Cyber Security Engineer - Firewall

CACI International   •  

Montgomery, AL

Industry: Professional, Scientific & Technical Services

  •  

11 - 15 years

Posted 45 days ago

Job Description


What You’ll Get to Do:
CACI is seeking Cyber Security Engineers with firewall expertise. In this role, you will be responsible for all firewall aspects of a site migration to DISA's Joint Regional Security Stacks (JRSS) program. We are seeking mid and senior-level engineers in one of four locations: Springfield, VA; Ft Meade, MD; Scott AFB, IL or Montgomery, AL. The JRSS mission is to bring DoD's current local security stack infrastructure into a regional format. Our teams will migrate the networks to centralize their network and firewall backbone to improve and secure network access. We look forward to work with you on this exciting opportunity!



More About the Role:

In this role you will:

• Orchestrate the project end-to-end from a Firewall Security Prospective

• Analyze Firewall Security discovery information and determine requirements for the migration

• Provide Firewall gap analysis at the start of the project

• Direct team members and review results

• Deconflict inconsistencies between engineering implementation plans (EIPs ) and coordinate changes with EIP author

• Maintain current network diagram for COI/Base (end-to-end)

• Control all variables and allocations e.g. IP Addresses, Firewall configurations, VRFs, shims, process IDs, etc.

• Identify and communicate firewall security requirements to Tools and CND teams and establish acceptable deadlines tracked by PM

• Track task status against ASI schedule and adjust implementation actions as needed



You’ll Bring These Qualifications:

Experience:

• Requires a relevant bachelor’s degree and 12-15 years of prior relevant experience or master’s degree with 10-13 years of prior relevant

experience. Equivalent relevant work experience will be considered in lieu of degree.

• You must hold an active IAT II 8570 Certification, or higher, to qualify (Security+ CE, CISSP, etc.)

• You must hold an active DOD Top Secret Clearance.

• Must be an authority on the following devices:

• CISCO ASA Firewalls

• Palo Alto Firewalls

• F5 load balancers

• Cisco MPLS (Multi-Protocol Label Switching)

• BGP routing (Border Gateway Protocol)

Required Experience & Qualifications:

• In-depth protocol analysis, with tools such as tcpdump

• Experience in leading large engineering projects

• Leadership skills in organizing a team of engineers


These Qualifications Would be Nice to Have:

Experience with:

• F5 load balancers

• Palo Alto Firewalls

• Cisco ASA Firewalls

• Standup of Remote Access Virtual Private Networks (RAVPNs)

• Military/DoD securityarchitectures

• JRSS familiarity

• CISCO or Juniper Certifications

Req #: 215847