TIC Systems Engineer

• Design, deploy, and manage boundary protection solutions including firewalls, web proxies, intrusion prevention systems (IPS), network access control (NAC), and VPN gateways.
• Support the implementation and enforcement of Trusted Internet Connections (TIC) 3.0 security capabilities.
• Design, deploy, and manage Cloudflare services, including Web Application Firewall (WAF), DDoS Protection, CDN, and DNS.
• Design, configure, and maintain Palo Alto firewalls and configure and optimize Panorama for centralized firewall management and policy deployment.
• Ensure secure connectivity and segmentation between internal networks, external partners, and cloud environments.
• Maintain boundary protection documentation including diagrams and system configurations.
• Ensure secure and efficient operation of systems that support boundary protection, threat detection, and telemetry collection.
• Ensure the smooth operation of F5 load balancing solutions to support the enterprise network, multi-cloud, and mobility solutions.
• Configure, and manage F5 load balancing solutions, including Local Traffic Manager (LTM) and Global Traffic Manager (GTM), to support enterprise network, multi-cloud, and mobility solutions.
• Develop load balancing policies, monitor traffic flows, and fine-tune load balancing algorithms to improve application performance and availability.
• Migrate existing stakeholder connections to new TIC 3.0 compliant environments.
• Troubleshoot and resolve issues related to load balancing, including analyzing traffic patterns, identifying bottlenecks, and working with vendors to resolve complex issues.
• Work with IT and business stakeholders to understand application requirements and develop load balancing solutions that meet those requirements.
• Develop and implement balancing security policies and procedures to prevent unauthorized access to the network and ensure compliance with regulatory requirements.
• Design, plan, and establish cloud networks using various cloud providers like AWS, Azure, and Google Cloud.
• Design network architectures considering high availability, fault tolerance, and scalability.
• Configure Virtual Private Cloud (VPC), subnets, transit gateways, VPN connections, and other cloud network components.
• Analyze cloud network traffic patterns and optimize for performance.
• Collaborate with other teams to ensure applications are using network resources efficiently.
• Implement Content Delivery Networks (CDNs), load balancers, and other strategies to optimize user access.
• Install, maintain, and evaluate network systems and communications and troubleshoots the most complex network issues.
• Conduct various researches and analysis regarding new technology, network traffic, potential security risk, etc.
• Lead the network architecture design and optimization. Must have extensive knowledge of Internet, computer, routers, switches, firewall, etc.
• Work on advanced, complex technical projects or business issues requiring state of the art technical or industry knowledge.
• May provide a leadership role for the work group through knowledge in the area of specialization.

We are seeking an experienced Trusted Internet Connections (TIC) System Engineer to design, implement, and maintain secure network perimeter defenses for our customer's network infrastructure. This role requires experience supporting TIC 3.0 and Zero Trust principles and focuses on protecting network boundaries against unauthorized access, data exfiltration, and external threats through effective configuration, monitoring, and management of boundary security systems and protocols., * Bachelor's degree in computer science, Information Technology, or related field or equivelant experience.

• Minimum of 5 years of experience in designing, deploying, and managing F5 load balancing solutions in a large-scale IT environment.
• Direct experience implementing and supporting Trusted Internet Connections (TIC) 3.0 and Zero Trust Architecture.
• Technical expertise in F5 load balancing technologies, including LTM, GTM, and BIG-IQ.
• Knowledge of F5 security technologies, including Advanced Web Application Firewall (ASM) and Access Policy Manager (APM).
• Proficient in network technologies, including routing protocols, switching, firewalls, and VPN technologies.
• Experience in designing and implementing load balancing solutions for multi-cloud and mobile environments.
• Good understanding of major cloud computing platforms such as AWS, Azure, and Google Cloud.
• Strong analytical and problem-solving skills, self-motivated, and proactive.
• Excellent verbal and written communication skills, with the ability to interact effectively with technical and non-technical stakeholders.
• Must be clearable for a US Government Clearance

*Must be eligible to obtain a Department of Homeland Security EOD clearance ( Requirements 1. US Citizenship, 2. Favorable Background Investigation), * DHS EOD - 1st priority

• Any DHS badge + DoD Top Secret or Secret - 2nd choice
• DoD Secret or Top Secret + willingness to get EOD clearance - 3rd choice (it can take 45 days to obtain EOD clearance - work can only begin once the clearance is fully adjudicated)

About Sev1Tech LLC Founded in 2010 and recently acquired by ERT in early 2026, Sev1Tech, an ERT Company provides IT, engineering, and program management solutions delivery to critical missions across Federal and Commercial Clients. With its acquisition by ERT, Sev1Tech expanded its ability to offer secure, mission-aligned digital solutions to support modernization, resilience and operational effectiveness for government customers operating in highly regulated mission environments. ERT and Sev1Tech together become a fully diversified engineering and federal technology solutions firm with broad reach into space, civilian, and defense markets.