MSM Technology

Network Engineer Senior

Whitehall, OH, US

13 days ago
Save Job

Summary

Description

Network Engineer Responsibilities

  • Provide network architectural design, modeling, engineering, implementation, sustainment, migration, technical refresh, and lifecycle services for the DISA Datacenter and Cloud enterprise network infrastructure. Network services and products supported shall include, but are not limited to, routers, switches, firewalls, web application firewalls, DNS, email gateways, proxy services, VPN, Local Area Network (LAN), Wide Area Network (WAN) and protocols, cryptographic devices, associated device software and firmware, diagnostic tools, and automation systems.
  • Provide engineering design, documentation, and implementation for IPv6 deployment for all the DISA Datacenter and Cloud enterprise network infrastructure.
  • Design, engineering, implementation, and migration to Zero Trust architecture within the DISA Datacenter and Cloud enterprise network infrastructure.
  • Network services and products supported shall include, but are not limited to, routers, switches, firewalls, web application firewalls, DNS, email gateways, proxy services, VPN, Local Area Network (LAN), Wide Area Network (WAN) and protocols, cryptographic devices, associated device software and firmware, diagnostic tools, and automation systems.
  • Design solution documentation that outlines guidance on licensing, physical architecture, logical configuration, eligibility, checklist application inventory, security policy protection phases, and basic administration to include system configuration baseline and security policy configuration baseline.
  • Build, implement, and document network enabled applications taking into consideration various factors such as but not limited to infrastructure requirements or limitations, security, and application performance needs and best practices.
  • Continuously monitor the Government owned project management system for project support requests, project priority, triage to ensure urgency/impact are clearly defined, project assignments, project tasks/activities, project timelines and suspense, project reporting, and project briefings
  • Proficiently communicate and brief ideas and information to people of a non-technical background including senior leadership.
  • Responsible for all lifecycle components’ compliance with security controls, including confidentiality, integrity, and availability as well as compliance with Security Technical Implementation Guidelines (STIG) in depth.
  • Engineer and implement network architectural changes in response to future network technology enhancements, DISA customer requirements, security requirements and enhancements, technical refresh efforts, lifecycle requirements, or changes in network capacity requirements.
  • Prepare and solve design/technical documentation to include whitepapers, briefings, and other required documents to support all engineering and implementation efforts with established policy and processes.
  • Adhere to DISA enterprise network standards to include developing support documentation, leading technical working groups, conducting product evaluations, developing recommendations, and preparing and presenting briefings. Complying with DISA change management documentation and processes.
  • Ensure that all engineering and implementation efforts adhere to DISA and DoD policies, and directives from United States Cyber Command (USCC) and Joint Force Headquarters DODIN (JFHQ-DODIN).

Requirements

Required Skills:

  • Must have an active SECRET or higher security clearance.
  • 10+ years of relevant experience with design and implementation of complex Datacenter and Enterprise Network infrastructure in a multi-vendor environment
  • DoD 8570.01-M/8140.01 IAT Level II Certification (can be one of the following: Security+ or CySA+)
  • Relevant professional level Computing Environment (CE) certification based on the equipment and software relevant to primary duties.
  • CCNP, F5 301, Juniper (JNCIS, JNCIP) certification preferred.

Preferred Skills

  • IT bachelor’s degree or Vendor Network Certification (Professional or higher)
  • Experience managing and configuration of Cisco ACI and navigation within APIC environment.
  • Strong and extensive knowledge of datacenter-based network methods, protocols and technologies to include:
  • Routing [BGP/ OSPF/MP-BGP/ MPLS/VPN/Multicast/PBR]
  • Switching [RSTP, VLAN, VXLAN, LLDP, VPC, LACP, LAG]
  • TCP/IP, IPv4, IPv6, UDP, Layer 1 through Layer 7, IPSEC, HAIPE
  • Firewalls [VPN, ACLs, Whitelisting]
  • Load balancing [APM, ASM, LTM, GTM]
  • SDN/ NFV/ IAC [ACI, Service Insertion, Ansible]
  • Identity and Access Management with RBAC [AAA/RADIUS/TACACS/ LDAP]
  • Network management and analysis (Performance Manager (PM), Juniper Space, Cisco ISE, Splunk]
  • Structured cabling and installation standards
  • Application of net- work security and design practices
  • Cloud management [AWS/AZURE]
  • Knowledge in software modules to include: [F5 BIG-IP LTM, GTM, APM, ASM]
  • Must be proficient in use of government systems to track ops and management of systems and performance including but not limited to ITSM, GTMS, ServiceNow, 0365, Microsoft Teams, Ansible Automation Platform (APP)

How strong is your resume?

Upload your resume and get feedback from our expert to help land this job

MORE JOBS LIKE THIS

People also searched: