalls, and application delivery solutions

•             Experience with firewall, network security, or network monitoring solutions, including leading firewall vendors, such as Palo Alto, Checkpoint, Fortinet, Cisco Firepower, or ASA

•             Experience with Git, Jenkins, and Ansible for implementing CI/CD pipeline solutions, infrastructure as code, and automation solutions

•             Knowledge of network security concepts, including packet-capture, intrusion detection, encryption in transit, break-and-inspect, and OWASP

•             Knowledge of the OSI model, TCP/IP, TLS, FISMA, FedRAMP, PCI, RMF, DoD cybersecurity policies and control frameworks, modern encryption algorithms, IPSec, and TLS

•             Ability to analyze requirements, design, implement, and operate highly available and scalable firewall and network security solutions in cloud environments

•             Ability to lead a team of engineers in the development of complex integrated solutions

•             Ability to lead a team of engineers in the development of complex integrated solutions

•             Secret security clearance with ability to obtain a top-secret security clearance

Highly desired skills

•             Cisco AnyConnect

•             V-Center, v-sphere

•             Aruba VPN

•             Mesa VPN

•             IPSec

•             PKI knowledge

•             VMware experience

#OpportunityOwned  #GDITLife 


About Our Work

We are GDIT. The people supporting some of the most complex government, defense, and intelligence projects across the country. We deliver. Bringing the expertise needed to understand and advance critical missions. We transform. Shifting the ways clients invest in, integrate, and innovate technology solutions. We ensure today is safe and tomorrow is smarter. We are there. On the ground, beside our clients, in the lab, and everywhere in between. Offering the technology transformations, strategy, and mission services needed to get the job done.

COVID-19 Vaccination

GDIT does not have a vaccination mandate applicable to all employees. To protect the health and safety of its employees and to comply with customer requirements, however, GDIT may require employees in certain positions to be fully vaccinated against COVID-19. Vaccination requirements will depend on the status of the federal contractor mandate and customer site requirements.

GDIT is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.

0