Network Engineer, Principal

Join a dynamic and consistently expanding program at GDIT!  The US Battlefield Information Collection and Exploitation System eXtended (US BICES-X) program is the cutting edge of secure intelligence sharing, by addressing current and emerging global threats to mission partners, coalition forces, and developing nations. With a globally distributed team aligned with each combatant command, US BICES-X plays a vital role in supporting the warfighter and their missions. We are seeking a creative and highly motivated professional eager to tackle real-world challenges within a collaborative and fast-paced environment. 

Responsibilities:

• Lead the end-to-end lifecycle of a complex network solution, ensuring strict compliance with NSA Commercial Solutions for Classified (CSfC) guidelines, leveraging multi-layered encryption and NSA-approved component solutions.
• Ensure continuous operation, availability, and security of the "Enterprise Gray" infrastructure, driving integration and compliance with CSfC principles for secure classified data handling.
• Expertly configure and manage diverse network devices (e.g., routers, switches, firewalls, IDPS, VPN concentrators), validating that all configurations meet CSfC and DoD security standards.
• Rapidly diagnose and resolve complex network issues, including those related to encryption, routing, and access control within the CSfC architecture.
• Establish and enforce stringent security policies; perform regular security audits, vulnerability assessments, and penetration testing to proactively identify and mitigate risks within the accredited CSfC environment.
• Maintain comprehensive documentation for network configurations and security procedures, ensuring audit readiness against NSA, DoD, and other regulatory standards.
• Collaborate with Information System Security Managers (ISSMs), cybersecurity teams, and system administrators to seamlessly integrate security controls and best practices.
• Mentor and cross-train junior network administrators on CSfC principles, secure network operations, and advanced troubleshooting techniques.
• Develop and implement CSfC compliant disaster recovery and business continuity plans to guarantee rapid incident recovery and resilience.
• Monitor network performance, identify bottlenecks, and implement optimizations to ensure efficient and reliable data flow within the secure CSfC environment.
• Provide on-call support for critical network issues, ensuring swift resolution during off-hours.

Required Qualifications:

• Active TS/SCI security clearance.
• 10+ years of direct experience implementing, maintaining, and securing complex enterprise networks.
• Current industry-recognized professional networking and security certifications (e.g., CCNA, Security+ CE, or equivalent).
• Expert-level knowledge of networking and security principles, including routing protocols (OSPF, BGP), encryption protocols (IPSec, SSL/TLS, VPNs), and best practices.
• Demonstrated proficiency with HAIPE encryption devices, network security policy implementation, and security device configuration.
• Proficiency in administering and securing various operating systems and virtualized environments that support network services.
• Strong understanding of DoD and other government security regulations, compliance frameworks, and IT service management methodologies.
• Exceptional verbal and written communication skills with the ability to articulate complex technical concepts to technical and non-technical audiences.

Preferred Qualifications:

• BA/BS in Computer Science, Information Technology, or a related field (or equivalent experience).
• Relevant professional-level networking certifications (e.g., Cisco CCNP, Juniper JNCIP).
• Experience with firewall management, rule sets, and access control systems.
• Knowledge of virtualization technologies (VMware, Citrix, Microsoft).
• Experience with network operations.