Security NetScout Engineer

Role: Security NetScout Engineer

Location: Remote

Duration: Long Term Contract

Role Description:

The NetScout Engineer will join a dedicated security-focused team within IBM Consulting Federal, supporting a critical 24x7x365 Federal program operation. We're looking for a highly skilled, multidisciplinary individual to contribute as mid-level network performance support engineer. In this fast-paced environment, you'll work with NetScout nGeniousONE across a diverse set of technologies, including Azure, other public clouds, and hybrid on-premises environments. This role will focus on leveraging NetScout's capabilities in both security and network performance management to identify application data flows and interactions, protect controlled data through inspection of traffic traversing accreditation boundaries, and pinpoint critical information flows. You'll work in close conjunction with other security engineering teams, including those managing Palo Alto Firewall, Prisma Access, and DLP solutions, to provide enterprise-wide network analysis. This holistic approach will be crucial for enhancing the coverage of other security controls across the enterprise. You will also work with clients and peers to ensure optimal network visibility and performance, enabling proactive identification of security threats and anomalies. Your expertise in network performance monitoring, routing, and cloud security concepts will be vital in developing resilient solutions that meet our client s strategic security and operational needs.

Position requires:

• Bachelor s degree in computer science, Information Technology, or a relevant technical field + a minimum of 7 years of hands-on experience in network performance or security engineering.
• Extensive hands-on experience with Netscout nGeniousONE platform, including its integration with and analysis of data from Infini Stream/ISNG appliances, within active production environments.
• Deep understanding of networking protocols (e.g., TCP/IP, DNS, HTTP/S, SNMP).
• Skilled in developing and analyzing technical diagrams for network topology, system interactions, and application data flows, utilizing industry-standard tools including Microsoft Visio and Lucidchart.
• Ability to identify and analyze network traffic related to application integrations, including communication with network storage, API calls, DaaS, and SaaS platform interactions, to diagnose performance or connectivity issues.
• Familiarity with various remote access VPN technologies and protocols (e.g., SSL VPN, IPsec VPN) and practical experience with common enterprise solutions such as Palo Alto Global Protect and Cisco Secure Client/AnyConnect.
• Experience with major cloud service providers, such as Azure and AWS.
• Knowledge of Linux or UNIX environments, including navigating and troubleshooting basic OS issues.
• Experience interacting with tools through RDP, web-based UI, SSH, and CLI.
• Experience using Microsoft 365 applications and Teams collaboration.
• Excellent verbal communication skills with the ability to clearly articulate complex technical information to both technical and non-technical clients and stakeholders.
• Must have one of the following: Security + CE, CEH, CySA+, GICSP, SSCP, CHFI, CFR, Cloud+, CND, CASP CE, CISSP, CSSLP.

Level of Experience & Preferred Education:

• 5 years of relevant professional experience, or more.
• Bachelor's degree, or higher in Cyber, Computer Science, or related field.

Nice to Have Skills:

• Certifications: Netscout Certified Export (NCE), Wireshark WCNA, CCNA Security, CISSP.
• Understanding and experience with Federal Security Standards such as NIST and DoD.
• Understanding and experience with FedRAMP Cloud Security Requirements.

OTHER SKILL/REQUIREMENT:

• Candidate must be able to obtain a current US Federal Public Trust clearance (or higher).