Our client, a large government systems integrator located at MacDill Airforce Base, is looking to hire a TS/SCI cleared Network Security Engineer for a 12 month contract. The consultant will work onsite within the Defensive Cyber Operations-Infrastructure environment and will be responsible for the implementation and administration of security operations using Cisco ASA Firewalls, Cisco Firepower/Secure Firewall, Next-Gen Firewalls, Next-Gen IPS and Gigamon Traffic Visibility devices.
The consultant will also be responsible for supporting the program with routine troubleshooting of the enterprise network and all the systems, programs, and traffic that travel within the network. The network consists of mostly Cisco infrastructure including 802.1x/MAB Network Access (NAC), TACACS+, EIGRP/OSPF/BGP Routing, BFD, Site-to-Site VPNs, as well as various other Campus, WAN and Data Center technologies. Additionally, the consultant will be conducting network and system audits using Security Technical Implementation Guides (STIGs), Security Requirements Guides (SRGs), ACAS vulnerability scans, and DISA SCAP. Other responsibilities include reporting the status of the program to senior team members and mentoring junior staff.
Required Skills
- 5+ years of Cisco firewall/IPS/networking experience required.
- Must possess and maintain a TS/SCI clearance.
- Must meet DOD 8570.01M requirements for IAT Level II & CSSP-Infrastructure Support.
- Requires CCNA or better certification for firewall administration.
- Requires understanding of DOD RMF
Highly Desired Skills
- Experience operating and maintaining perimeter and/or data center firewalls on medium to large organizational networks (DoD preferred).
- Strong background (at least CCNA/Net+ level) in general networking technology.
- Proficiency with Next-Gen Firewalls/Next-Gen IPS (Cisco Firepower/Secure Firewall/Palo Alto).
- Experience with IPS technology and signatures. SNORT experience preferred.
- Experience with Gigamon Traffic Visibility devices and technology.
- Experience/Familiarity with Splunk or similar Security Incident and Event Management (SIEM) solutions.
- Experience/Familiarity with Linux operating system is a plus.
- Experience/Familiarity with troubleshooting using packet captures and packet analysis (Wireshark) is a plus.
- Experience/Familiarity with Cisco Identity Services Engine (ISE) is a plus.
- The ability to work and set priorities on multiple projects/tasks at once and operate in a dynamic, fast-paced team-oriented environment.
- The ability to adhere to team standards, guidelines, and standard operating procedures (SOPs).