MSM Inc.

Sr. Network Engineer

MSM Inc.

full-time

Posted on:

Origin:  • 🇺🇸 United States • Alabama

Visit company website
AI Apply
Manual Apply

Job Level

Senior

Tech Stack

AnsibleAssemblyAWSAzureCloudDNSFirewallsITSMJavaScriptServiceNowSplunkSwitchingTCP/IP

About the role

  • Network engineering responsibilities include providing network architectural design, modeling, engineering, implementation, sustainment, migration, technical refresh, and lifecycle services for the DISA Datacenter and Cloud enterprise network infrastructure.
  • Support for routers, switches, firewalls, DNS, email gateways, VPN, LAN, WAN and related protocols; cryptographic devices, diagnostic tools, and automation systems.
  • Design IPv6 deployment and migration to Zero Trust architecture within the DISA Datacenter and Cloud enterprise network infrastructure.
  • Develop design solution documentation including licensing guidance, architecture, configuration baselines, and security policy baselines.
  • Build, implement, and document network-enabled applications considering infrastructure, security, and performance needs; monitor project management system for requests and timelines.
  • Communicate with senior leadership and ensure compliance with security controls, STIGs, and DISA/DoD policies; lead change management and documentation efforts.
  • Engineer network architecture changes in response to new technologies and capacity requirements; prepare technical documentation and briefings.
  • Lead technical working groups, product evaluations, and recommendations; ensure alignment with DISA enterprise standards.

Requirements

  • Must have an active SECRET or higher security clearance.
  • 10+ years of relevant experience with design and implementation of complex Datacenter and Enterprise Network infrastructure in a multi-vendor environment
  • DoD 8570.01-M/8140.01 IAT Level II Certification (can be one of the following: Security+ or CySA+)
  • Relevant professional level Computing Environment (CE) certification based on the equipment and software relevant to primary duties.
  • CCNP, F5 301, Juniper (JNCIS, JNCIP) certification preferred.
  • Preferred Skills: IT bachelor’s degree or Vendor Network Certification (Professional or higher) Experience managing and configuration of Cisco ACI and navigation within APIC environment. (Note: This line is part of the description; include as part of requirements if desired.)
  • Strong and extensive knowledge of datacenter-based network methods, protocols and technologies to include: Routing [BGP/ OSPF/MP-BGP/ MPLS/VPN/Multicast/PBR] Switching [RSTP, VLAN, VXLAN, LLDP, VPC, LACP, LAG] TCP/IP, IPv4, IPv6, UDP, Layer 1 through Layer 7, IPSEC, HAIPE Firewalls [VPN, ACLs, Whitelisting] Load balancing [APM, ASM, LTM, GTM] SDN/ NFV/ IAC [ACI, Service Insertion, Ansible] Identity and Access Management with RBAC [AAA/RADIUS/TACACS/ LDAP] Network management and analysis (Performance Manager (PM), Juniper Space, Cisco ISE, Splunk] Structured cabling and installation standards Application of net- work security and design practices Cloud management [AWS/AZURE] Knowledge in software modules to include: [F5 BIG-IP LTM, GTM, APM, ASM] Must be proficient in use of government systems to track ops and management of systems and performance including but not limited to ITSM, GTMS, ServiceNow, 0365, Microsoft Teams, Ansible Automation Platform (APP) Apply