T
Firewall Engineer - MUST HAVE SECRET CLEARANCE OR ABOVE
Salary undisclosed
Apply on
Availability Status
This job is expected to be in high demand and may close soon. We’ll remove this job ad once it's closed.
Original
Simplified
Description:
Description
We are currently seeking a Firewall Engineer in the DC metro area to support Leidos' Digital Modernization organization. This person will be joining the DISA GSM-O program supporting the Joint Service Provider (JSP). The Firewall Engineer is responsible for supporting the Firewall and load balancer Assurance Program (FAP) to ensure Firewall and load balancer security compliance by performing firewall and load balancer automated and manual assessment to deter and prevent exposure to cyber-attacks.
PRIMARY RESPONSIBILITIES:
Support the FAP by utilizing applicable DOD STIGs, NIST, DISA applicable orders, and NSA policy, guidelines, and regulations.
Identify misconfigurations, conflicting rules, security gaps, firewall and load balancer security issues, optimize rule-sets, and enhance the overall security posture and performance of Firewalls and Load Balancers
Oversee and conduct a minimum of two (2) firewall and a minimum of two load balancer assessments every month on JSP and customer devices and generate assessment reports
Develop After Action Reports (AARs)
Provide recommendations for firewall changes to include JRSS firewalls
BASIC QUALIFICATIONS:
BS degree and 8+ years of directly relevant experience (or equivalent combination of education and/or experience - additional years of experience may be considered in lieu of degree)
Must have a minimum DoD Secret security clearance as well as ability to obtain TS/SCI
3+ years of Firewall experience within the DOD environment
Must have a certification that satisfies DoD-8570 IAT Level 2 requirements upon start
Must have a Juniper, Cisco, Palo Alto certification upon start
Demonstrated knowledge of Implementation of Perimeter and Internal Firewalls (both physical and virtual contexts)
Demonstrated advanced experience in managing standard baseline configuration across numerous firewalls
Demonstrated advanced experience in evaluating rules to ensure maximum security while minimizing redundancy in rules
Skills:
Firewall, Security, Cisco routers, Network security, cisco asa, asa firewall, Paloalto, Wan
Top Skills Details:
Firewall,Security,Cisco routers,Network security,cisco asa,asa firewall,Paloalto,Wan
Additional Skills & Qualifications:
Key Responsibilities:
1. Security Compliance:
Ensure that Cisco ASA Firewall and load balancer configurations comply with organizational security policies and industry standards.
2. Assessment and Evaluation:
Conduct regular automated and manual assessments of firewall and load balancer configurations to identify vulnerabilities and misconfigurations.
Utilize tools and scripts to facilitate assessments, ensuring comprehensive coverage of potential security risks.
3. Incident Response:
Collaborate with incident response teams to investigate and remediate security incidents related to firewalls and load balancers.
Analyze logs and alerts to identify potential threats or breaches.
4. Policy Development:
Assist in developing and maintaining firewall and load balancer policies, including access control lists (ACLs) and security rules.
Ensure that policies are regularly reviewed and updated in response to changing threat landscapes.
5. Monitoring and Reporting:
Monitor firewall and load balancer performance and security alerts, generating reports for management on compliance status and security posture.
Identify trends and patterns in network traffic that may indicate potential security threats.
6. Collaboration:
Work closely with network engineers, security analysts, and IT operations teams to ensure seamless integration of firewalls and load balancers within the network architecture.
Provide expertise during security audits and risk assessments.
7. Continuous Improvement:
Stay updated on emerging threats, vulnerabilities, and best practices related to firewall and load balancer technologies.
Recommend and implement enhancements to the FAP based on evolving security needs.
8. Training and Awareness:
Provide training and guidance to team members and other stakeholders on firewall and load balancer security practices.
About TEKsystems:
We're partners in transformation. We help clients activate ideas and solutions to take advantage of a new world of opportunity. We are a team of 80,000 strong, working with over 6,000 clients, including 80% of the Fortune 500, across North America, Europe and Asia. As an industry leader in Full-Stack Technology Services, Talent Services, and real-world application, we work with progressive leaders to drive change. That's the power of true partnership. TEKsystems is an Allegis Group company.
The company is an equal opportunity employer and will consider all applications without regards to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law.
Description
We are currently seeking a Firewall Engineer in the DC metro area to support Leidos' Digital Modernization organization. This person will be joining the DISA GSM-O program supporting the Joint Service Provider (JSP). The Firewall Engineer is responsible for supporting the Firewall and load balancer Assurance Program (FAP) to ensure Firewall and load balancer security compliance by performing firewall and load balancer automated and manual assessment to deter and prevent exposure to cyber-attacks.
PRIMARY RESPONSIBILITIES:
Support the FAP by utilizing applicable DOD STIGs, NIST, DISA applicable orders, and NSA policy, guidelines, and regulations.
Identify misconfigurations, conflicting rules, security gaps, firewall and load balancer security issues, optimize rule-sets, and enhance the overall security posture and performance of Firewalls and Load Balancers
Oversee and conduct a minimum of two (2) firewall and a minimum of two load balancer assessments every month on JSP and customer devices and generate assessment reports
Develop After Action Reports (AARs)
Provide recommendations for firewall changes to include JRSS firewalls
BASIC QUALIFICATIONS:
BS degree and 8+ years of directly relevant experience (or equivalent combination of education and/or experience - additional years of experience may be considered in lieu of degree)
Must have a minimum DoD Secret security clearance as well as ability to obtain TS/SCI
3+ years of Firewall experience within the DOD environment
Must have a certification that satisfies DoD-8570 IAT Level 2 requirements upon start
Must have a Juniper, Cisco, Palo Alto certification upon start
Demonstrated knowledge of Implementation of Perimeter and Internal Firewalls (both physical and virtual contexts)
Demonstrated advanced experience in managing standard baseline configuration across numerous firewalls
Demonstrated advanced experience in evaluating rules to ensure maximum security while minimizing redundancy in rules
Skills:
Firewall, Security, Cisco routers, Network security, cisco asa, asa firewall, Paloalto, Wan
Top Skills Details:
Firewall,Security,Cisco routers,Network security,cisco asa,asa firewall,Paloalto,Wan
Additional Skills & Qualifications:
Key Responsibilities:
1. Security Compliance:
Ensure that Cisco ASA Firewall and load balancer configurations comply with organizational security policies and industry standards.
2. Assessment and Evaluation:
Conduct regular automated and manual assessments of firewall and load balancer configurations to identify vulnerabilities and misconfigurations.
Utilize tools and scripts to facilitate assessments, ensuring comprehensive coverage of potential security risks.
3. Incident Response:
Collaborate with incident response teams to investigate and remediate security incidents related to firewalls and load balancers.
Analyze logs and alerts to identify potential threats or breaches.
4. Policy Development:
Assist in developing and maintaining firewall and load balancer policies, including access control lists (ACLs) and security rules.
Ensure that policies are regularly reviewed and updated in response to changing threat landscapes.
5. Monitoring and Reporting:
Monitor firewall and load balancer performance and security alerts, generating reports for management on compliance status and security posture.
Identify trends and patterns in network traffic that may indicate potential security threats.
6. Collaboration:
Work closely with network engineers, security analysts, and IT operations teams to ensure seamless integration of firewalls and load balancers within the network architecture.
Provide expertise during security audits and risk assessments.
7. Continuous Improvement:
Stay updated on emerging threats, vulnerabilities, and best practices related to firewall and load balancer technologies.
Recommend and implement enhancements to the FAP based on evolving security needs.
8. Training and Awareness:
Provide training and guidance to team members and other stakeholders on firewall and load balancer security practices.
- This position requires an active DoD Clearance (Secret, Top Secret, Top Secret/SCI) or the ability to be obtain an (Interim Secret, Interim Top Secret)
- Because an active or interim DoD clearance is required, U.S. Citizenship is required
About TEKsystems:
We're partners in transformation. We help clients activate ideas and solutions to take advantage of a new world of opportunity. We are a team of 80,000 strong, working with over 6,000 clients, including 80% of the Fortune 500, across North America, Europe and Asia. As an industry leader in Full-Stack Technology Services, Talent Services, and real-world application, we work with progressive leaders to drive change. That's the power of true partnership. TEKsystems is an Allegis Group company.
The company is an equal opportunity employer and will consider all applications without regards to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law.
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.
Report this job Similar Jobs
