Cyber Security Engineer (Firewall)
Previous Job
Cyber Security Engineer (Firewall)
Ref No.: 18-00686
Location: Springfield, Virginia
Must be a US Citizen who currently possesses a Secret Clearance with SSBI or Top Secret Clearance.
  • Looking for junior or senior engineers at this time
  • typically, configuring by command line is a hard requirement
  • knowing difference between physical firewalls and contextual firewalls
  • being able to configure RA VPNs, and having experience with ASA and the Palos
  • why are firewalls different than ACLs
  • what is difference from Layer 3 and Layer 7 inspection
The client is currently seeking several Cyber Security Engineers with firewall expertise! In this role, you will be responsible for all firewall aspects of a site migration to DISA's Joint Regional Security Stacks (JRSS)

In this Role You Will:
  • Orchestrate the project end-to-end from a Firewall Security Prospective; Analyzes Firewall Security discovery information and determines requirements for the migration
  • Provide Firewall gap analysis at the start of the project; Directs team members and reviews results.
  • Deconflict inconsistencies between engineering implementation plans (EIPs ) and directs changes to EIP author
  • Maintain current network diagram for COI/Base (end-to-end)
  • Control all variables and allocations e.g. IP Addresses, Firewall configurations, VRFs, shims, process IDs, etc.
  • Identify and communicate firewall security requirements to Tools and CND teams. This includes acceptable Deadlines tracked by PM
  • Track task status against ASI schedule and adjusts implementations as required.
•Senior Positions: Typically requires BS degree and 12 - 15 years of prior relevant experience or Masters with 10 - 13 years of prior relevant experience.
• Entry Level Positions: Typically requires BS and 4 - 8 years of prior relevant experience or Masters with 2 - 6 years of prior relevant experience.

Considered an emerging authority on the following Devices:
•CISCO ASA Firewalls
•Palo Alto Firewalls
•F5 load balancers
•Cisco MPLS.(Multi Protocol Label Switching)
•BGP routing. (Border Gateway Protocol)

Required Experience & Qualifications:
•In-depth protocol analysis, with tools such as tcpdump.
•Experience in leading large engineering projects.
•Leadership skills in organizing a team of engineers
•DoD 8570 IAT2 certification
•SECRET Security clearance

Additional desired experience:
•F5 load balancers
•Palo Alto Firewalls
•Cisco ASA Firewalls
•Standup of Remote access Virtual Private Networks(RAVPN)
•Military/DoD security architectures
•JRSS familiarity
•CISCO or Juniper Certifications