Senior Network Security Engineer
Description
The Senior Network Security Engineer will be diverse role focused on compliance with Federal Information Technology and Cloud based regulatory standards. The ideal candidate will work with and have an extensive background in at least four of these subjects: network routing and switching protocols, networking devices, network security appliances, networking monitoring/alerting, servers, operating systems, virtual platforms, and cloud experience.
The Senior Network Security Engineer will review and develop security policy guidance focused on current Federal data protection/assurance standards. In addition to current standards, the Senior Network Security Engineer will be tasked with anticipating future changes. As part of the standard day-to-day tasks, the Senior Network Security Engineer will also be expected to perform technical assessments and be prepared to assist with implementing changes as necessary to achieve a more secure baseline. One of the core elements of the Senior Network Security Engineer’s mandate will be the expert on hand to assist the Network and Server Teams with mitigating risk to remain in compliance with the Federal Risk and Authorization Management Program (FedRAMP). The Senior Network Security Engineer will also be the primary point of contact for conducting scheduled auditing reviews, reporting requirements and documentation of results. Managing and auditing/monitoring remote access services will be another core responsibility. The Senior Network Security Engineer will also need to stay up to date with the changing cybersecurity risk environment and be able to respond to NIST Cybersecurity Guideline changes as necessary.
Responsibilities
- Manage network firewalls, WAN routers, datacenter network switches and routers
- Manage remote access VPN configurations, and IPSec tunnel configurations
- Interact with Internet Service Providers to troubleshoot outages
- Manage RADIUS servers and user access
- Deliver clear and concise documentation and network diagrams
- Be proactive in managing the network and the security posture of the environment
- A solid grasp on securing hardware and software baselines is critical to the role and will be key in helping the Network and Server Teams remain in compliance with Federal IT standards.
- Maintain records necessary for audit compliance, including but not limited to PCI, SSAE, SOX, CJIS, FedRAMP
- Perform scheduled audit log reviews of network infrastructure
- Work with teams, clients and business partners to implement required NIST Cybersecurity Framework Guidelines for network infrastructure
Qualifications
- Bachelor’s degree in Computer Science or related field of study, MIS or equivalent experience
- Expert understanding of network, network security, and server technologies
- Expert understanding of technical writing and documentation
- Expert understanding of server operating systems
- Extensive experience with IT Security Controls and Reporting
- Extensive experience with Microsoft Windows Server, and Desktop
- Extensive experience with RedHat, CentOS Linux, or any UNIX experience
- Extensive experience with VMware product suites
- Extensive experience with Microsoft Office products
- Extensive experience with security vulnerability scans and remediations
- Extensive experience with Tenable Nessus
- Experience with IP routing protocols
- Experience with data center networking and switching
- Experience working with and configuring IPSec tunnels
- Solid interpersonal communication skills
- Ability to prioritize and complete tasks in a fast-paced, technical environment
Desirable IT certifications:
- CompTIA Security+, CASP, and/or CISSP desired (or ability to obtain within 1 year of employment)
- VMware VCP, VCAP, AWS CSA-P, MS ASA, Cisco CCNA, CCNP desired
- Top-Secret or CJIS (Criminal Justice Information System) clearances may be required after hire. Candidates with active secret or top-secret clearances are strongly encouraged to apply.