Responsibilities

• Design, implement, and maintain a robust and scalable network infrastructure encompassing LAN/WAN technologies, routing protocols, firewalls, load balancers, and network security tools.
• Proactively monitor network performance, uptime, and capacity, identifying and resolving performance bottlenecks and ensuring optimal network health.
• Lead troubleshooting efforts for complex network issues, conducting root cause analysis and implementing permanent solutions.
• Develop and maintain comprehensive network documentation, including diagrams, configurations, and policies.
• Stay abreast of emerging network technologies and trends, evaluating and recommending new solutions to enhance network performance, security, and efficiency.
• Collaborate effectively with other IT teams to ensure seamless integration of network infrastructure with other systems and applications.
• Mentor and guide others to include junior network engineers, fostering their professional growth and development.
• Ability to participate in on-call rotation, providing after-hours support for critical network incidents.

This position is fully on-site M-F in the Baltimore-Metropolitan area.

Qualifications

Required Experience:

• COMSEC background with experience as the primary COMSEC Responsible Officer
• Maintain and operate cryptographic equipment and secure data transfer devices
• Understand and be able to implement AFMAN 17-1302-O
• Experience troubleshooting circuit issues within a DISA environment. Including requesting new circuits
• Previous experience providing engineering and operation services on DoD supported networks
• Familiarity with routing and switching such as MPLS, VPNs, and protocols such as, but not limited to, BGP, Spanning Tree, VLANs, LLDP, and VoIP
• Familiarity with Multicast protocols and emerging network technologies
• Ability to design, implement, and manage Cisco ISE solutions for network access control and identity management
• Develop and enforce network access policies based on user roles, device types, and security requirements
• Ability implementing security policies, rule sets and network segmentation on Palo Alto firewalls to protect enterprise environments
• Ability to perform firewall upgrades, patching, and troubleshooting to ensure firewall availability and functionality
• Experience performing security assessments and audits of systems and applications against DISA Security Technical Implementation Guides (STIGs)
• Ability to implement and configure systems according to STIG requirements for both classified and unclassified environments

Minimum Required Qualifications:

• Education: Associates degree and 10+ years of experience; OR Bachelors degree and 8+ years of experience; OR Masters Degree and 6+ years of experience; OR 3 years with PhD. A degree in one of the following fields is highly desired: Information Technology, Computer Science, Software Engineer, Data Science, or Cybersecurity. However, four (4) years of additional relevant experience or specialized training will be considered in lieu of a Bachelors degree.
• Certifications:
  • Active CCNA Certification (CCNP can be accepted in lieu of CCNA)
  • Active Security+ Certification
• Security Clearance: Active Top Secret clearance with SCI eligibility.

Preferred Qualifications: CCNP Certification.

Target Salary Range$112,000 - $179,000. This represents the typical salary range for this position. Salary is determined by various factors, including but not limited to, the scope and responsibilities of the position, the individuals experience, education, knowledge, skills, and competencies, as well as geographic location and business and contract considerations. Depending on the position, employees may be eligible for overtime, shift differential, and a discretionary bonus in addition to base pay.