Company:
Byte Systems LLC
Location: Reston
Closing Date: 20/11/2024
Hours: Full Time
Type: Permanent
Job Requirements / Description
Candidate MUST possess a TS/SCI clearance with Intel Polygraph
Job Overview:
The Expert Network Security Engineer is responsible for the overall administration, maintenance, and enforcement of network security across the organization. In this role, you will manage firewalls, security policies, network access controls, and incident response, ensuring the organization s network is secure from external and internal threats. You will also be responsible for optimizing security systems, implementing new technologies, and supporting compliance with industry security standards.
Key Responsibilities:
" Firewall & Security System Management: Administer and maintain enterprise firewalls, VPNs, IDS/IPS, and other security appliances (e.g., Palo Alto, Cisco ASA, Fortinet). Regularly update and optimize firewall rules and configurations.
" Network Security Monitoring: Monitor network traffic and systems using tools such as Splunk, SolarWinds, and Wireshark to detect and respond to suspicious activities, vulnerabilities, or potential security breaches.
" Incident Response: Serve as a primary responder for network security incidents, leading investigations, mitigation efforts, and root cause analysis. Document and communicate findings and lessons learned.
" Access Control Management: Manage network access controls, including implementing and enforcing policies for MFA, VPN, and secure user access to sensitive systems. Oversee privileged access management and least-privilege principles.
" Security Patching & Updates: Ensure network security devices and systems are up to date with the latest patches, firmware, and security updates. Perform regular vulnerability scans and remediation.
" Security Policy Development & Enforcement: Develop and enforce network security policies and procedures to protect sensitive information and ensure compliance with relevant regulations (e.g., PCI-DSS, HIPAA, ISO 27001, NIST).
" Network Hardening & Penetration Testing: Perform network hardening activities and collaborate with internal/external teams to conduct regular penetration testing, vulnerability assessments, and security audits.
" Compliance & Reporting: Ensure network security controls meet regulatory and compliance requirements. Prepare reports for internal audits and external regulatory agencies on security posture and incident handling.
" Automation & Optimization: Automate routine security tasks and workflows to increase efficiency and reduce manual effort using scripting languages (e.g., Python, PowerShell).
" Security Awareness & Training: Collaborate with HR and IT teams to provide ongoing security training and awareness programs for employees. Promote security best practices across the organization.
" Stay Current on Emerging Threats: Keep up to date with evolving security threats, vulnerabilities, and security technologies. Regularly evaluate and recommend new solutions to strengthen network security.
Qualifications:
" Education: Bachelor's degree in Information Technology, Cybersecurity, Computer Science, or related field, or equivalent experience.
" Experience: 7+ years of experience in network administration, with at least 3 years focused on network security.
" Technical Skills:
o Expertise in managing and configuring enterprise security appliances (e.g., Palo Alto, Fortinet, Cisco ASA).
o Advanced knowledge of network protocols (TCP/IP, DNS, HTTPS) and security practices such as network segmentation, VPN, and IDS/IPS.
o Proficiency in SIEM tools (e.g., Splunk, QRadar), monitoring systems, and network traffic analysis.
o Hands-on experience with firewalls, load balancers, routers, and switches.
o Strong knowledge of vulnerability management and penetration testing tools (e.g., Nessus, OpenVAS).
o Familiarity with Zero Trust models and secure access technologies (e.g., MFA, SASE).
o Scripting knowledge (e.g., Python, Bash, PowerShell) for automation and system integration.
o In-depth understanding of network access control and identity and access management (IAM) best practices.
o Strong grasp of security compliance frameworks (e.g., ISO 27001, NIST, PCI-DSS, GDPR).
" Soft Skills:
o Strong analytical and problem-solving abilities.
o Excellent communication skills, with the ability to explain technical concepts to non-technical audiences.
o Leadership skills to mentor junior staff and collaborate with cross-functional teams.
o Strong organizational skills, with the ability to handle multiple tasks and projects simultaneously.
Preferred Qualifications:
" Relevant certifications such as CISSP, CISA, CEH, CCNA Security, Fortinet NSE, or Palo Alto Networks Certified Network Security Engineer (PCNSE).
" Experience working in highly regulated industries such as finance, healthcare, or government.
" Proven track record in handling and mitigating complex network security threats.
MUST be a US Citizen with a U.S. Government clearance - Intel with Polygraph
NOTE: Must have an active TS-SCI with poly. No sponsorships or upgrades are available. Submissions without this requirement will not be considered. H1-B holders will not be considered.
Benefits:
Up to 5 week paid vacation + 10 gov't holidays
Up to 15% contribution to 401k
LTD, STD disability and life insurance
Paid health, dental, and vision for employee and family.
$5000 annual training expense reimbursement
Computer purchase plan
Job Overview:
The Expert Network Security Engineer is responsible for the overall administration, maintenance, and enforcement of network security across the organization. In this role, you will manage firewalls, security policies, network access controls, and incident response, ensuring the organization s network is secure from external and internal threats. You will also be responsible for optimizing security systems, implementing new technologies, and supporting compliance with industry security standards.
Key Responsibilities:
" Firewall & Security System Management: Administer and maintain enterprise firewalls, VPNs, IDS/IPS, and other security appliances (e.g., Palo Alto, Cisco ASA, Fortinet). Regularly update and optimize firewall rules and configurations.
" Network Security Monitoring: Monitor network traffic and systems using tools such as Splunk, SolarWinds, and Wireshark to detect and respond to suspicious activities, vulnerabilities, or potential security breaches.
" Incident Response: Serve as a primary responder for network security incidents, leading investigations, mitigation efforts, and root cause analysis. Document and communicate findings and lessons learned.
" Access Control Management: Manage network access controls, including implementing and enforcing policies for MFA, VPN, and secure user access to sensitive systems. Oversee privileged access management and least-privilege principles.
" Security Patching & Updates: Ensure network security devices and systems are up to date with the latest patches, firmware, and security updates. Perform regular vulnerability scans and remediation.
" Security Policy Development & Enforcement: Develop and enforce network security policies and procedures to protect sensitive information and ensure compliance with relevant regulations (e.g., PCI-DSS, HIPAA, ISO 27001, NIST).
" Network Hardening & Penetration Testing: Perform network hardening activities and collaborate with internal/external teams to conduct regular penetration testing, vulnerability assessments, and security audits.
" Compliance & Reporting: Ensure network security controls meet regulatory and compliance requirements. Prepare reports for internal audits and external regulatory agencies on security posture and incident handling.
" Automation & Optimization: Automate routine security tasks and workflows to increase efficiency and reduce manual effort using scripting languages (e.g., Python, PowerShell).
" Security Awareness & Training: Collaborate with HR and IT teams to provide ongoing security training and awareness programs for employees. Promote security best practices across the organization.
" Stay Current on Emerging Threats: Keep up to date with evolving security threats, vulnerabilities, and security technologies. Regularly evaluate and recommend new solutions to strengthen network security.
Qualifications:
" Education: Bachelor's degree in Information Technology, Cybersecurity, Computer Science, or related field, or equivalent experience.
" Experience: 7+ years of experience in network administration, with at least 3 years focused on network security.
" Technical Skills:
o Expertise in managing and configuring enterprise security appliances (e.g., Palo Alto, Fortinet, Cisco ASA).
o Advanced knowledge of network protocols (TCP/IP, DNS, HTTPS) and security practices such as network segmentation, VPN, and IDS/IPS.
o Proficiency in SIEM tools (e.g., Splunk, QRadar), monitoring systems, and network traffic analysis.
o Hands-on experience with firewalls, load balancers, routers, and switches.
o Strong knowledge of vulnerability management and penetration testing tools (e.g., Nessus, OpenVAS).
o Familiarity with Zero Trust models and secure access technologies (e.g., MFA, SASE).
o Scripting knowledge (e.g., Python, Bash, PowerShell) for automation and system integration.
o In-depth understanding of network access control and identity and access management (IAM) best practices.
o Strong grasp of security compliance frameworks (e.g., ISO 27001, NIST, PCI-DSS, GDPR).
" Soft Skills:
o Strong analytical and problem-solving abilities.
o Excellent communication skills, with the ability to explain technical concepts to non-technical audiences.
o Leadership skills to mentor junior staff and collaborate with cross-functional teams.
o Strong organizational skills, with the ability to handle multiple tasks and projects simultaneously.
Preferred Qualifications:
" Relevant certifications such as CISSP, CISA, CEH, CCNA Security, Fortinet NSE, or Palo Alto Networks Certified Network Security Engineer (PCNSE).
" Experience working in highly regulated industries such as finance, healthcare, or government.
" Proven track record in handling and mitigating complex network security threats.
MUST be a US Citizen with a U.S. Government clearance - Intel with Polygraph
NOTE: Must have an active TS-SCI with poly. No sponsorships or upgrades are available. Submissions without this requirement will not be considered. H1-B holders will not be considered.
Benefits:
Up to 5 week paid vacation + 10 gov't holidays
Up to 15% contribution to 401k
LTD, STD disability and life insurance
Paid health, dental, and vision for employee and family.
$5000 annual training expense reimbursement
Computer purchase plan
Share this job
Useful Links