Senior Network Engineer

This Senior Network Engineer position is part of a leading organization in the field of cybersecurity, serving as a functional member of a team with a Program Manager and matrixed support staff engaged in software development, software engineering, cloud computing, and IT portfolio management. The selected candidate will be embedded at a customer site, working closely with clients to design and plan network communications systems. This involves providing specifications and detailed schematics for network architectures, conducting cost-benefit analyses, and offering detailed information for hardware and software selection and implementation techniques. Responsibilities include conducting network design testing, monitoring network hardware operations to ensure proper configuration, planning enhancements and upgrades, advising users on hardware requirements, and maintaining technical expertise in interconnection and interfacing areas, such as routers and firewalls. The role may also involve managing the systems administration function and associated staff.

In this role, you will not only perform a range of network, system, security, and software administration functions but also have the unique opportunity to broaden your skill set and enhance your professional growth. Your network administration skills, including router/switch/firewall administration, VLAN implementation, PXE boot use/configuration, DHCP, DNS, and VLAN knowledge, will be put to use. You will also have the opportunity to showcase your system administration skills, including knowledge of Active Directory Domain administration, administering group policies, creating ADUC accounts, and managing FTP/SMB servers. Your Network Security skills, including an Understanding of an Intrusion Detection System (IDS), the ability to read and translate SNORT rules, and perform PCAP analysis, will be honed. Your Software skills, including the ability to perform Extract, Transform, and Load (ETL) scripting, conducting RDBMS administration and queries, consuming APIs, and Web scraping, will be further developed. This role offers a unique opportunity to grow and develop your skills in a dynamic and challenging environment.

Required Qualifications:

• Associate's degree and 10+ years of experience; OR Bachelor's degree and 8+ years of experience; OR Master's Degree and 6+ years of experience; OR 3 years with a PhD. A degree from an ABET or NCAE accredited institution in one of the following fields is highly desired: Information Technology, Computer Science, Software Engineering, Data Science, or Cybersecurity. However, four (4) years of additional relevant experience or specialized training can be considered in lieu of a Bachelor's degree.
• Active CCNA Certification.
• Active Security+ Certification.
• Clearance: Top Secret/SCI w/CI Poly eligibility.
• Preferred Certification: CCNP Certification

Required Experience and Job Duties:

• Design, implement, and maintain robust, scalable network infrastructures, including LAN/WAN technologies, routing protocols, firewalls, load balancers, and network security tools.
• Proactively monitor network performance and capacity, addressing bottlenecks to ensure optimal health and uptime.
• Lead troubleshooting and root cause analysis for complex network issues, implementing lasting solutions.
• Develop and maintain comprehensive network documentation, such as diagrams, configurations, and policies.
• Stay updated on emerging network technologies, evaluating new solutions to enhance performance, security, and efficiency.
• Collaborate effectively with IT teams for seamless integration with other systems and applications.
• Mentor junior network engineers, fostering professional growth.
• Participate in on-call rotations for after-hours support of critical network incidents.
• Possess a COMSEC background with primary COMSEC Responsible Officer experience, including maintaining cryptographic equipment and secure data transfer devices.
• Understand and implement AFMAN 17-1302-0; troubleshoot circuit issues in a DISA environment, including initiating new circuit requests.
• Provide engineering and operational services on DoD-supported networks; familiarity with routing and switching (MPLS, VPNs), protocols (BGP, Spanning Tree, VLANs, VoIP), and Multicast protocols.
• Design and manage Cisco ISE solutions for network access control and enforce network access policies based on security requirements.
• Implement security measures on Palo Alto firewalls, including upgrades and troubleshooting to ensure availability and functionality.
• Conduct security assessments against DISA STIGs, ensuring systems are configured per STIG requirements for classified and unclassified environments.
• Experienced in network/system engineering and administration with knowledge of Cisco, Brocade, and GPON technologies; basic computer hardware troubleshooting; and intrusion detection systems (IDS) and log analysis.
• Knowledge of cloud computing service models Software as Service (SaaS), Infrastructure as a Service (IaaS), and Platform as a Service (PaaS).
• Knowledge of cybersecurity principles, cyber threats and vulnerabilities.
• Knowledge of risk management processes.