Security Architect / Engineer ( TS / SCI Clearance eligible )

ECS   •  

Fairfax, VA

Industry: Business Services


5 - 7 years

Posted 58 days ago

This job is no longer available.

Job Description:

ECS is seeking a Security Architect/Engineer to work as a member of a team managing and maintaining a network enterprise in support of multiple enclaves to support the DoD community. The candidate will provide support to a team developing, maintaining, creating, documenting, and installing network and enterprise infrastructure. The candidate will work on a multi-platform, multi-tenant, hybrid hosted/cloud architecture that requires comprehensive cyber security oversight and management. This is a demanding, high-energy position requiring innovative solutions to network, hardware, and software problems. The candidate will work with a team to install, maintain and design the physical and virtual infrastructure of the enterprise team. The candidate must have strong problem-solving skills.


Develop the Firewall Governance documentation, which provides the overarching guidance, process, and procedures for securely managing firewall operations and configurations, to include revised change management procedures.

Consolidate, refine, simplify, and harden firewall rule sets to provide for increased efficiency and security effectiveness of the implemented rule base.

Research, evaluate, build pilot versions and provide recommended solutions for advanced firewall and network assessment tools.

Implement firewall change requests for rules and configuration changes.

Configure firewalls to meet DISA STIG controls to maintain compliance with customer requirements.

The job is located in Fairfax VA, with some local trips to Ashburn, VA and other locations in the National Capital Region.

Required Skills:

  • Must be a US Citizen
  • Must be eligible to receive a TS/SCI clearance
  • Bachelors and five years-experience
  • In depth knowledge of Information Assurance, Network Engineering, and Systems Engineering
  • Primary focus on next generation firewall architecture design, policies, rule sets, security profiles, VPN connections, and firewall assessments

Desired Skills:

  • Experience with management of multiple FortiGate and Palo Alto firewalls
  • Experience with configuration assessments of FortiGate and Palo Alto firewalls, documentation and execution of opportunities to implement next generation unified threat management (UTM) features
  • Implementation and management of FortiManager