Gigamon Network Engineer An active Top Secret / SCI clearance with the willingness to take and pass a polygraph exam is required for consideration for hire for this role. Work is to be performed 100% onsite with our Government CustomerLocations available: JBAB (Bolling AFB), DC; Maryland Square, MD; Reston, VA; Quantico, VA
What You'll Get To Do:In this role the Gigamon Engineer is responsible for deploying, operating, and sustaining the Gigamon Deep Observability Pipeline across DIA-managed enclaves and mission networks, enabling full packet-level visibility to support intelligence community (IC) cybersecurity operations.
This position operates within a classified IC environment and requires close coordination with DIA cybersecurity, network operations, and mission partners. The engineer will support threat detection, anomaly analysis, and sensor grid expansion across high-priority intelligence networks, directly contributing to DIA's ability to identify and respond to advanced persistent threats (APTs) and insider threats targeting national security systems.
With mentoring, challenging hands-on problem-solving, and opportunities to learn new tools and skills, we focus on growing as a team to make the best solutions for our customers.
Roles & Responsibilities- Deploy, configure, and sustain GigaVUE HC-3, T-10, and HD-Series packet brokers; design TAP/SPAN architectures for full traffic visibility across classified and unclassified DIA network segments
- Administer GigaVUE Fabric Manager (GFM) for policy management, traffic mapping, and tool load balancing; configure GigaSMART features including deduplication, slicing, masking, and application filtering
- Integrate Gigamon outputs with DIA-operated SIEM, IDS/IPS, and full-packet capture platforms; ensure all deployments comply with RMF, ICD 503, and applicable DISA STIGs
- Deliver enriched traffic feeds to DIA analytics platforms supporting threat hunting, anomaly detection, and APT/insider threat identification; assess and remediate sensor coverage gaps
- Support SOC analysts and ISSM/ISSO personnel during incident response with packet-level data and flow analysis across SIPRNET, JWICS, and coalition network segments
- Architect and document Gigamon sensor grid topologies for evolving DIA segments including cross-domain and coalition environments; lead design reviews, ECPs, and as-built documentation
- Develop SOPs and runbooks; brief findings and risk assessments to DIA government leads; mentor junior engineers on platform operations and IC cybersecurity practices
Required Qualifications:- 5-7 years of hands-on experience in network engineering, network security engineering, or a closely related discipline within a DoD or IC environment
- Demonstrated experience deploying and operating Gigamon appliances (GigaVUE HC, T-Series, HD-Series, or equivalent) in production networks
- Experience designing and troubleshooting IP networks including routing protocols (BGP, OSPF), VLANs, spanning tree, and network segmentation
- Experience supporting or operating within DoD or IC classified computing environments including SIPRNET, JWICS, or equivalent enclaves
- Experience documenting network topologies and maintaining as-built diagrams and configuration baselines
- Proficiency with GigaVUE Fabric Manager (GFM) and Gigamon CLI for appliance configuration and policy management
- Knowledge of packet capture and traffic analysis concepts including TAP/SPAN, deduplication, filtering, and flow metadata
- Understanding of network security principles including firewalls, IDS/IPS, proxies, and zero-trust architecture as applied to classified environments
- Familiarity with SIEM platforms (Splunk, ArcSight, or equivalent) and how network visibility feeds enhance detection fidelity
- Working knowledge of multi-domain architectures: LAN, WAN, data center, and virtualized/SDN environments
- DoD 8570 IAT Level II certification - one or more of the following required:
- CompTIA Security+ CE
- GIAC Security Essentials (GSEC)
- Cisco CyberOps Associate / CCNA Security
- CySA+, CND, or SSCP
- DoD 8570 CSSP Infrastructure Support certification - must be obtained prior to start date:
- Certified Ethical Hacker (CEH)
- CompTIA CySA+, CND, or Cloud+
- GIAC GICSP or SSCP
- CHFI or CFR
- Active Top Secret / SCI clearance with a current Counterintelligence (CI) Polygraph - required at time of hire; no exceptions
- HS diploma or GED and 7+ years of experience with supporting IT projects and activities, Associate's degree and 5+ years of experience with supporting IT projects and activities, or Bachelor's degree and 3+ years of experience with supporting IT projects and activities
Preferred Qualifications:- Gigamon Certified Engineer (GCE) or equivalent Gigamon product certification
- Experience supporting DIA, NSA, or other IC agency network operations in a contractor or government role
- Experience with DISA STIG implementation and RMF package development for network devices
- Familiarity with full-packet capture platforms (NetScout, Solera, Moloch/Arkime) integrated with Gigamon feeds
- Linux OS administration experience (RHEL, CentOS) in support of network security tooling
- Experience with SolarWinds NPM/IPAM or similar network management and IP address management platforms
- Experience operating within ICD 503, CNSSI 1253, or DIA-specific cybersecurity policy frameworks
- Familiarity with virtualized network environments including VMware NSX, Hyper-V, or cloud-based visibility tools
- Strong written and verbal communication skills with demonstrated ability to brief technical findings to senior government personnel
- Self-directed work ethic with the ability to manage competing priorities in a high-tempo, mission-critical environment
