Network Engineer 3 (S) - Stuttgart, Germany

Position Summary:

In this role, you will design, model, configure, install, and test the latest data center network (SDA/SDN/enterprise) and network security infrastructures (Firewall/IPS/IDS/SIEM) systems for DoD, government, and private companies. You will implement and integrate complex network systems and technologies such as software-defined access (SDA), software-defined networking (SDN), data center infrastructure, firewalls, intrusion prevention systems (IPS) / intrusion detection systems (IDS,) packet brokers, switches, routers, wireless access and bridging infrastructures, authentication and security control devices technologies for on premise, and hybrid deployments within an Information System (IS). Essential responsibilities and activities include but are not limited to:

• Collaborating with stakeholders and network/system domain experts to define requirements.
• Analyzing, and presenting technical and operational solutions, alternatives, and final recommendations to various audiences (technical/engineering, project management, influential stakeholders, and senior leader/executive/decision makers).
• Design, implement, and document functional multifaceted IS networks to deliver quality product to the customer, facilitate project success and resolve challenges as they arise
• Researching new technologies to understand implementation requirements, understand implications for integration with other systems, and deliver enhancements and efficiencies to the end user.
• Developing and implementing network security strategies, architectures, and rulesets to be implemented at an enterprise level with integrated dependencies
• Performing IS cybersecurity/hardening functions and audits of existing network infrastructures including IP addressing, hosted devices, circuit loads, and traffic flows
• Creating and supporting disaster recovery procedures and continuity of operations plans
• Troubleshoot and debugging complex network problems and recommending operational efficiency improvements

Required

• Applicants selected will be subject to a government security investigation and may meet eligibility requirements, including U.S. Citizenship, for access to classified information; DoD Secret clearance and up is required
• MS and 5 + years of the following Progressive Experience or
• BS and 7 + years of the following Progressive Experience
• Designing, implementing operating, and maintaining enterprise data center network and/or network security technologies and providing end-user support
• Knowledge of DoD Regulations, Standards, Policies and Procedures for Information Systems (IS)
• Working knowledge of DoD DISA Security Technical Implementation Guides (STIGs) and Security Requirements Guides (SRGs)
• Strong MS Word, MS Excel, MS Visio (preferred)
• Cisco Certified Network Professional (CCNP) ***or*** Juniper Networks Certified Internet Professional (JNCIP)
• Able to meet the following qualifications within 90 days: DoD IA Workforce Qualifications (DoD 8570.01-M) - Information Assurance Management (IAM) Level II or higher

Proficient

• Specialized in at least one of the following data center or enterprise network security architectures: Software Defined Access, Software Defined Networking Firewall Architectures, IPS/IDS Architectures, Identify Management, Zero Trust, Break and Inspect, Enterprise WAN/LAN
• Enterprise core services such as DNS, DHCP, NTP, and Directory Services
• Information system (IS) device hardware requirements to include physical space, power & cooling
• Transmission mediums to include copper cabling (Ex. CAT5E, CAT6) and fiber cabling (Ex. OS2, OM4)

Experienced

• Enterprise-Class Cisco Application Centric Infrastructure, Cisco Digital Network Architecture Center (DNA Center), *or* Enterprise-Class network security hardware:/software Cisco NextGen Firewalls (Firepower Threat Defense), Palo Alto Next Generation Firewalls, IPS/IDS (Tipping Point), Packet Brokers, Cisco ISE, F5, and other related DoD enterprise hardware
• 3+ of the following Network Operating Systems (NOS): IOS, IOS-XE, IOS-XR, NX-OS, AireOS, ASA, FTD, Junos OS, PAN-OS, or equivalent
• 1+ of the following Operating Systems (OS): Window Server OS, Linux OS, Unix OS, or equivalent
• 1+ of the following network transport technology: MPLS, BGP, IS IS, OSPF

Knowledge

• Software Defined Networking (SDN) technologies for Access, WAN, & Data Center
• Firewalls, IDS/IPS, VPN, Packet Broker, Load-Balancer technologies
• Voice & Video Collaboration infrastructure and technologies to include Call Manger/Gateway and Endpoints
• Data Center infrastructure, Service Provider infrastructure and/or Security Control infrastructure

Awareness

• Cloud infrastructure, Virtual Server Infrastructure (VSI) and/or Virtual Desktop Infrastructure (VDI)
• Storage Area Network (SAN) infrastructure
• Project management life cycle framework to include Initiation, Planning, Execution and Closure
• Coding languages including Python and Ansible

Abilities:

• Exposure to computer screens for an extended period of time
• Sitting for extended periods of time
• Reach by extending hands or arms in any direction
• Have finger dexterity in order to manipulate objects with fingers rather than whole hands or arms, for example, using a keyboard
• Listen to and understand information and ideas presented through spoken words and sentences
• Communicate information and ideas in speaking so others will understand
• Read and understand information and ideas presented in writing
• Apply general rules to specific problems to produce answers that make sense
• Identify and understand the speech of another person