Job Description

Position Overview

We seek one Network Security Engineer to support a Maryland state agency. The selected professional will design, install, and maintain computer and network systems that ensure stable, scalable, redundant, and secure 24x7 network operations.

Work Location Requirements

Initial 6-Month Period:

• 2 days remote work from suitable off-site location
• 3 days onsite in Annapolis, MD

After Satisfactory Performance:

• 3 days remote work (with manager approval)
• 2 days onsite in Annapolis, MD

Remote work from outside the United States requires prior approval and will rarely be granted.

Schedule Flexibility

The position requires flexibility to extend coverage hours for deadlines, project requirements, and on-call operational support during evenings, nights, weekends, and holidays. Management must approve work outside normal hours, not to exceed 2,040 hours per year.

Required Qualifications

Education:

• Associate degree in Information Technology (IT) related field

Certifications:

• Palo Alto Networks Certified Network Security Engineer (PCNSE) Certification
• Cisco Certified Network Professional (CCNP) Enterprise or Security Certification

Preferred Qualifications

Education:

• Bachelor's degree in Information Technology (IT) related field

Experience:

• 10 years of Continental United States (CONUS) technical experience in IT networking and network security

Certifications:

• Prisma Certified Cloud Security Engineer (PCCSE) Certification from Palo Alto Networks
• Cisco Certified Internetwork Expert (CCIE) in Enterprise Infrastructure or Security Certification

Core Responsibilities

Planning and Design:

• Identify organizational requirements proactively
• Design and engineer implementations that serve organizational needs
• Develop comprehensive graphical and text-based design documentation
• Manage implementation processes from design to acceptance

Technical Implementation:

• Perform project-based engineering, design, installation, and troubleshooting of data security networks
• Provide assessment, design, and implementation services for data and secure networking environments
• Lead migrations from traditional/legacy network security platforms to current/next generation technologies
• Assist internal groups through capacity planning, maintaining, monitoring, and reviewing secure data communications networks

Team Leadership and Support:

• Lead migrations or assist engineering teams with technology transitions
• Assist network engineers in troubleshooting critical problems or threat remediation relating to network security products
• Work with engineering teams to implement configuration guidelines, change management, and standard operating procedures
• Lead, schedule, provide guidance, and coordinate activities with team members to resolve end user problems

Reporting and Communication:

• Generate weekly status reports including project progress, key milestones, and tasks accomplished
• Host weekly status meetings/calls with team or as needed
• Produce technical documents including diagrams, design documents, project plans, schedules, and user instructions

Required Technical Skills and Experience

Palo Alto Networks (5 years experience):

• Next generation firewall services
• Intrusion Detection and Prevention systems
• Content Filtering
• Virtual Private Networks (VPN)
• Data Loss Prevention (DLP)
• Transport Layer Security/Secure Sockets Layer (TLS/SSL) Inspection

Cisco Systems (4 years experience):

• Complex switching, routing, and wireless technologies

A10 Networks (3 years experience):

• Reverse Proxies
• Load Balancing

Network Access Control (2 years experience):

• Cisco Identity Services Engine (ISE)
• Free Radius
• Access Control Lists (ACLs)

Additional Technical Competencies

Authentication and Security:

• Multifactor authentication solutions with Microsoft
• Authentication standards (802.1x) in wired and wireless applications
• Certificate Management and Public Key Infrastructure (PKI)

Cloud and Networking:

• Cloud-based virtual networking and security services
• Scalable routing protocols: Enhanced Interior Gateway Routing Protocol (EIGRP), Open Shortest Path First (OSPF), Border Gateway Protocol (BGP)
• Enterprise Data Center implementing micro segmentation

Security Tools and Analysis:

• Vulnerability management using Nessus, Network Mapper (NMAP), Windows, Unix, and Linux Operating Systems (OS)
• Packet/Protocol Analysis using Opnet, Riverbed, Wireshark, and taps
• Centralized Management using Panorama and SolarWinds

Systems Knowledge:

• Major server and desktop operating systems and utilities

Essential Abilities

Independence and Leadership:

• Work independently with minimal supervision
• Troubleshoot complex technical issues
• Provide mentoring to junior associates

Communication:

• Communicate effectively during presentations
• Produce clear technical documentation
• Coordinate with multiple stakeholders

Note: US citizens and permanent residents only. No visa sponsorship available.

Job Tags

Similar Jobs