A new, five-year contract award has created the opportunity for a Network Engineer to support our government customer located in Springfield, VA. The position is required to be onsite. 

 

Benefits include 15 days PTO, 11 days Paid Government Holidays, a 401k with 6% matching and an inclusion in our employee profit sharing program.

 

Description

 

The Network Engineer supports the Engineering team as part of the Activity's IT Systems Engineering and Architecture Services (SEAS) division. The Network Engineer works closely with Senior Network Engineers, Systems Engineers, and technical Architects in a variety of engineering and operational assignments related to the designing, deploying, and efficient and optimal operation of business critical enterprise and data center network environments across multiple sets of enterprise-level IT systems in support of the Activity's globally dispersed remote office/branch office (ROBO) and data center.

 

The Network Engineer will translate stakeholder arid Government requirements into network solutions, modifications, and support upgrades (network reconfiguration, hardware and software acquisitions, installation, and testing). The Network Engineer will also strive to understand the application of current and emerging network software and hardware technology and protocols in order to provide innovative and new ideas to solve complex engineering challenges.

 

The Network Engineer directly supports, and oversees the planning, development, and integration, and transition to operations and maintenance (O&M) supported by the Network administration team. The Network Engineer may assist the Network administration team by providing SME support to rapidly assess and remediate challenges in the networking infrastructure. When issues, incidents, and/or problems arise, the Network Engineer supports Root Cause Analysis (RCA) and facilitates change requests to address challenges encountered by O&M teams.

 

The Network Engineer is responsible for developing and maintaining documentation of the Networking system(s), sub-system(s), and component(s) in the Activity's IT networking portfolio, including as-built documentation, capacity/performance plans, as well as all other area of server system life-cycle planning.

 

Travel Requirements


Infrequent travel may be required of the Engineering team to support the Activity's IT enterprise to include, but not be limited to: site surveys and assessments; technical and/or engineering discussions and exchanges; solution implementation, integration and testing, and operational team assistance; and training and professional development. The ability of the Network Engineer to travel up to approximately 26 days per year is preferred but not required.


Qualifications


  • Shall be Cisco Certified Network Associate (CCNA) certified.
  • Shall have 4 or more years of progressive experience successfully leading che employment of network engineering techniques, methodologies, processes, and practices to design, engineer, implement, test, secure, and deliver a variety of enterprise-grade IT networking solutions (system, applications, and/or services) across multi-platform (Microsoft, *nix, etc.) information systems (LAN, MAN, WAN, etc.).
  • Shall have 4 or more years of progressive and increasingly complex experience working with enterprise-level Cisco hardware (Catalyst, Nexus, etc.), operating syslems (IOS, IOS-XE, NX-OS, ACI, etc.), and technologies (Voice. Video, Routing, Switching, Security, etc.) across enterprise-grade information systems and networks, as well as enterprise-level Cisco-based Routing, Dynamic Routing protocol and Switching technologies (e.g. BGP, EIGRP, LACP, HSRP, OSPF, PC, QoS, STP, VPC, and VRF).
  • Demonstrated, hands-on proficiency in the following areas:
    • Traffic flow analysis, network management, network topology design, network security, performance, high availability, load balancing, and fault tolerant architectures.
    • Secure encrypted networking devices (e.g., Taclanes and Border Gnards) and communication circuits, protocols, and configurations.
    • Tunneling technologies such as GRE, and IPSec/VTl to provide secure encrypted communication.
    • Cisco Identity Service Engine to enforce compliance and enhance infrastructure security by implementing policy-based access control system such as 802.1x, RADIUS, TACACS, and Security Group Access (SGA).
    • Network-based security technologies such as NeXT Generation Firewalls and Access Control Lists (ACLs) to secure network traffic at all supported layers or lhe OSI Reference Model.
    • Designing, engineering, implementing, and maintaining solutions in secure processing environments which must adhere to U.S. Government Information Assurance and Security standards such as the Defense Information Systems Agency (DISA) Security Requirement Guides (SRGs) and Security Technical Implementation Guides (STIGs).
    • Providing O&M support — installation, testing, validation, sustainment, upgrading, and decommissioning — as it relates to enterprise networking devices to include switches, routers, firewalls, load balancer, encryption devices copper and fiber-based connectivity.
    • Performing advanced troubleshooting techniques, methodologies, processes and practices to quickly identify and assess an issue, develop the strategy to resolve the issue, implement the resolution, and restore the degraded entity to an operational state all while maintaining concern for the original configuration and the overall Information Security (INFOSEC) posture of the environment.
    • Monitoring and assessing networking systems and solutions proactively for performance degradation, and tuning and optimization opportunities.
  • Shall meet the minimum credential requirements for a Cyber IT/Cybersecurity Workforce (CSWF) position as defined.

 Desired Qualifications

 

  • Strongly desired to hold additional Cisco Certified Network Professional (CCNP) - level technical certifications in Enterprise Infrastructure, Data Center, Security, Collaboration and/or Service Provider; or equivalents. 
  • Demonstrated experience and knowledge in the following areas:
    • Cisco data center networking solutions, technologies, and best practices to support in the engineering, design, implementation, and management of modern data center infrastructure.
    • Cisco local and wide-area enterprise networking (LAN/WAN) solutions, technologies, and best practices to support in the engineering, design, implementation, and management or Remote Office/Branch Office networking requirements as well as smaller purpose-built information systems.
    • Cisco networking security solutions, technologies, and best practices to support the secure implementation and sustainment of enterprise network devices in line with information assurance (IA) and security (INFOSEC) compliance, governance, and requirement. Personal experience working with Cisco Adaptive Security Appliances (ASA), Network Intrusion Detection Systems (NIDS), Network Intrusion Prevention Systems (NIPS), Network Taps, and like products is a plus.
    • Network engineering enterprise solutions to directly support a variety of high availability, fault tolerant, disaster recovery, and continuity of operations (COOP) scenarios.
    • Operating and maintain Juniper Firewalls to include device installation, setup and configuration, testing, and sustainment of firewall, proxy, and VPN rules.
    • Operating, tuning, and troubleshooting Cisco's Unified Communications Manager (CUCM) and TelePresence Management Suite (TMS), and TelePresence Video Communication Server (VCS) to support enterprise Collaboration (i.e., Voice and Video) services across a WAN.
    • Working with software-based configuration management solutions capable of documenting, storing, and on-demand deployment of pre-generated, reviewed, and approved network device configurations such as SolarWinds Network Configuration Manager (NCM) and Cisco Prime Infrastructure.
    • Providing mentorship and On the Job Training (OJT) to junior and/or lesser experienced team members.
    • Working with advanced Cisco Data Center technologies such as the Nexus Dashboard Fabric Controller (NDFC), Data Center Network Manager (DCNM), and/or Application Centric Infrastructure (ACI) to support Software-Defined Networking (SDN), Software-Defined Data Center (SDDC), and Secure Multi-Tenancy enterprise solutions.
    • Knowledge, experience, and understanding of network architecture concepts (e.g., Software Defined Network (SDN), Spine/Leaf, Collapsed core, and 3 tier campus layer).
    • Familiarity and operational hands-on experience with networking implementations and configurations necessary to satisfy the NSA Cybersecurity Technical Report on Network Infrastructure Security Guidance.
    • Familiarity with Data in Flight Encryption (DIFE) to secure all network traffic on the wire at USG, DOD, and IC level encryption standards.
    • Familiarity with Zero Trust principles, concepts, methodologies, and approaches as laid out in CISA's Zero Trust Maturity Model and NIST SP 800-207, Zero Trust Architecture, from the networking perspective,

Education

 

Bachelor's degree from an accredited university OR certifications:

 

  • CompTIA Security+ ce; or
  • GIAC Security Essentials Certification (GSEC); or
  • Systems Security Certified Practitioner (SSCP)

 

Security Clearance

 

This position requires an active DoD TS/SCI clearance and possess or have the ability to obtain a Polygraph.

This job is currently not open for applications.