Computer Network Defense Administrator

Peraton is seeking to hire an experienced Computer Network Defense Administrator for its' Regional Cyber Center-Europe program.

Location: On-site, Wiesbaden, Germany

Potentially 2nd/3rd Shift work 

Responsibilities:

• Administer and maintain enterprise network perimeter defense systems including next-generation firewalls, intrusion detection/prevention systems (IDS/IPS), and web proxy solutions (F5 BIG-IP, Menlo Security) protecting DoDIN-Europe infrastructure
• Manage and tune firewall Access Control Lists (ACLs) and security policies across classified and unclassified network segments, ensuring alignment with DISA STIGs and Army network security requirements
• Administer F5 BIG-IP Local Traffic Manager (LTM) and Application Security Manager (ASM) configurations, including SSL offloading, load balancing, and web application firewall policy management
• Perform VPN administration and remote access security management, configuring and maintaining site-to-site and client VPN tunnels in support of RCC-E operational requirements
• Monitor and analyze IDS/IPS alerts and web proxy logs to identify anomalous traffic patterns, coordinate with the CSSP team on threat triage, and implement countermeasures to defend the network perimeter
• Support 24/7 network security operations by participating in on-call rotations, responding to network defense incidents, and producing detailed technical reports for government leadership and NETCOM stakeholders

#RCC-E 

Required:

• 5 years of Network Defense Administration experience with a Bachelor’s degree in a STEM field or Business Administration; 11 years of relevant experience may substitute for degree.
• Must meet TESA Qualifications.
• DoD 8140 - IT (Network Operations Specialist) - Advancced
• Certifications — must hold active certifications (one of the following):
• Network Firewall/IDS/IPS Certification
• F5-CA (F5 Certified Administrator)
• F5-CTS (F5 Certified Technology Specialist)
• F5-CSE (F5 Certified Solution Expert)
• BCCPA (Blue Coat Certified Proxy Administrator)
• CCNA (Cisco Certified Network Associate)
• CCNP <Any track>
• CCIE <Any track>
• Cisco CyberOps Professional
• Minimum of 5 years managing Network Firewalls, Web Proxy, IDS/IPS systems; 2 years enterprise network routing and switching; 2 years U.S. military command and control or commercial LAN/WAN systems experience
• U.S. citizenship required
• Active DoD SECRET clearance.

Preferred:

• Hands-on experience with F5 BIG-IP LTM, ASM, and APM modules in an enterprise or DoD environment
• Familiarity with Palo Alto Networks NGFW administration and Panorama centralized management
• Experience with Cisco ASA or Firepower Threat Defense (FTD) firewall platforms
• Working knowledge of Snort or Suricata IDS/IPS rule development and signature tuning
• Experience with Menlo Security or comparable cloud-based web isolation/proxy platforms
• Understanding of network traffic analysis tools (Wireshark, tcpdump) for packet-level investigation
• Familiarity with DISA Network Infrastructure STIG requirements and RMF compliance processes
• Experience supporting DoD classified network environments (NIPRNet/SIPRNet)