Network Security Engineer - Troy, United States - Sanford Federal Inc

    Sanford Federal Inc
    Sanford Federal Inc Troy, United States

    1 month ago

    Default job background
    Description

    Job Description

    Job Description

    FAR Group headquartered in Stafford, VA., is a Service-Disabled Veteran Owned Small
    Business that provides federal professional services, primarily engaged in providing advanced
    information technology, cyber security, management systems support, as well as business
    and infrastructure management services.
    We are among the most innovative, respected, and ethical providers of technology solutions
    to the United States government. Our mission is to provide superior-quality,
    innovative, information technology solutions that help federal agencies best aid, serve, and
    protect the American people.

    Job Title: Network Security Engineer


    Job Summary:
    FAR Group is currently seeking for a Network Security Engineer to to actively
    participate in planning and coordinating the design, installation, and connectivity of computer
    and network security systems to ensure stable, scalable, redundant, and secure 24x7 network
    operations.

    Qualifications:

    a. Associate degree in an Information Technology (IT) related field.
    b.
    Ten (10) years of technical experience in IT networking and security.
    c.
    Certifications issued within the last four (4) years as follows:
    (1) Prisma Certified Cloud Security Engineer (PCCSE) Certification from Palo Alto
    Networks.
    (2)
    Palo Alto Networks Certified Network Security Engineer (PCNSE) Certification.
    (3) Cisco Certified Internetwork Expert (CCIE) in Enterprise Infrastructure or
    Security Certification.

    Responsibilities:

    The candidate shall provide the following services:
    a. Pro-actively identifying organization requirements, and helping to design, and engineer
    implementations that best serve the needs.
    b. Performing project-based engineering, design, installation and troubleshooting of data
    security networks.
    c. Providing assessment, design and implementation services of data and secure networking
    environments.
    d. Developing comprehensive graphical and text-based design documentation and effectively
    managing the implementation process from design to acceptance.
    e. Assisting internal groups through capacity planning, maintaining, monitoring and review
    of secure data communications networks.
    f. Leading migrations or assisting a team of engineers who will migrate traditional/legacy
    network security platforms to current/next generation technologies and expose customers
    to the full life cycle of defense in depth solutions.
    g. Assisting network engineers in troubleshooting critical problems or threat remediation
    relating to network security products.
    h. Working with the engineering team to successfully implement configuration guidelines,
    change management, and standard operating procedures for secure network solutions.
    i. Leading, scheduling, providing guidance and coordinating the activities with other team
    members to resolve end user problems in a timely and accurate fashion.
    j. Generating weekly status reports including project progress, key milestones, and tasks
    accomplished, etc.
    k. Hosting weekly status meetings/calls with team or on as needed basis.
    l. Lifting personal computers, printers, scanners, and other equipment associated with a
    standard computer workstation.
    m. Reporting as follows:
    (1) Weekly report communicating project progress and status,
    (2) Weekly time reporting on JIS provided forms, and
    (3) Any additional reports as assigned by the supervising manager.

    SKILLS, EXPERIENCE, & CAPABILITIES

    1. The candidate shall propose resource(s) possessing the following preferred skills,
    experience and capabilities:

    • a. Five (5) years of experience in the following: (1) Palo Alto Networks next generation firewall services.
      (2) Intrusion Detection and Prevention with Palo Alto networks.
      (3) Content Filtering Palo Alto networks.
      (4) Virtual Private Networks using Palo Alto network systems
    • Four (4) years of experience in Complex switching, routing, wireless with Cisco
      Systems.
    • Three (3) years of experience in Reverse Proxies, Load Balancing with A10
      networks.
    • Two (2) years of experience in Network Access Control - Cisco Identity
      Services Engine (ISE), Free Radius, and Access Control Lists (ACLs).
    • General experience with the following:(1) Implementing multifactor authentication solutions with Microsoft.
      (2) Authentication standards x) in wired and wireless applications.
      (3) Scalable routing protocols Enhance Interior Gateway Routing Protocol
      (EIGRP), Open Shortest Path Fist (OSPF), and Border Gateway Protocol
      (BGP).
      (4) Enterprise Data Center implementing Micro segmentation.
      (5) Certificate Management, Public Key Infrastructure (PKI).
      (6) Vulnerability management using Nessus, NMAP, Windows, Unix, and
      Linux OS
      (7) experience with Packet/Protocol Analysis using Opnet, Riverbed,
      Wireshark, and taps.
      (8) Hands-on mid-expert level experience
    • Experience with Centralized Management using Panorama and SolarWinds,
    • Excellent verbal communication skills.
    • Ability to communicate effectively, and to establish and maintain effective
      working relationships with peers, end users and vendor development staff, as
      well as all levels of management and judicial personnel as necessary.
    • Assisting network engineers in troubleshooting critical problems or threat remediation
      relating to network security products.
    • Working with the engineering team to successfully implement configuration guidelines,
      change management, and standard operating procedures for secure network solutions.
    • Leading, scheduling, providing guidance and coordinating the activities with other team
      members to resolve end user problems in a timely and accurate fashion.
    • Generating weekly status reports including project progress, key milestones, and tasks
      accomplished, etc.
    • Hosting weekly status meetings/calls with team or on as needed basis.
    • Lifting personal computers, printers, scanners, and other equipment associated with a
      standard computer workstation.
    • Reporting as follows:(1) Weekly report communicating project progress and status,
      (2) Weekly time reporting on JIS provided forms, and
      (3) Any additional reports as assigned by the supervising manager.

    Why FAR Group?

    You can take pride in working for a company dedicated to serving our government by
    providing the best, most cost-effective solutions for the US Government. Our work helps the
    Government US secure our nation, support the efforts of our military and intelligence communities,
    and provide lifesaving medical services to our soldiers, vets, and their families.