Firewall Engineer

Clearance Level
Other
Category
Network Engineering
Location
Arlington, Virginia

REQ#: RQ41640

We are GDIT. The people supporting and securing some of the most complex government, defense, and intelligence projects across the country. We ensure today is safe and tomorrow is smarter. Our work has meaning and impact on the world around us, but also on us, and that’s important. GDIT is your place. You make it your own by embracing autonomy, seizing opportunity, and being trusted to deliver your best every day.

We think. We act. We deliver. There is no challenge we can’t turn into opportunity. And our work depends on a Firewall Engineer for the FDIC infrastructure program in Arlington, VA.   U.S. Citizenship and background investigation is required; you must have a current clean financial background.  

Task and responsibilities in this role include, but are not limited to the following:  The function of the Firewall Engineer is to implement, support and maintain all aspects related to Palo Alto, Cisco ASA and FirePower firewalls at an enterprise level along with Cisco ESA (email security appliance) on the FDIC Enterprise Network.  The candidate should have solid knowledge of best current security practices, firewalls, network administration, application/web fundamentals, IP transit, routing protocols and all aspects of networking needed to support the required SLAs. Network fundamentals and firewall best practices plus troubleshooting are essential.  The candidate must possess a networking background with a good understanding of switching, network routing plus skills in managing and supporting firewalls.  The candidate must have strong ability to troubleshoot a variety of issues and make recommendations for system changes, as needed, to resolve all technical issues in an efficient and timely manner.  (Though the position is 8-5 M-F, the role requires flexibility to support issues or planned activities after hours, weekends and holidays as needed.)

To qualify, you must meet these basic qualifications: 

  • MS: 4 years
  • BS: 6 years
  • No Degree:   10 years

·        Minimum of 4 years of enterprise network security experience (firewall, Intrusion Detection and Prevention (IDPs), log management/reporting solutions)

·        Planning and deployment of new network security systems.

·        Resolution of tier 2 trouble incidents for firewalls, secure e-mail gateways, email encryption technologies, intrusion prevention systems (IPS), and network forensics tools.

·        Communicate and support security policy, deployment, and support needs.  This role must work in a team environment to manage the security posture of an enterprise network, and enforce policies by updating and configuring security devices.

·        Communicate the security challenges associated and provide solutions to mitigate them.

·        Work with other engineers on technical requirements and communicate to management.

·        Knowledge of routing and switching fundamentals and products is essential.

·        Practical experience working in complex LAN/WAN environments

·        Practical experience supporting Palo Alto, Cisco Firepower/Sourcefire, and/or Cisco ASA firewalls

·        Practical experience with Splunk or comparable logging system for troubleshooting

·        Ability to work with minimal supervision, set priorities, and give attention to detail and quality, flexible, strong organizational and time management skills, ability to multi-task, ability to work individually and with a team, positive attitude, self-motivated, reliable, trustworthy, strong interpersonal skills, diplomacy, and ability to handle stress in professional manner.

·        Excellent interpersonal skills and effective in interfacing with internal and external customers fostering collaboration and establishing strong partnerships and relationships

It would be great if you also had:

·        Cisco and Juniper firewalls, routers, switches are a plus.

·        Practical experience supporting Cisco ESA email security appliance and FireEye is a plus

·        Knowledge of various operating systems and hardware (Linux, Windows).

·        Desired Certifications: Palo Alto Certifications, CCNP, CCNA, JNCIS-SEC, JNCIA-Junos, ITILv3, and CISSP.

As a trusted systems integrator for more than 50 years, General Dynamics Information Technology provides information technology (IT), systems engineering, professional services, simulation, and training to customers in the defense, federal civilian government, health, homeland security, intelligence, state and local government and commercial sectors. With approximately 32,000 professionals worldwide, the company delivers IT enterprise solutions, manages large-scale, mission-critical IT programs and provides mission support services. GDIT is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.

GDIT CAREERS

Opportunity Owned

Discover more at gdit.com/careers

We are GDIT. The people supporting some of the most complex government, defense, and intelligence projects across the country. We deliver. Bringing the expertise needed to understand and advance critical missions. We transform. Shifting the ways clients invest in, integrate, and innovate technology solutions. We ensure today is safe and tomorrow is smarter. We are there. On the ground, beside our clients, in the lab, and everywhere in between. Offering the technology transformations, strategy, and mission services needed to get the job done.

GDIT is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.