Job Description
Description
This is a Senior/SME position for the security engineering team within the Vanguard 2.2.1 Cybersecurity Integrity Center (CIC) office, within the Department of State Bureau of Diplomatic Technology (DT), providing engineering leadership over multiple firewall and security systems and devices. The well qualified candidate will possess and apply comprehensive expertise knowledge regarding security devices. The candidate must be capable of planning and leading the testing, implementation, and maintenance of security technologies and devices. The candidate must be capable of evaluating performance results, performing risk assessments, and recommending changes affecting security configuration/implementations. The position directly supports DoS on-site to provide security protection to over 100,000 customers globally.
This role can be located in Beltsville, MD or Washington, DC. It is hybrid and requires at least 2-3 days per week onsite.
Responsibilities include:
- Works directly with the DoS Perimeter Security customer to build, design, test and deploy perimeter security (Firewall) solutions.
- Develop and deploy perimeter security solutions utilizing multi-vendor firewalls, email security, IPS/IDS, SSL decryption, DMZs, and virtualization/zones for on premise and cloud based services.
- Collaborate with technical SMEs on Enterprise wide solutions, participate in technical working groups, and contribute to technical advisory boards.
- Supports the compilation of records and reports concerning perimeter operations and maintenance to analyze the performance of perimeter security systems.
- Provides input to the problem management process, including assessing and evaluating software and hardware anomalies. Supports the root cause analysis efforts to determine problems and develop remediation activities. Interfaces with vendor support service groups to ensure proper support during outages or periods of degraded system performance.
- Supports the transition to operations of perimeter security devices.
- Collaborate with Cross-Bureaus and Agencies to implement network changes as it relates to perimeter security.
- Supports the configuration testing of replacement perimeter devices.
- Plans, documents, and implements hardware and software build and refresh.
- Create and Maintain standard operating procedures and guides for new and/or existing perimeter hardware and software.
- Address Tier III escalation issues.
- Attend weekly teleconferences, onsite meetings, and participates in working groups, as related to constant changing security environment.
Qualifications
Required Education/ & Experience:
- Bachelor degree in a computer science/computer engineering related discipline; Additional experience may be accepted in lieu of degree.
- 10+ years IT security/network engineering support experience (Tier II, Tier III, network infrastructure implementation and maintenance).
- Experience working directly with Government customer.
- Expert experience in one or more of the following security devices: Palo Alto firewalls, Panorama management console, McAfee/Forcepoint StoneGate firewalls, A10 Encrypted Traffic Inspection/Application Delivery, and Cisco ESA & ASA.
- Experience developing and configuring SSL encryption/decryption solutions for traffic inspection.
- Experience supporting the configuration and maintenance of Firewall/DMZ infrastructure including Network and Application Firewall Packet Filtering technologies (Palo Alto, McAfee/Forcepoint Stonegate).
- Firsthand experience in developing and providing quality assurance review of engineering change orders relating to the replacement or enhancement of perimeter security hardware and software.
- Experienced with performing root cause analysis, risk identification, and risk mitigation.
- Knowledgeable with configuring Cisco switches.
- Strong understanding of routing/switching technologies, IP addressing/subnetting, and network traffic analysis/troubleshooting.
- Experience with network monitoring devices such as HP Openview, Nagios, Zenoss, NeuralStar or other similar monitoring tool.
Required Clearance:
- US Citizenship.
- Active Secret clearance with the ability to obtain Top Secret clearance.
Desired Education/Skills:
- ITIL ® Foundation certification.
- Certifications: Palo Alto Networks Certified Network Security Engineer (PCNSE), A10 Certification/Accreditation, StoneGate Firewall/VPN Architect Certification, StoneGate Management Client (SMC) Certification, Microsoft Certified Professional (MCP), Network+, Security+, CISSP.
- Familiarity with DoS environment (data and voice networks, IT security systems, policies and procedures), Foreign Affairs Handbooks (FAHs), Foreign Affairs Manuals (FAMs).
- Experience with Red Hat Linux/CentOS and Ubuntu including administration scripting is a plus.
- Interpersonal skills including the ability to collaborate effectively, self-awareness, and excellent written and oral communications.
Target salary range: $120,001 - $160,000. The estimate displayed represents the typical salary range for this position based on experience and other factors.
SAIC accepts applications on an ongoing basis and there is no deadline.
Covid Policy: SAIC does not require COVID-19 vaccinations or boosters. Customer site vaccination requirements must be followed when work is performed at a customer site.
Overview
SAIC® is a premier Fortune 500® technology integrator focused on advancing the power of technology and innovation to serve and protect our world. Our robust portfolio of offerings across the defense, space, civilian and intelligence markets includes secure high-end solutions in mission IT, enterprise IT, engineering services and professional services. We integrate emerging technology, rapidly and securely, into mission critical operations that modernize and enable critical national imperatives.
We are approximately 24,000 strong; driven by mission, united by purpose, and inspired by opportunities. SAIC is an Equal Opportunity Employer, fostering a culture of diversity, equity and inclusion, which is core to our values and important to attract and retain exceptional talent. Headquartered in Reston, Virginia, SAIC has annual revenues of approximately $7.4 billion. For more information, visit saic.com. For ongoing news, please visit our newsroom.