Must be a US Citizen who currently possesses a Secret Clearance.
Statement of Work:
This position is for a Firewall Engineer to provide support for client's contract with USAID. Location is Arlington, VA. The resource must be onsite.
Responsibilities include installing, operating, and maintaining portions of the security infrastructure including firewalls and security applications within an enterprise environment supporting client's Federal Infrastructure Managed Services team. The position is responsible for completing day-to-day management and operations of assigned security solutions and platforms to help detect security vulnerabilities and events which pose risk to the enterprise; performing platform lifecycle management activities (patching, upgrades, policy configuration, etc.) for assigned platforms and/or tools; continuously assessing existing processes and procedures for improvement opportunities.
Required skills/Level of Experience:
A minimum of 4-6 years of combined IT and security work experience with a broad exposure to infrastructure/network and multi-platform environments. Requires knowledge of security issues, techniques, and implications across all existing computer platforms with specific focus on Palo Alto and Juniper. Understanding of information security frameworks, incident management/response, security operations, and application security best practices.
Nice to have skills:
?4 -6 years of experience in security engineering related to vulnerability management, intrusion prevention, data protection, monitoring, analytical and correlation tools.
?Minimum 2 ? 3 years of experience with Cisco ASA, Palo Alto, Juniper Netscreen, Riverbed knowledge/experience is preferred.
?Can demonstrate a mature understanding of networking best practices.
?2 years of experience working the Linux and Windows operating systems.
?2 years of experience working with PERL, PHP, Python and/or other scripting languages.
?Knowledge of industry security tool suites and capabilities.
?BS of Computer Science, Engineering, Information Technology, cyber-security or equivalent.
?Create and maintain network documentation as it relates to the standardized network topology, equipment, operational support and configuration.
?Trained or certified in CISCO ASA, Palo Alto installation, configuration and maintenance.
?CISSP certified (must be capable of obtaining a CISSP certification within 6 months) or CISM certified.
Primary job duties
Job Duty 1 - Operate and maintain security-related applications and tools
Job Duty 2 - Develop procedures and documentation related to the operation and maintenance of applications and tools
Job Duty 3 - Implement firewall/IDS rules as necessary
Job Duty 4 - Perform analysis of network traffic and security events
Job Duty 5 ? Install and configure security-related applications, servers and appliances and complete documentation
CISM / CISSP
Excellent verbal and written communication skills
CRISC / CISA / CEH