SME Network & Firewall Engineer/Architect
054H - 124TchnlgyPrkWy,SBurlington,VT
Full Time Senior-level / Expert Clearance required USD 127K - 211K
ManTech
Secure our Nation, Ignite your Future
Become an integral part of a diverse network team while working at an industry leading organization, where our employees come first. At ManTech International, you will help protect our national security while working on innovative projects that offer opportunities for advancement.
Currently, ManTech is seeking a motivated, career and customer-oriented Network & Firewall Engineer/ SME/ Architect in South Burlington, VT; Camp Springs, MD; or in a location to be determined upon offer acceptance.
Responsibilities include, but are not limited to:
- Primary role is to perform as Level 4 Network Firewall and Engineering escalation point for network security to effectively support security processes and procedures.
- Continually improve on the network stability working with the performance team to establish network performance metrics for alerting and remediation automations.
- Work with other firewall engineer colleagues to configure and implement Next Generation Firewall and Intrusion Protection Systems.
- Review existing configuration settings to identify potential security vulnerabilities and propose/implement setting or architectural changes to address these vulnerabilities.
- Perform securing, hardening, and rule creation for new firewalls, switches, routers, and other network equipment. This includes reviewing and re-evaluating existing configuration settings and rules to verify USCIS’ security posture and eliminate unnecessary risk.
- Administrative oversight of firewall systems such as AlgoSec, Panorama, Firemon.
- Use Agile engineering approach to DevSecOps and solutioning with Access Identity and Directory Services to architect, engineer, and implement network security control methods in cloud, on-premise and virtual environments to support DHS directive 4300A, NIST 800-53, and industry best practices
- Extend into secure cloud solutions and next generation firewall and intrusion protection devices to scale against all connected devices.
- Continually improve DDI and network access control reporting.
- Knowledge and understanding to keep the network up to date (and ready to scale for the future) through compliance with all federal requirements such as DHS 4300A, NIST 800-53, and other industry best practices.
- Enhance the security posture to scale upward without impeding performance.
- Audit configurations to eliminate vulnerabilities and ensure USCIS deploys and operates in accordance with vendor recommendations, industry best-practices, DoD STIGs, and DHS configuration guidance.
- Evaluate current and future network designs to ensure that network security is incorporated as an integral consideration in these designs.
Basic Qualifications:
- A minimum of ten (10) years of experience as an enterprise firewall engineer across large and complex network and Microsoft AD environments
- Extensive security background with Palo Alto firewall systems
- A minimum of four (4) years of experience in cloud technologies such as but not limited to Azure and AWS.
- Extensive experience designing mission critical infrastructure in enterprise environments.
- Experience designing and implementing enterprise solutions that increase the availability and security of the enterprise.
- Experience with on premise physical infrastructure and virtualization technologies including Hyper-V, VMWare, SAN, FCoe, NFS, SMB3 etc
- Deep experience with networking and security methods and tools.
- Strong troubleshooting and analytical skills required.
- Must have strong critical thinking, complex problem solving, appropriate judgment, and decision-making skills
- Possess superior technical aptitude and effective written and verbal communications skills.
- Capable of supporting and using tools such as:
NetCollector
Cisco Routing platforms
ARX
Cisco Switching platform
AlgoSec
Google Cloud Platform / Amazon Web Services / MS Azure
Solarwinds
Meraki Cloud Portal and devices
StealthWatch
Infoblox
ForeScout
IWAN
Cisco ACI/SDN Platform
NetProfiler
Cisco Cloud Center
VipTella
Cisco Firepower
VMWare
Cisco Identity Services Engine
NSX
Cisco Meraki
Palo Alto Firewall
Cisco DNA
Palo Alto Panorama
Preferred Qualifications:
- Familiar with tools including: ServiceNow, GitHub, Jira, Confluence
- Experience with ITIL, DevSecOps and Agile concepts
- Experience supporting Government contracts
Education:
- Bachelor's Degree preferred
Certification:
- PCNSE preferred
Security Clearance Requirements:
- U.S. Citizen with the ability to obtain Public Trust and complete DHS Security Clearance
- Ability to obtain DHS EOD suitability
- Current DHS EOD highly preferred
Physical Requirements:
- Remote office work, typically sedentary
For all positions requiring access to technology/software source code that is subject to export control laws, employment with the company is contingent on either verifying U.S.-person status or obtaining any necessary license. The applicant will be required to answer certain questions for export control purposes, and that information will be reviewed by compliance personnel to ensure compliance with federal law. ManTech may choose not to apply for a license for such individuals whose access to export-controlled technology or software source code may require authorization and may decline to proceed with an applicant on that basis alone.
ManTech International Corporation, as well as its subsidiaries proactively fulfills its role as an equal opportunity employer. We do not discriminate against any employee or applicant for employment because of race, color, sex, religion, age, sexual orientation, gender identity and expression, national origin, marital status, physical or mental disability, status as a Disabled Veteran, Recently Separated Veteran, Active Duty Wartime or Campaign Badge Veteran, Armed Forces Services Medal, or any other characteristic protected by law.
If you require a reasonable accommodation to apply for a position with ManTech through its online applicant system, please contact ManTech's Corporate EEO Department at (703) 218-6000. ManTech is an affirmative action/equal opportunity employer - minorities, females, disabled and protected veterans are urged to apply. ManTech's utilization of any external recruitment or job placement agency is predicated upon its full compliance with our equal opportunity/affirmative action policies. ManTech does not accept resumes from unsolicited recruiting firms. We pay no fees for unsolicited services.
If you are a qualified individual with a disability or a disabled veteran, you have the right to request an accommodation if you are unable or limited in your ability to use or access http://www.mantech.com/careers/Pages/careers.aspx as a result of your disability. To request an accommodation please click careers@mantech.com and provide your name and contact information.
Tags: Agile AWS Azure Clearance Cloud Compliance Confluence DevSecOps DoD Firewalls GCP GitHub Hyper-V ITIL Jira Network security NIST NIST 800-53 Security Clearance STIGs VMware Vulnerabilities
Perks/benefits: Career development Health care Insurance Wellness
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Senior Cyber Security Engineer jobs
- Open Principal Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Cyber Security Architect jobs
- Open Cyber Security Specialist jobs
- Open Product Security Engineer jobs
- Open Cybersecurity Analyst jobs
- Open Staff Security Engineer jobs
- Open Chief Information Security Officer jobs
- Open Senior Information Security Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Senior Penetration Tester jobs
- Open Consultant SOC / CERT H/F jobs
- Open Security Specialist jobs
- Open Senior Information Security Engineer jobs
- Open Sr. Security Engineer jobs
- Open Security Researcher jobs
- Open IT Security Engineer jobs
- Open Cybersecurity Specialist jobs
- Open Senior Security Architect jobs
- Open Windows-related jobs
- Open CISM-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open ISO 27001-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open Analytics-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open SaaS-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open Java-related jobs
- Open Malware-related jobs
- Open Forensics-related jobs
- Open DevOps-related jobs
- Open Security Clearance-related jobs
- Open IDS-related jobs
- Open CEH-related jobs
- Open EDR-related jobs
- Open Kubernetes-related jobs