Overview
On Site
Full Time
Skills
Palo Alto
Network security
Team management
Security controls
Web applications
System documentation
Web security
Computer science
Cyber security
System administration
System security
OSI model
Data link layer
Spanning Tree Protocol
Network layer
Routing protocols
Cisco
Juniper
Firewall
Network
Policies
Documentation
Administration
Fortinet
Computer networking
Routers
Switches
Nmap
Wireshark
tcpdump
Proxies
SIEM
TCP
UDP
VLAN
Routing
Writing
CISSP
Security clearance
Job Details
Assist in day-to-day operational security duties on a network security team handling Cisco, Juniper, and Palo Alto Networks firewalls. Evaluate, recommend, and justify appropriate commercial off-the-shelf products that support the security program requirements. Serve as a subject matter expert in systems and network security. Interpret security scan results, identify critical vulnerabilities, reduce false- positives, and perform/recommend corrective actions to remediate vulnerable systems and applications. Installs, implements, and maintains network firewalls that prevent unauthorized access to internal networks.
Review network firewall rule exception requests to ensure the request meets policy and perimeter protection standards. Validate security scans for the requested public- facing applications to ensure there are no open vulnerabilities requiring mitigation. Implement/adjust pertinent network firewall rules.
Conduct security controls assessment for new and existing systems, networks, and web applications. Create and maintain as-built system documentation, architecture diagrams, and online collaborative documentation. Determine security modes of operation and recommend new or revised security measures and countermeasures for current security challenges.
Implement and maintain web security gateways that protect employee workstations. Continuously assess the effectiveness of security controls on installed systems based on analysis of reported security violations/breaches and implement modifications to enhance effectiveness.
Requires bachelor's degree in computer science, cyber security, engineering, or a related technical field plus 7 years of related experience with 5 years being in system administration and systems security administration. Additional experience can be substituted for a degree.
Experience working with Cisco, Juniper, Fortinet, and Palo Alto Networks networking and security solutions including routers, switches, and firewalls.
Experience using common networking tools to aid in troubleshooting, including nmap, Wireshark, tcpdump, etc.
Understanding of proxy and URL filtering services for end users.
Understanding of SIEM operation.
Expertise in common networking concepts and protocols including, but not limited to:
TCP/UDP ports and protocols.
OSI Model.
Layer 2 switching concepts (spanning tree, VLAN trunking, etc.).
Layer 3 routing concepts (routing protocols, route summarization, redistribution, etc.).
Demonstrated ability to effectively communicate orally and in writing.
Experience supporting a nationwide mid to large Federal agency enterprise is a plus.
CISSP certification required.
Must be able to obtain Level 2 Secret (ANACI) clearance.
Review network firewall rule exception requests to ensure the request meets policy and perimeter protection standards. Validate security scans for the requested public- facing applications to ensure there are no open vulnerabilities requiring mitigation. Implement/adjust pertinent network firewall rules.
Conduct security controls assessment for new and existing systems, networks, and web applications. Create and maintain as-built system documentation, architecture diagrams, and online collaborative documentation. Determine security modes of operation and recommend new or revised security measures and countermeasures for current security challenges.
Implement and maintain web security gateways that protect employee workstations. Continuously assess the effectiveness of security controls on installed systems based on analysis of reported security violations/breaches and implement modifications to enhance effectiveness.
Requires bachelor's degree in computer science, cyber security, engineering, or a related technical field plus 7 years of related experience with 5 years being in system administration and systems security administration. Additional experience can be substituted for a degree.
Experience working with Cisco, Juniper, Fortinet, and Palo Alto Networks networking and security solutions including routers, switches, and firewalls.
Experience using common networking tools to aid in troubleshooting, including nmap, Wireshark, tcpdump, etc.
Understanding of proxy and URL filtering services for end users.
Understanding of SIEM operation.
Expertise in common networking concepts and protocols including, but not limited to:
TCP/UDP ports and protocols.
OSI Model.
Layer 2 switching concepts (spanning tree, VLAN trunking, etc.).
Layer 3 routing concepts (routing protocols, route summarization, redistribution, etc.).
Demonstrated ability to effectively communicate orally and in writing.
Experience supporting a nationwide mid to large Federal agency enterprise is a plus.
CISSP certification required.
Must be able to obtain Level 2 Secret (ANACI) clearance.