Responsibilities

As a Cyber Systems Administrator on the CBOSS 2.0 program, you will serve as a key defender of DOE's network perimeter, responsible for the administration, maintenance, and continuous improvement of enterprise firewall infrastructure. In this role, you will work directly alongside DOE security personnel to enforce boundary protection policies, ensure compliance with federal cybersecurity frameworks, and safeguard mission-critical systems from evolving cyber threats, making a direct and measurable impact on the security posture of one of the most critical agencies in the U.S. government.

Responsibilities

Firewall Administration & Management

• Implement, configure, and maintain enterprise next-generation firewalls (NGFWs) in support of DOE network security requirements, ensuring continuous availability and integrity of perimeter defense systems
• Develop, review, and enforce firewall rule sets and Access Control Lists (ACLs) in accordance with the principle of least privilege, conducting periodic audits to identify and remediate unauthorized or anomalous access
• Design and maintain network segmentation, DMZ configurations, and traffic flow policies to enforce boundary protection controls
• Manage and tune Intrusion Detection/Prevention Systems (IDS/IPS) integrated with firewall infrastructure to detect, alert, and respond to network-based threats at the enterprise perimeter

Monitoring, Incident Response & Troubleshooting

• Monitor firewall logs, SIEM alerts, and network traffic flows to identify indicators of compromise, policy violations, and anomalous activity; escalate and respond to incidents per established DOE incident response procedures
• Diagnose and resolve firewall-related connectivity, performance, and security issues across enterprise LAN/WAN environments, minimizing operational impact to mission-critical DOE systems

Qualifications Education Requirements

• Minimum of 5 years with BS/BA; Minimum of 3 years with MS/MA; Minimum of 9 years with High School Diploma.

Required Qualifications

• Must be a US Citizen
• Must be able to obtain andmaintaina Department of Energy (DOE) security clearance
• Demonstrated hands-on experience administering and managing enterprise firewalls (e.g., Palo Alto, Cisco Secure Firewall, Fortinet FortiGate)
• Working knowledge of TCP/IP networking, VPN management, network segmentation, and perimeter security architecture
• Experience with SIEM platforms, IDS/IPS systems, and network traffic analysis tools
• Strong documentation skills with the ability to produce clear technical procedures, configuration records, and compliance artifacts

Preferred Qualifications

• CompTIA Security+ or higher
• Vendor-specific firewall certifications (Palo Alto PCNSE, Cisco CCNP Security, Fortinet NSE 4+)
• Experience supporting cybersecurity programs at DOE facilities

Target Salary Range$86,000 - $138,000. This represents the typical salary range for this position. Salary is determined by various factors, including but not limited to, the scope and responsibilities of the position, the individual9s experience, education, knowledge, skills, and competencies, as well as geographic location and business and contract considerations. Depending on the position, employees may be eligible for overtime, shift differential, and a discretionary bonus in addition to base pay.