What are the responsibilities and job description for the Network Security Engineer position at IQUASAR LLC?
- Position: Network Engineer Intermediate (WAF)
- Location: Montgomery, AL/ Columbus, OH/ Oklahoma City, OK/ San Antonio, TX.
- Position Type: Hybrid, Full-Time
- Clearance: Secret or above
Specific Job Responsibilities:
- Provide network architectural design, modeling, engineering, implementation, sustainment, migration, technical refresh, and lifecycle services for the DISA data center and Cloud enterprise network infrastructure.
- Network services and products supported shall include but are not limited to, routers, switches, firewalls, web application firewalls, DNS, email gateways, proxy services, VPN, Local Area Networks (LAN), Wide Area Networks (WAN) and protocols, cryptographic devices, associated device software and firmware, diagnostic tools, and automation systems.
- The contractor shall also support a number of Intrusion and Detection Systems (IDS) and other network defense architectures in support of cyber defense operations and initiatives.
- Provide design solutions and implementation guides, Bill of Materials (BOM), and Cost Estimates, and use DoD and Industry best practices.
- The contractor is responsible for providing service transition to operations and shall reference an Information Technology Infrastructure Library (ITIL) Framework.
- Provide/support implementation solution documents and WAF subject matter expertise for the configuration and maintenance of DISA-hosted Application Delivery Controllers to include software modules such as F5 BIG-IP Local Traffic Manager (LTM), Global Traffic Manager (GTM), Access Policy Manager (APM), and Application Security Manager (ASM) modules.
- Design, engineering, implementation, migration, and sustainment support for migrating and sustaining applications aligned with the WAF.
- Recommend operational processes to ensure successful migration and maintenance of applications behind Web Application Firewall (WAF)
- Design solution documentation that outlines guidance on licensing, physical architecture, logical configuration, eligibility, checklist application inventory, security policy protection phases, and basic administration to include system configuration baseline and security policy configuration baseline.
- Build, implement, and document network-enabled applications taking into consideration various factors such as but not limited to infrastructure requirements or limitations, security, and application performance needs and best practices.
- Network services and products supported shall include but are not limited to, routers, switches, firewalls, web application firewalls, DNS, email gateways, proxy services, VPN, Local Area Networks (LAN), Wide Area Networks (WAN) and protocols, cryptographic devices, associated device software and firmware, diagnostic tools, and automation systems.
- The contractor shall also support a number of Intrusion and Detection Systems (IDS) and other network defense architectures in support of cyber defense operations and initiatives.
- Continuously monitor the Government project management system for project support requests, project priority, triage to ensure urgency/impact are clearly defined, project assignments, project tasks/activities, project timelines and suspense, project reporting, and project briefings
- Proficiently communicate and brief ideas and information to people of a non‐technical background including senior leadership.
- Responsible for all lifecycle components’ compliance with security controls, including confidentiality, integrity, and availability as well as compliance with Security Technical Implementation Guidelines (STIG) in depth.
- Engineer and implement network architectural changes in response to future network technology enhancements, DISA customer requirements, security requirements and enhancements, technical refresh efforts, lifecycle requirements, or changes in network capacity requirements.
- Prepare and solve design/technical documentation to include whitepapers, briefings, and other required documents to support all engineering and implementation efforts with established policies and processes.
- Recommend operational processes to ensure successful migration and maintenance of applications behind Web Application Firewall (WAF)
- Adhere to DISA enterprise network standards including developing support documentation, leading technical working groups, conducting product evaluations, developing recommendations, and preparing and presenting briefings.
- Ensure that all engineering and implementation efforts adhere to DISA and DoD policies, and directives from United States Cyber Command (USCC) and Joint Force Headquarters DODIN (JFHQ-DODIN).
Required Qualifications/Skills:
- Must have an active SECRET or higher security clearance.
- 6 years of relevant experience with the design and implementation of complex data center and Enterprise Network infrastructure in a multi-vendor environment
- DoD 8570.01-M/8140.01 IAT Level II Certification (can be one of the following: Security or CySA )
- Relevant Computing Environment (CE) certification based on the equipment and software relevant to primary duties.
- CCNP, CISCO, F5, Juniper (JNCIS, JNCIP) certification preferred.
If interested, please share your updated resume with your salary expectations. Thanks!
Usman Khan
Sr. Recruitment Professional
Representing:
MSM Technology, LLC
Direct: (703) 662-0528
Main: (703) 962-6001 Ext.: 502
Flexible work from home options available.
Salary : $95,000 - $110,000
