Sr Network Security Engineer (TS/SCI)

GuidePoint Security provides trusted cybersecurity expertise, solutions and services that help organizations make better decisions and minimize risk. By taking a three-tiered, holistic approach for evaluating security posture and ecosystems, GuidePoint enables some of the nation’s top organizations, such as Fortune 500 companies and U.S. government agencies, to identify threats, optimize resources and integrate best-fit solutions that mitigate risk.

Candidates MUST have an active TS/SCI clearance for consideration. A Counterintelligence Polygraph will be required within 90 days; active CI Poly is preferred. This position is onsite in Springfield, VA.

A Network Security Engineer is part of a team of skilled Cybersecurity professionals that support the design, build, and sustainment of network based cyber defense capabilities within the organization. Network Security Engineers interact daily with a wide variety of industry leading network security products including, but not limited to, firewalls, Intrusion prevention systems, full packet capture solutions, mail gateways, advanced malware defense systems, and TLS inspection solutions. Network Security Engineers provide support to fellow stakeholders when integrating new Cybersecurity requirements into the enterprise and maintain all production network security solutions that are servicing the organization. When required, Network Security Engineers support fellow stakeholders in resolving network connectivity issues.

This position is 100% onsite with in Springfield, VA.

What You'll Get to Do:

• The Senior Network Engineer will translate stakeholder and Government requirements into network solutions, modifications, and support upgrades (networking, reconfiguration, hardware and software acquisitions, installation, and testing). The network engineer will also strive to understand the application of current and emerging network software and hardware technology and protocols in order to provide innovative and new ideas to resolve complex engineering challenges.
• The Senior Network Engineer directly supports and oversees the Networking team’s operations and maintenance (O&M) of deployed operational solutions backed by Cisco, Juniper, Riverbed, and SolarWinds. The Senior Network Engineer serves as the highest internal escalation tier for the Networking O&M team providing advanced troubleshooting support and guidance to rapidly assess and remediate challenges in the networking arena that arise. When issues, incidents, and /or problems arise, the Senior Network Engineer drives the situation and oversees the Networking team’s troubleshooting and problem resolution, including Root Cause Analysis (RCA).
• The Senior Network engineer is responsible for ensuring the Networking team as a whole produces and maintains documentation of the network systems(s), sub-systems(s), and component(s), in the customer’s IT networking portfolio, including as-built documentation, capacity/performance plans, as well as all other area of secure system life-cycle planning.
• The Senior Network Engineer also works directly with the customer’s IT Architecture and Engineering (A&E) team to consistently explore, investigate, research, analyze, and assess new technologies to modernize and improve upon existing networking solutions.

Position Requirements:

• Active DoD TS/SCI clearance with the ability to obtain and maintain a Counterintelligence (CI) poly is required.
• Shall be Cisco Certified Networks Professional (CCNP) Data Center certified.
• Shall have 7 or more years' of progressive experience successfully leading the employment of network engineering techniques, methodologies, processes, and practices to design, engineer, implement, test, secure, and deliver a variety of enterprise-grade IT networking solutions (systems, applications, and/or services) across multi-platform (Microsoft, *nix, etc.) information systems (LAN, MAN, WAN, etc.).
• Shall have 7 or more years of progressive and increasingly complex experience working with enterprise-level Cisco hardware (Catalyst, Nexus, etc.), operating systems (10S, NX-OS, ACI, etc.), and technologies (Voice, Video, Routing, Switching, Security, etc.) across enterprise-grade information systems and networks. This shall include a minimum of 5 or more years' or experience working with enterprise-level Cisco-based Routing and Switching technologies (ex. BGP, EJGRP, I,ACP, IISRP, OSPP, PC, QoS, STP, VPC, VRF).
• Shall have 5 or more years' of demonstrated understanding and hands-on experience in the following networking concepts: network traffic flow analysis, network management, network topology design, network security, performance, high availability, load balancing, and fault tolerant architectures.
• Shall have 5 or more years' of experience working with secure encrypted networking devices (i.e., Taclanes and Border Guards) and communication circuits, protocols, and configurations.
• Shall have 5 or more years' of experience working with network-based security technologies such as Next Generation Firewalls and Access Control Lists (ACLs) to secure network traffic at all supplied layers of the OSI Reference Model.
• Shall have 5 or more years of experience designing, engineering, implementing, operating and maintaining solutions in secure processing environments which must adhere to U.S. Government Information Assurance and Security standards such as the Defense Information Systems Agency (DISA) Security Requirement Guides (SRGs) and Security Technical (implementation Guides (STIGs).

Nice to Have's:

• Strongly desired to be CCNP Routing and Switch, CCNP Collaboration, and CCNP Security Certified.
• Technical certificates in other enterprise-level technologies, such as Juniper and Riverbed are also a plus.
• Strong understanding of Cisco data center networking solutions, technologies, and best practices to support in the engineering, design, implementation, and management of modern data center infrastructure.
• Strong understanding of Cisco local and wide area networking (LAN/WAN) solutions, technologies, and best practices to support in the engineering design, implementation, and management of Remote Office/Remote Branch networking requirements as well as smaller purpose-built information systems.
• Strong understanding of Cisco networking security solutions, technologies, and best practices to support the secure implementation and sustainment of enterprise network devices in line with information assurance (IA) and security (INFOSEC) compliance, governance, and requirement. Personal experience working with Cisco Adaptive Security Appliances (ASA) and like products is a plus.
• Demonstrated experience in networking engineering enterprise solutions to directly support a variety of high availability, fault tolerant, disaster recovery, and continuity of operations (COOP) scenarios.
• Demonstrated experience operating and maintaining the Riverbed Steelhead appliance product line to provide WAN Optimization and Deep Packet Inspection (DPI) throughout a globally dispersed WAN.
• Demonstrated experience operating and maintaining Juniper Firewalls to include device installation, setup and configuration, testing, and sustainment of firewall proxy, and VPN rules.
• Demonstrated experience operating, tuning, and troubleshooting Cisco’s Unified Communications Manager (CUCM) and TelePresence Management Suite (TMS), and TelePresence Video Communication Server (VCS) to support enterprise collaboration (i.e., Voice and Video) services across a WAN.
• Demonstrated experience working with software-based configuration management solutions capable of documenting, storing and on-demand deployment of pre-generated reviewed, and approved network device configurations such as SolarWinds Network Configuration Manager (NCM).
• Demonstrated experience providing mentorship and On the Job Training (OJT) to junior and/or lesser experienced team members.
• Demonstrated experience working with advanced Cisco Data Center technologies such as the Data Center Network Manager (DCNM) and/or Application Centric Infrastructure (ACI) to support Software Defined Networking (SDN), Software Defined Data Center (SDDC), and Secure Multi-Tenancy enterprise solutions.

We use Greenhouse Software as our applicant tracking system and Free Busy for HR screen request scheduling. At times, your email may block our communication with you. Please be sure to check your SPAM folder so that you don't miss updates on your application.

Why GuidePoint?

GuidePoint Security is a rapidly growing, profitable, privately-held value added reseller that focuses exclusively on Information Security. Since its inception in 2011, GuidePoint has grown to over 1000 employees, established strategic partnerships with leading security vendors, and serves as a trusted advisor to more than 4,200 customers.

Firmly-defined core values drive all aspects of the business, which have been paramount to the company’s success and establishment of an enjoyable workplace atmosphere. At GuidePoint, your colleagues are knowledgeable, skilled, and experienced and will seek to collaborate and provide mentorship and guidance at every opportunity.  

This is a unique and rare opportunity to grow your career along with one of the fastest growing companies in the nation.

Some added perks….

• Remote workforce primarily (U.S. based only, some travel may be required for certain positions, working on-site may be required for Federal positions)
• 100% employer-paid medical premiums (employee only $0 deductible and HSA plans) along with 75% employer-paid family contributions
• 100% employer-paid dental premiums (employee only) along with 75% employer-paid family contributions
• 12 corporate holidays and a Flexible Time Off (FTO) program
• Healthy mobile phone and home internet allowance
• Eligibility for retirement plan after 2 months at open enrollment
• Pet Benefit Option