4256 Senior Network Security Engineer

We are seeking a highly skilled and experienced Sr. Network Security Engineer to support a federal law enforcement customer in Washington, D.C. The ideal candidate will provide hands-on engineering, administration, and security for the customer's network infrastructure.

GENERAL DUTIES:

• Engineer, secure, and administer enterprise network infrastructures, including routers, switches, firewalls, VPNs, and IDS/IPS solutions.
• Architect and deploy network solutions using a variety of technologies (e.g., Cisco, Palo Alto, Linksy, Dell).
• Design, develop and document secure network architectures; integrate security throughout the system and network lifecycle, aligning with compliance requirements and organizational mission needs.
• Perform network administration duties: configuration updates, firmware management, access reviews, routing/switching optimization, and log/audit management.
• Conduct vulnerability scanning, remediation, patching, and hardening of network devices.
• Troubleshoot complex network and security issues; provide incident response and recovery support.
• Ensure technical compliance with applicable security frameworks, standards, and regulations (e.g., DISA SITGs, NIST 800-53, RMF).
• Collaborate with ISSOs, Assessors, System Owners, and other stakeholders to implement security controls.
• Support security assessments, audits, and accreditation/authorization (ATO) activities.
• Document security configurations, engineering solutions, and compliance evidence.
• Troubleshoot and resolve security-related technical issues in a timely manner.
• Promoting information security awareness across the program, ensuring security controls and processes are implemented.
• Maintain awareness of new technologies and trends and bring solutions to the client.
• Able to work independently with minimal guidance.
• Other related duties assigned by the program manager and government leadership.

• 8+ years of experience in network engineering, administration, and security.
• 8+ years of experience in control implementation and secure system engineering or design.
• Excellent communication skills.
• Technical Expertise:

• Strong hands-on experience with Cisco routing and switching.
• Expertise in configuring and managing Palo Alto firewalls.
• Experience with other networking technologies such as Linksys, Dell etc.
• Strong scripting skills for automation (e.g., Python, PowerShell).
• Knowledge of network protocols, packet analysis, and advanced persistent threats (APTs).

• Able to deliver and present security compliance to a wide range of audiences (i.e., system owners, division leadership).
• Strong desire to learn, grow and is highly motivated.
• Certifications: Professional network and security certifications (e.g., CCNP Security, PCNSA, PCNSE, CISSP) are highly preferred.

DESIRED QUALIFICATIONS:

• Experience configuring and operating enterprise storage area networks (SAN).
• Understanding of cloud systems and security tools.
• Proficiency with security tools such as Splunk, Tenable, CrowdStrike, Panorama.
• Education: Bachelor's degree in Engineering, Computer Science, or Information Systems.