Network Security Engineer

Title: Network Security Engineer

Start: June 2025

Duration: 12+ Months (High possibility of Extension)

Location: Annapolis, MD (Hybrid)

Type: W2 with benefits / C2C

USCs / GCs

Position Description: The Network Security Engineer will actively participate in planning and coordinating the design, installation, and connectivity of computer and network systems to ensure stable, scalable, redundant, and secure 24/7 network operations.

Position Responsibilities:

• Proactively identified organization requirements and helped design and engineer implementations that best served the needs.
• Performing project-based engineering, design, installation, and troubleshooting of data security networks.
• Providing assessment, design, and implementation services of data and secure networking environments.
• Developing comprehensive graphical and text-based design documentation and effectively managing the implementation process from design to acceptance.
• Assisting internal groups through capacity planning, maintaining, monitoring, and reviewing secure data communications networks.
• Leading migrations or assisting a team of engineers who will migrate traditional/legacy network security platforms to current/next generation technologies and expose customers to the full life cycle of defense in depth solutions.
• Assisting network engineers in troubleshooting critical problems or threat remediation relating to network security products.
• Working with the engineering team to successfully implement configuration guidelines, change management, and standard operating procedures for secure network solutions.
• Leading, scheduling, providing guidance, and coordinating the activities with other team members to resolve end-user problems promptly and accurately.
• Generating weekly status reports including project progress, key milestones, and tasks accomplished.
• Hosting weekly status meetings/calls with a team or on an as-needed basis.

Minimum Experience Requirements:

• Associate degree in an Information Technology (IT) related field.
• Active certification: Palo Alto Networks Certified Network Security Engineer (PCNSE) Certification.
• Active certification: Cisco Certified Network Professional (CCNP) Enterprise or (CCNP) Security Certification.

Preferred Requirements:

• Ten (10) years of CONUS technical experience in IT networking and network security.
• Bachelor s degree in an Information Technology (IT) related field.
• Active certification: Prisma Certified Cloud Security Engineer (PCCSE) Certification from Palo Alto Networks.
• Active certification: Cisco Certified Internetwork Expert (CCIE) in Enterprise Infrastructure or Security Certification.

Position Skills, Experience, & Capabilities:

• Five (5) years of experience with:

1. Palo Alto Networks next-generation firewall services.
2. Intrusion Detection and Prevention with Palo Alto Networks.
3. Content Filtering Palo Alto Networks.
4. Virtual Private Networks using Palo Alto network systems.
5. Data Loss Prevention.
6. TLS/SSL Inspection.

• Four (4) years of experience in Complex switching, routing, and wireless with Cisco Systems.
• Three (3) years of experience in Reverse Proxies, Load Balancing with A10 networks.
• Two (2) years of experience in Network Access Control - Cisco Identity Services Engine (ISE), Free Radius, and Access Control Lists (ACLs).

General experience with the following:

• Implementing multifactor authentication solutions with Microsoft.
• Cloud-based virtual networking and security services.
• Authentication standards - (802.1x) in wired and wireless applications.
• Scalable routing protocols: Enhance Interior Gateway Routing Protocol (EIGRP), Open Shortest Path First (OSPF), and Border Gateway Protocol (BGP).
• Enterprise Data Center is implementing micro-segmentation.
• Certificate Management, Public Key Infrastructure (PKI).
• Vulnerability management using Nessus, NMAP, Windows, Unix, and Linux OS.
• Packet/Protocol Analysis using Opnet, Riverbed, Wireshark, and taps.
• Centralized Management using Panorama, SolarWinds.
• Major server and desktop operating systems and utilities.
• Ability to work independently, troubleshoot, and provide mentoring to junior associates.
• Communicate effectively when providing presentations.
• Produce technical documents (diagrams, design documents, project plans and schedules, and user instructions) as required.

Work Arrangement:

• Work shall be performed in a hybrid setting each week, Monday through Friday, as follows: Two (2) days remote at a suitable off-site location. The client reserves the right to determine that an off-site location is unsuitable (e.g., crowded public space with distracting background noise during meetings).
• Three (3) days on site in Annapolis, MD 21401.
• Perform during normal operating hours, Monday through Friday, 8:00 AM to 4:30 PM Eastern Standard Time (EDT).
• The candidate shall be flexible in extending coverage hours or scheduling to meet deadlines, project requirements, and/or on-call operational support, including evenings, nights, weekends, and holidays.