Network Security Engineer SME

Highlights:

• Why Join Our Team: This role contributes to a thrilling mission at the FBI’s CJIS, offering candidates the chance to learn from top industry professionals and develop valuable skills and expertise that can be beneficial across various fields.
• About the Team and Work Environment: The team at the FBI’s CJIS includes both government employees and contract staff from various companies. This blend fosters collaboration and innovation, as each member brings unique perspectives and experiences to the table.
• What Makes This Position Unique: This position is unique because it allows you to work on a dynamic team engaged in high-visibility projects. You'll have the chance to learn from top professionals in the industry, enhancing your personal and professional growth.

• Skills You Will Acquire: If the candidate accepts this position, they will acquire skills in the Scaled Agile Framework (SAFe), specifically tailored for a large government organization.

Typical Day:

A typical day entails working with a large team to operate and maintain the FBI’s CJIS IT infrastructure using the SAFe methodology

Tasks:

• Add and manage nodes in Splunk and Riverbed for monitoring purposes.
• Update monitoring tools using Ansible.
• Interact successfully with both program leads and DOJ partners to ensure objectives are completed on-time.
• Manage information technology security, including backups, firewalls, and routers.
• Provide guidance for design and management of information systems security policy, implementation, and management for a globally distribute MPLS infrastructure.
• Provide network security management and support windows servers.
• Resolve routing and Network Address Translation (NAT) issues utilizing tcpdump and other tools
• Perform system upgrades and implement any new security policies per agency guidance and policy.
• Key contributions include trouble shooting of complex LAN/WAN infrastructure that include routing protocols BGP, EIGRP and Open Shortest Path First (OSPF), VPNs, web proxy, and XML gateway for enterprise web services.
• Work on different networking concepts and routing protocols like BGP, EIGRP, dynamic multipoint virtual private network (DMVPN) and other LAN/WAN technologies.
• Recommends enterprise information assurance and security standards.
• Develops and implements information assurance/security standards and procedures.
• Coordinates, develops, and evaluates security programs for an organization. Recommends information assurance/security solutions to support customers’ requirements.
• Identifies, reports, and resolves security violations.
• Establishes and satisfies information assurance and security requirements based upon the analysis of user, policy, regulatory, and resource demands.
• Supports customers at the highest levels in the development and implementation of doctrine and policies.
• Performs a variety of system engineering tasks and activities that are broad in nature and are concerned with major systems design, integration, and implementation, including personnel, hardware, software, budgetary, support facilities and/or equipment.
• Applies know-how to government and commercial common user systems, as well as to dedicated special purpose systems requiring specialized security features and procedures.
• Performs analysis, design, and development of security features for system architectures.
• Analyzes and defines security requirements for computer systems which may include mainframes, workstations, and personal computers.
• Designs, develops, engineers, and implements solutions that meet security requirements.
• Provides integration and implementation of the computer system security solution.
• Analyzes complex information assurance-related technical problems and provides multifaceted engineering and technical support in solving these problems.
• Performs vulnerability/risk analyses of computer systems and applications during all phases of the system development life cycle.
• Ensures that all information systems are functional and secure
• Perform system security tuning, security monitoring, general and privileged user account management, and reviewing all COTS software products upgrades and patches, including operating systems.
• Monitors and performs script writing, storage management interfaces, network interfaces, external peripheral interfaces, and others systems interfacing.
• Design and execute security system tests.
• Shall support all systems/services certification and Accreditation activities.

Required Qualifications:

• 5 years of total experience with two years of current experience in supporting and troubleshooting various computing devices and operating systems.
• Strong technical background
• Proficiency in both networking and cybersecurity technologies and protocols.
• Experience in managing and troubleshooting Linux or Unix base operating systems.
• Experience with Application Layer Gateway (ALG) [Real-time Transport Protocol (RTP), Real-Time Streaming Protocol (RTSP) and File Transfer Protocol (FTP), Domain Name System (DNS), Hypertext Transfer Protocol (HTTP)], Dynamic Host Configuration Protocol (DHCP).
• Experience working in an Agile organization using Scrum, XP, Kanban, and SAFe.

Desired Qualifications:

• Bachelor’s degree in computer science, information systems, engineering, or a related field is preferred.
• CompTIA Security+ certified, CompTIA Advanced Security Practitioner (CASP+) certified or Cisco Certified Cybersecurity Professional (CCCP) preferred.
• CompTIA A+ certified preferred.

Position Type Shift Information:

• 8:00am-4:30pm

US Citizenship: US citizenship is required

Clearance: Current Top Secret Clearance Required

Location: Remote

Ideal Innovations, Inc. is an Equal Opportunity Employer:

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability, or veteran status.

Ideal Innovations, Inc. is a VEVRAA Federal Contractor.