COI/Firewall/IDS-IPS Engineer
Tasks
- Architect segmented zero trust least privilege defense in depth network environments
- Conduct technical risk assessments and control validations aligned to NIST and DoD STIG and RMF
- Develop and maintain firewall policies ACLs NAT VPN architectures and security rules
- Integrate NGFW IDS IPS telemetry with SIEM and SOAR for detection and incident response
- Lead design implementation and lifecycle management of next generation firewalls ids ips
- Lead troubleshooting and root cause analysis for network security incidents coordinate containment and remediation
- Maintain documentation data flow diagrams change control records and evidence for monitoring and accreditation
- Optimize rule bases perform configuration audits and compliance assessments
- Perform deep packet inspection signature tuning anomaly detection refinement and traffic flow validation
- Provide guidance for high availability deployments encrypted traffic inspection secure remote access and secure onboarding
Perks/Benefits
- N/A
Skills/Tech-stack
800-53 | Access Control | Access Control Lists | Anomaly Detection | Cause analysis | DOD STIG | Deep Packet Inspection | Encrypted traffic | Encrypted traffic inspection | Firewall policies | High Availability | High Availability Clustering | Incident Response | Intrusion Detection | Intrusion Detection System | Intrusion Prevention | Intrusion Prevention System | Least Privilege | NAT | NIST 800 | NIST 800 41 | NIST 800-53 | Network Security | Packet Capture | Packet Inspection | RMF | Root Cause Analysis | Root cause | SIEM | SOAR | Signature tuning | TLS inspection | TLS/Decryption | Traffic inspection | VPN | Zero Trust
Education
Related jobs
-
Automation | Capacity Planning | Distributed Systems | Incident Response | Postmortem AnalysisSenior-level Full TimeReston, VA, USA2h ago
-
Software Engineer III, Privacy, Safety and Security USD 147K-211KAccess Control | Access Management | Data Storage | Data Structures | Data Structures and AlgorithmsSenior-level Full TimeSunnyvale, CA, USA2h ago
-
Automation | Availability | Capacity Planning | Distributed Systems | Fault ToleranceSenior-level Full TimeKirkland, WA, USA2h ago
-
Incident Response Consultant, Google Public Sector USD 147K-211KCloud Security | Containment | Crisis management | Digital forensics | Endpoint ForensicsMid-level Full TimeReston, VA, USA2h ago
-
AWS Security | Azure Security | Cloud Security | GDPR | Google Cloud401k program | Dental benefits | Discounts on hotels cars and cruises | Employee assistance program | Flexible spending accountsSenior-level Full TimeFort Worth, TX, US6h ago
-
Staff Software Engineer – .NET Framework (Windows / On-Prem Platform) hybrid in Salt Lake City, Utah USD 156K-189K.Net Framework | Backward Compatibility | By Design | C# | Certificate managementDental insurance | Disability insurance | Health insurance | Paid time off | Retirement planSenior-level Full TimeSalt Lake City, Utah, United States10h ago
-
Sr Lead, Cybersecurity Engineering USD 114K-194KAzure DevOps | Change Management | Cloud apps | Communication Compliance | DSPMSenior-level Full TimeChicago, IL, United States14h ago
-
Red Team Security Engineer USD 130K-205KApplication Security | Burp Suite | Cobalt Strike | Covert operations | Incident Response401k retirement plan | Disability insurance | Equity compensation | Flexible PTO | Free on-site mealsMid-level Full TimeSan Francisco16h ago
-
Enterprise Solutions Engineer, Central Corp USD 155K-205KAPI | Access Control | Active Directory | Cloud Security | DHCPCommuter benefits | Fertility benefits | Flexible PTO | Flexible spending account | Health Saving AccountMid-level Full TimeAustin, TX United States16h ago
-
Support Engineer USD 81K-174KAzure Kubernetes | Azure Kubernetes Service | CI/CD | Cause analysis | IISOn-call rotationEntry-level Full TimeDallas, Texas, United States16h ago
-
Senior Data Engineer USD 160K-195KAWS Lambda | AWS Step Functions | Alerting | Amazon EMR | Amazon KinesisSenior-level Full TimeRemote - US R16h ago
-
Information Security Engineer USD 85K-126KC# | C++ | CIS | CSPM | DLP401k with company match | Charitable giving platform with company match | Commuter benefits | Dental insurance | Employee discount programsMid-level Full TimeAustin, Texas16h ago
-
Security Accreditation Lead USD 100K-100KAccess Control | CI/CD | Client Side Data Protection | Client side | Cloud Native401k retirement plan | Dental insurance | Disability coverage | Flexible spending account | Health insuranceSenior-level Contract Full TimeRemote, United States R17h ago
-
Infrastructure Security Engineer USD 200K-340KAWS | Azure | Bash | CASB | CI/CD401k | Dental insurance | Disability insurance | Discounts | Health insuranceMid-level Full TimePalo Alto, CA19h ago
-
Senior-level Full TimeHampton, VA19h ago
-
Infrastructure Security Engineer USD 200K-240KAWS | AWS Key Management Service | Access Control Lists | Bill of Materials | CI/CDSenior-level Full TimeRedwood City, CA (Hybrid); San Francisco, … R20h ago
-
System Security Engineer (5168) USD 73K-121KAttack vector analysis | Authorization management | Boundary Protection | Change Management | Confidentiality Integrity AvailabilityHealth insurance | Paid leave | RetirementSenior-level Full TimePatuxent River, MD20h ago
-
Applications Support Engineer USD 62K-112KBIND | BeyondTrust | BlueCat | Bluecoat | DNSHybrid work | Public trust clearance requiredEntry-level Full TimeWashington, DC20h ago
-
Mid-level Full TimeWashington, DC20h ago
-
Principal Software Engineer - CTJ - Poly USD 139K-304KAlerting | Automation | Cloud Computing | Deployment | Distributed SystemsSenior-level Full TimeReston, VA, US; Redmond, WA, US21h ago
-
Senior Security Operations Engineer II USD 148K-237KAWS | Alerting | Azure | CI/CD | CMDBDental insurance | Employee wellness support | Fitness programs | Learning and development programs | Medical insuranceSenior-level Full TimeWashington, United States21h ago
-
Senior Security Engineer II USD 152K-244KAWS | Azure | Certificates | Endpoint Security | FirewallDiscretionary paid time off | Emotional and mental wellness support | Employee resource groups | Fitness programs | Learning and development programsSenior-level Full TimeScottsdale, Arizona, United States21h ago
-
Information Security Engineer | North America (EST) USD 160K-200KAWS | Browser Security | CIS Controls | Cloud Access Security Broker | Cloud accessAdditional country based perks | Remote work flexibility | Stock grant opportunities | WeWork accessSenior-level Full TimeUSA R23h ago
-
Corporate Systems Engineer USD 180K-200KAccess Control | Access Management | Audit and compliance | Cause analysis | Change ManagementMid-level Full TimeUnited States | Remote R23h ago
-
Sr. DevSecOps Engineer I (6490) USD 128K-138KAccess Control | Ansible | Artifact Repository | Bash | CI/CDSenior-level Full TimeHybrid - Reston, VA R1d ago