Firewall Engineer

Company Description

• Integres, LLC is a Service-Disabled Veteran Owned Small Business (SDVOSB) which was established to provide high quality, insightful, agile information technology-based solutions to its customers. Integrity is a foundational element of everything we strive to do. We seek to develop solutions which respond to the evolving challenges that today’s organizations face using our own unique combination of industry best practices, and evolving techniques and technologies. We started Integres with the intent of building "a company with a soul". As such, we take a servant-leadership approach as the long-term strategy for our success. We are cultivating a corporate family culture which demands excellence and accountability while putting a premium on work/life balance. We empower and support our employees to contribute to achieving our corporate goals by interacting with our customers as true partners, rather than treating their engagement as just another job. We seek to be good corporate citizens and encourage and promote employee participation in community and volunteer work.

Job Description

Responsibilities:

Integres LLC is looking for a Firewall Engineer with project lead experience and hands-on engineering experience. The Firewall Engineer will be responsible for the engineering, implementation, and support of security solutions for the State of Maryland DoIT Security Operations Center (SOC) with a special focus on enterprise firewall systems. This role will be responsible for performing the following tasks:

Duties and Responsibilities:

• Gap assessment and analysis of security solutions and recommendation of improvement initiatives.
• Implementation of scalable, redundant, and reliable firewall solutions.
• Security hardening firewall configurations.
• Configuration management and control of architectural/design/functional configuration changes to firewalls.
• Firewall brake-fix troubleshooting, root cause analysis, and support.
• Firewall patch/upgrade monitoring, reviews, maintenance scheduling, and deployment.
• Management of firewall operational and security audit logs.
• Definition, development, and configuration of firewall security and operational alerts, dashboards, and reporting.
• Monitoring firewall operational and security alerts and dashboards.
• Defining, implementing, and monitoring processes/procedures for maintaining the lifecycle firewall policies and rules.
• Configuration, maintenance, and support of additional firewall services such as URL filtering, Malware Sandboxing Analysis, Threat Intelligence Feeds, Threat Prevention, User ID, etc.
• Provide firewall log correlation support for emerging and retroactive security incident investigations.
• Support the integration with other security tools such as IDS/IPS, SIEM, NACs, VPN, etc.
• Define requirements and develop roles-based Standard Operating Procedure (SOP) documents.

Qualifications

Qualifications/Education and Years of Experience: 

• At least 6-8 years of hands-on experience in Network Engineering/Architecture.
• At least five (5) years of technical experience in architecture, design, implementation, support of firewall technologies.
• Bachelor’s degree from an accredited college or university with a major in Computer Science, Information Systems, Engineering or related scientific or technical discipline.

Required Skills/Certifications:

• Must have current Palo Alto Networks Certified Network Security Engineer (PCNSE) certification or hands-on experience implementing Palo Alto Advanced/NextGen features to include App-ID, User-ID, Content-ID, URL Filtering, Threat Prevention, WildFire, Virtual Wire, Virtual System (VSys), Global Protect, NAT Policies, Security Profiles, Inbound SSL Decryption, Outbound SSL Decryption (SSL Forward Proxy), File Blocking, and Data Filtering
• Hand-on experience with Palo Alto Panorama for centralized management of PANOS firewalls
• Self-starter, able to gather requirements, plan, execute firewall architecting and deployment efforts.
• Able to perform gap analysis and initiate and execute architectural improvements.
• Strong demonstrated experience with network security architecture, design, and implementation best-practices i.e., Defense-in-depth architecture, knowledge of emerging Zero Trust architecture.
• Hands-on experience with firewall architecture, design, and implementation.
• Hands-on experience with operational and security hardening configuration for firewall solutions.
• Hands-on experience with configuration management and change control for firewall solutions.
• Demonstrated experience with networking and switching protocols and infrastructure services, able to troubleshoot and identify DNS, DHCP, WiFi protocols, NTP, SNMP, routing, switching, and firewall issues affecting connectivity of applications and services.
• Must have working knowledge and understanding of network infrastructure components such as Routers, Switches, IDS, IPS, NAC, VPN Gateways, Wireless APs etc.
• Customer-oriented with excellent issue follow-through and resolution abilities.
• Outstanding leadership and organizational skills.
• Utilize tools and analytical skills to plan and execute technical changes.
• Excellent written and oral communication, and presentation skills.
• Ability to effectively work both autonomously as well as on a team.
• Outstanding interpersonal skills, strong work ethic, self-motivated and excellent presentation skills.

Additional Information

Integres offers competitive salaries bolstered by a comprehensive benefits package, which provides safety and security for our employees and their families.  Our generous benefits package includes:

• Healthcare and Insurance: medical, dental, vision, short and long-term disability protection, basic life and AD&D insurance
• 401(k) Savings Plan
• Accrued Paid Time Off (PTO)
• Employee Recognition and Rewards
• Employee Referral Bonuses

Integres is an equal opportunity affirmative-action employer.  We encourage Minority/Female/Protected Veteran/Disabled applicants to apply.  Integres, LLC proactively fulfills its role as an equal opportunity employer.  We do not discriminate against any employee or applicant for employment because of race, color, sex, religion, age, sexual orientation, gender identity and expression, national origin, marital status, physical or mental disability, status as a Disabled Veteran, Recently Separated Veteran, Active Duty Wartime, or Campaign Badge Veteran, Armed Forces services Medal, or any other characteristic protected by law.

All your information will be kept confidential according to EEO guidelines.