Network Security Engineer (SME)

DecisiveInstincts, LLC has an immediate opportunity for a Network Security Engineer (SME) requiring a Top Secret clearance and the ability to work remotely.
In this role, you will be responsible for managing and securing a global MPLS infrastructure, overseeing system monitoring, routing, and firewalls, and ensuring compliance through security policy implementation, risk analysis, and support for certification and accreditation activities.

Duties and Responsibilities

• Add and manage nodes in Splunk and Riverbed for monitoring purposes

• Update monitoring tools using Ansible

• Interact successfully with both program leads and DOJ partners to ensure objectives are completed on time

• Manage IT security, including backups, firewalls, and routers

• Provide guidance for the design and management of information systems security policies and implementation across a globally distributed MPLS infrastructure

• Provide network security management and support for Windows servers

• Resolve routing and NAT issues using tcpdump and other tools

• Perform system upgrades and implement new security policies per agency guidance

• Troubleshoot complex LAN/WAN infrastructure involving BGP, EIGRP, OSPF, VPNs, web proxy, and XML gateway for enterprise web services

• Work with networking concepts and routing protocols like BGP, EIGRP, DMVPN, and other LAN/WAN technologies

• Recommend enterprise information assurance and security standards

• Develop and implement information assurance/security standards and procedures

• Coordinate, develop, and evaluate security programs for the organization

• Recommend information assurance/security solutions to meet customer requirements

• Identify, report, and resolve security violations

• Establish and satisfy information assurance/security requirements based on user, policy, regulatory, and resource demands

• Support customers at the highest levels in developing and implementing doctrine and policies

• Perform a variety of system engineering tasks related to major systems design, integration, and implementation (including personnel, hardware, software, and support infrastructure)

• Apply expertise to government and commercial systems, including those requiring specialized security features

• Analyze, design, and develop security features for system architectures

• Define security requirements for various computer systems (mainframes, workstations, personal computers)

• Design, develop, and implement security solutions

• Provide integration and implementation of system security solutions

• Analyze complex information assurance technical problems and provide engineering support to resolve them

• Conduct vulnerability/risk analyses of systems and applications throughout the system development life cycle

• Ensure all information systems are functional and secure

• Perform system security tuning, monitoring, account management, and review COTS software upgrades and patches

• Monitor and perform script writing, storage management, network interfaces, and other system interfaces

• Design and execute security system tests

• Support all system/service certification and accreditation activities

Basic Qualifications

• 5 years of total experience, including 2 years of current experience supporting and troubleshooting various computing devices and operating systems

• Strong technical background (CompTIA A+ certification preferred)

• Proficiency in networking and cybersecurity technologies and protocols

• Experience managing and troubleshooting Linux or Unix-based operating systems

• Experience with Application Layer Gateway (ALG) protocols including RTP, RTSP, FTP, DNS, HTTP, and DHCP

• CompTIA Security+ certification required

• CASP+ or Cisco Certified Cybersecurity Professional (CCCP) certification preferred

• Experience working in Agile environments using Scrum, XP, Kanban, and SAFe

Preferred Qualifications

• Bachelor’s degree in Computer Science, Information Systems, Engineering, or a related field preferred