Req ID: RQ171208

Type of Requisition: Regular

Clearance Level Must Be Able to Obtain: Secret

Public Trust/Other Required: None

Job Family: Network Engineering

Skills:

Firewalls,Local Area Network (LAN),Network Infrastructures

Experience:

10 + years of related experience

US Citizenship Required:

Yes

Job Description:

Designs, plans, and builds communications networks. Configures routers and switches, and firewalls for LAN and WAN systems and VPN concentrators with appropriate network engineering and communications protocols. Coordinates LAN/WAN hardware/software improvements and/or enhancements. Monitors the network utilizing industry leading technologies. Provides innovative methods and technical solutions using the engineering design process. Plans implementation of enhancements. Develops cyber control solutions, performs remediation of cyber incidents. Performs all procedures necessary to ensure the safety of information system assets and to protect systems from intentional or inadvertent access or destruction. Leads Risk Management Framework efforts.

Associated tasks include;

Performs Computer Security Incident Response activities for a large organization, coordinates with other government agencies to record and report incidents. Performs maintenance and upgrade of networks including servers, routers, switches, firewalls, remote access systems, and networks.

Monitor and analyze Intrusion Detection Systems (IDS) to identify security issues for remediation. Experience with DISA STIG compliancy and use of SSC tool and knowledge of CKL review and mitigation process.

Up to date on current CISCO security advisories and responses.

Evaluate firewall change requests and assess organizational risk. Knowledge of firewalls, encryption and security best practices.

Communicates alerts to agencies regarding intrusions and compromises to their network infrastructure, applications and operating systems.

Assists with implementation of counter-measures or mitigating controls.

Ensures the integrity and protection of networks, systems, and applications by technical enforcement of organizational security policies, through monitoring of vulnerability scanning devices. Understands the leveraging triple A – Authentication, Authorization, Accounting framework. Understands management sessions and limit users to specific, administrator defined commands and log all commands.

Performs periodic and on-demand system audits and vulnerability assessments, including user accounts, application access, file system and external Web integrity scans to determine compliance. Knowledge on centralized log collection and monitoring. Able to configure layer 2 and 3 devices to generate logs.

Prepares incident reports of analysis methodology and results. Experience gaining traffic visibility with netflow.

Serves as a technical team or task leader. May coach and provide guidance to less-experienced professionals.

Maintains current knowledge of relevant technology as assigned.

Participates in special projects as required.

Experience with configuration management and generation of configuration archives for backup and rollback.

In depth networking knowledge with VPN, IPSEC GRE tunnels, switching and routing within a WAN and LAN.

Requirements:

Passports are required to support on-site staffing and travel requirements.

There will be CONUS and OCONUS travel for assessments, installations, and to support on-site sustainment.

(IAT III or IAM III). required Cyber security certification is

. DoD SECRET clearance required

Knowledge of Industrial Control Systems (ICS) security highly desired

Familiarity with USAF EITDR and DoD eMASS

Knowledge of DOD and Air Force Risk Management Framework (RMF), Information Assurance, and NETOPS is a plus.

Familiarity with NIST 800 series desired but not required.

Experience with DoD and US Air Force (USAF) desired but not required.

BS in related field or equivalent, 10+ years of experience.

We are GDIT. A global technology and professional services company that delivers consulting, technology and mission services to every major agency across the U.S. government, defense and intelligence community. Our 30,000 experts extract the power of technology to create immediate value and deliver solutions at the edge of innovation. We operate across 30 countries worldwide, offering leading capabilities in digital modernization, AI/ML, Cloud, Cyber and application development. Together with our clients, we strive to create a safer, smarter world by harnessing the power of deep expertise and advanced technology.

We connect people with the most impactful client missions, creating an unparalleled work experience that allows them to see their impact every day. We create opportunities for our people to lead and learn simultaneously. From securing our nation’s most sensitive systems, to enabling digital transformation and cloud adoption, our people are the ones who make change real.

GDIT is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.