Network Engineer SME (TS/SCI with Poly Required)

GCI, Inc.

$90K — $130K *
Information Technology
Less than 5 years of experience
Job Overview by Ladders

Qualifications

  • 5-7 years of experience in network engineering with a focus on security aspects.
  • Hands-on experience with firewall administration, particularly Palo Alto and Cisco Firepower devices.
  • Proficient in configuring VPNs, specifically OpenVPN and IPsec.
  • Demonstrated ability to manage endpoint security in VDI environments.
  • Certifications such as CCNP Security or PCNSE are highly regarded.
  • Experience in implementing Zero Trust security models and network segmentation strategies.
  • Must be a US Citizen with an active/current TS/SCI with Polygraph clearance.

Responsibilities

  • Manage VDI security and performance, including firewall policies and network segmentation.
  • Ensure compliance and security across network and endpoint systems.
  • Administer and optimize firewall configurations for both Palo Alto and Cisco devices.
  • Configure and manage secure VPN access in a VDI environment.
  • Implement and oversee network segmentation using VLANs and Access Control Lists.
  • Conduct endpoint device lifecycle management, including provisioning and patching.
  • Develop automation scripts for system management and policy enforcement.

Benefits

  • Comprehensive health, dental, and vision insurance.
  • Retirement savings plan with company matching.
  • Professional development opportunities and training programs.
  • Flexible working hours and potential remote work options.
Full Job Description
As a Network Engineer, a typical day will include the following duties: Work Requirements: • Manage security and performance of virtual desktop infrastructure (VDI), to include networking components, administering firewall policies, VPNs, network segmentation, and endpoint policy enforcement. • Ensure network and endpoint systems are secure, efficient, and compliant. • Manage Palo Alto PA-3430, Cisco Firepower 2130s, and Nexus switches and administer and optimize firewall and network switch configurations. • Configure OpenVPN/IPsec-based VPNs for secure remote access in a VDI environment. • Segment networks using VLANs and Access Control Lists in a Zero Trust model. • Implement network segmentation strategies to enhance security and minimize the attack surface. • Oversee endpoint provisioning, patching, and hardening via ManageEngine; to include managing the lifecycle of endpoint devices, provisioning, patching, and hardening to ensure they are secure and up-to-date. • Administer Windows 11, Linux, and BlueStacks. • Manage and support endpoint operating systems and Android emulators to ensure they meet performance and security standards. • Enforce GPOs and AD-integrated access controls. • Implement and manage Group Policy Objects and Active Directory integrated access controls to enforce security policies and user permissions. • Develop and deploy automation scripts to streamline policy enforcement and system management tasks. Required Skills: • Demonstrated hands on experience with firewall administration. • Demonstrated experience with Network Access Control. • Demonstrated experience with Access Controls. • Demonstrated experience with VPN tunneling. • Demonstrated experience with endpoint security and mobile emulation environments. • Demonstrated experience in securing and managing endpoint devices, including mobile emulation environments such as BlueStacks. Desired Skills: • Demonstrated experience collaborating with cybersecurity and VDI teams, customer or otherwise. • Demonstrated experience providing training and support. • Demonstrated experience developing and maintaining network and endpoint security policies and procedures. • Demonstrated experience conducting regular security assessments. • Demonstrated experience implementing Zero Trust security model. • Demonstrated experience engaging in continuous improvement related to identifying opportunities for enhancing network and endpoint security measures and implement innovative solutions to improve overall security posture • Certifications: CCNP Security, PCNSE, ITIL v4, Microsoft MCP, or CompTIA Linux+ A candidate must be a US Citizen and requires an active/current TS/SCI with Polygraph clearance.

Similar Jobs

More Jobs at GCI, Inc.

More Information Technology Jobs

Find similar Network Engineer SME (TS/SCI with Poly Required) jobs: