Summary

The Infrastructure Security Engineer is responsible for protecting the organization's core technology environment by designing, implementing, and maintaining security controls across networks, systems, and cloud platforms. This role ensures the confidentiality, integrity, and availability of enterprise infrastructure through proactive risk identification, secure architecture design, continuous monitoring, and rapid response to security events. The engineer works closely with IT, network, and system teams to embed security into infrastructure operations, strengthen defenses, and support mission critical systems. This position plays a key role in safeguarding organizational assets, improving resilience, and ensuring compliance with Marine Corps, DoD, and industry security standards.

Firewall Administration - Architect, deploy, and maintain next generation firewalls; create and optimize security policies; manage segmentation, VPN configurations, and threat prevention services; monitor logs for anomalies and policy violations.

Zero Trust Architecture - Implement and maintain Zero Trust principles across identity, network, and application layers; enforce least privilege access; support continuous authentication and authorization controls.

Endpoint Protection & EDR - Manage enterprise anti-virus and endpoint detection and response platforms; tune detection rules; investigate alerts; coordinate containment and remediation of endpoint threats.

Tokenization & Data Protection - Support tokenization platforms to secure sensitive data; ensure proper integration with applications; maintain key management processes; enforce data handling and privacy requirements.

Web Proxies & WAF - Administer secure web gateways, proxy services, and web application firewalls; configure filtering policies; monitor for malicious traffic; protect web applications from internal & external threats.

NTP Infrastructure - Maintain secure and reliable Network Time Protocol servers; ensure accurate time synchronization across systems; implement hardening and monitoring to prevent tampering or drift.

RADIUS Authentication Services - Manage RADIUS servers for network authentication; integrate with identity providers; maintain policies for secure access to network devices and wireless infrastructure.

Security Monitoring & Incident Response - Analyze logs and alerts across all security platforms; collaborate with SOC teams; support investigations, root cause analysis, and corrective actions.

Documentation & Compliance - Maintain detailed documentation of configurations, standards, and procedures; support audits; ensure alignment with regulatory and industry security frameworks.

Network Essentials - Apply core networking fundamentals to ensure secure, reliable, and efficient communication across the enterprise. This includes implementing foundational concepts such as IP addressing, routing, switching, DNS, DHCP, VLANs, and transport protocols to design, operate, and troubleshoot network environments. These principles are used to validate traffic flows and enforce proper segmentation across WAN, LAN, and WLAN infrastructures.

Continuous Improvement - Evaluate emerging threats and technologies; recommend enhancements to strengthen the organization's security posture.

Provides World Class Customer Service with an emphasis on courtesy. Assists customers and communicates positively in a friendly manner. Takes action to solve problems quickly. Alerts the higher-level supervisor, or proper point of contact for help when problems arise. Adheres to safety regulations and standards. Uses any required safety equipment and observes safe work procedures. Promptly reports any observed workplace hazards, and any injury, occupational illness, and/or property damage resulting from workplace mishaps to the immediate supervisor. Adheres to established standards of actively supporting the principles of the EEO program and prevention of sexual harassment.

Performs other related duties as assigned.

This is a mixed position where the incumbent must be able to lift and carry objects up to 45 lbs. independently and objects over 45 lbs. with assistance.

Requirements

Conditions of employment

• See Duties and Qualifications

EVALUATIONS:

Qualifications

Bachelor's degree in information technology or a related field appropriate to the work of position with a minimum of three years of hands on experience securing enterprise environments, OR an appropriate combination of education and experience that demonstrates possession of knowledge and skill equivalent to that gained in the above, OR appropriate experience that demonstrates that the applicant has acquired the knowledge, skills, and abilities equivalent to that gained in the above.

Candidates should have a strong foundation in network and systems security. They must have demonstrated proven expertise in the key responsibilities outlined above, including hardening both Windows and Linux operating systems. Experience with security frameworks such as NIST, CIS, or ISO 27001 is required, as is conducting vulnerability assessments, performing log analysis, and contributing to incident response activities. Candidates should be able to interpret security findings and implement effective remediation measures.

Strong communication skills, analytical thinking, and the ability to excel in fast paced, cross functional environments are also critical for success in this role.

Industry certifications such as Security+, CySA+, CCNA, CEH, CISSP, or Security X (CASP) are highly preferred. As an authorized and privileged user of Department of Defense Information Systems must possess or receive Information Assurance awareness by completing the Security + Certification as a condition of access within six months of employment and thereafter must complete annual Information Assurance awareness training.

Benefits

Help

A career with the U.S. government provides employees with a comprehensive benefits package. As a federal employee, you and your family will have access to a range of benefits that are designed to make your federal career very rewarding. Opens in a new windowLearn more about federal benefits.

The Federal government offers a number of exceptional benefits to its employees. Benefits you get to enjoy while working at MCCS include but are not limited to:
• Stability of Federal Civilian Service
• People with passion for doing work that matters
• Quality of Work Life Balance
• Competitive Pay
• Comprehensive Benefit Packages
• Marine Corps Exchange and Base Facility Privileges

Review our benefits

Eligibility for benefits depends on the type of position you hold and whether your position is full-time, part-time or intermittent. Contact the hiring agency for more information on the specific benefits offered.