Supervise and lead a team of network and network security engineers supporting engineering design and migration efforts for the program.
Organize and direct engineering staff to meet objectives for the secure design of the network architecture and automation/management tools supporting the Army Global Unified Network (AGUN) program.
Partner with key stakeholders and technical experts to perform legacy environment discovery, assessing current capabilities, configurations, and requirements to provide network firewall migration support for the Army global network.
Analyze and understand complex firewall security zones and policies with the ability to transform policies between multiple vendor firewall devices while meeting mission requirements.
Analyze and understand secure SD-WAN and MPLS connectivity inclusive of underlay, overlay, and transport design that supports performance, quality of service, security, and mission requirements.
Support secure access solutions leveraging zero trust network access (ZTNA) including support for creation of new access policies and maintenance of existing policies.
Integrate capacity planning and scaling of network and security stack environments into the overall operational support processes and staff.
Collect, investigate, and identify network resource management strategies and techniques to meet capacity and performance requirements.
Work with information assurance teams and the AGUN cybersecurity service provider (CSSP) to ensure compliance to DoD standards to assist with maintenance of the network security posture.
Document designs, diagrams, drawings, and technical narratives using wiki technologies and common diagram and drawing tools.

Requirements

Active DoD Secret Clearance (required at time of hire).
Minimum of a Bachelor’s degree with 12+ years' experience or Master's degree with 10+ years of experience (additional years of directly applicable experience may be accepted in lieu of a degree).
Require active DoD IAT Level II (i.e. Security+) certification or equivalent prior to start.
Experience leading network and/or network security engineering teams.
Demonstrated experience with networking concepts such as LAN, WAN, BGP, TCP/UDP, IPSec, VPN, Routing(L2/L3), and firewalls in a virtualized environment.
Demonstrate experience in one or more of the following enterprise network management tools such as Palo Alto Panorama, Cisco Prime, Cisco DNA, or Junos Space.
Demonstrate experience in system hardening of network infrastructure to include DoD STIG implementation.
Expert understanding of networking and virtualization of firewalls including VSYS in a multi-tenant environment.
Must have experience in working with two or more of the following vender network technologies: Cisco, Juniper, Palo Alto, Dell, RAVPN, Global Protect, or AppGate.
Experience with the following protocols: SFTP, SSH, SCP, MPLS, SNMP, NTP.
Must have excellent written and verbal communication skills.
Must be willing to work non-standard shifts to accomplish network migration objectives and goals.
Must be able to interface with customers.
Must be willing to travel up to 10% of the time.

Benefits

Competitive compensation
Health and Wellness programs
Income Protection
Paid Leave
Retirement

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools

network securityfirewall migrationSD-WANMPLSnetwork resource managementnetworking conceptssystem hardeningnetwork virtualizationnetwork protocolscapacity planning

Soft Skills

leadershipcommunicationorganizational skillsteam supervisionstakeholder collaborationproblem-solvinganalytical skillscustomer interfaceadaptabilitydocumentation

Certifications

DoD Secret ClearanceBachelor's degreeMaster's degreeDoD IAT Level IISecurity+