Trace3

Network Security Engineer III

Trace3

full-time

Posted on:

Origin:  • 🇺🇸 United States • Colorado

Visit company website
AI Apply
Manual Apply

Salary

💰 $100,000 - $122,000 per year

Job Level

Mid-LevelSenior

Tech Stack

AnsibleFirewallsPythonSwitchingTCP/IPVMware

About the role

  • Provide technical support for the assessment of compliance of information systems with DoD RMF standards (review, verify and validate required DoD IA RMF documentations and artifacts using DoDI 8510.01).
  • Develop Cyber-secure Network device configurations (Firewalls, switches, routers).
  • Candidate will be a primary Network Security Engineer supporting the C2BMC Program.
  • Plan, deploy, integrate, and test upgrades to the C2BMC network to operational sites.
  • Conduct research on different networking and security related topics independently and produce reports on findings.
  • Ensure that the team's devices are STIG’s and hardened appropriately and run any and all Cyber protocols needed.
  • Design security configurations and testing procedures and document project design and development efforts.
  • Collaborate with other departments and team members to explain network security requirements and compliance.
  • Travel to alternate work locations, such as Schriever Space Force Base, to execute deployments and job duties.

Requirements

  • Scripting knowledge Python, Ansible, PowerShell (Desired)
  • Solid understanding of JUNOS (Desired)
  • Prior C2BMC experience (Desired)
  • Must be able to travel to alternate work locations, such as Schriever Space Force Base, to execute job duties such as deployments.
  • Must understand the OSI Model, TCP/IP, VLANs, UDP Multicast.
  • Must have firewall configuration knowledge such as Juniper, Cisco, Palo Alto.
  • Must have knowledge of ACL design and function.
  • Must have hands on experience with multi-vendor switching/routing (Juniper, Cisco).
  • Must be an effective communicator with excellent writing and presentation skills using Microsoft PowerPoint and Visio drawing tools.
  • Must be able to design security configurations and testing procedures.
  • Must be familiar with NIST CVE framework.
  • Must have experience with virtualization.
  • Must be able to work collaboratively in a team environment with other highly motivated network and system engineers.
  • Intermediate knowledge of security design, development, and testing methodologies.
  • Experienced in application of standard DOD security practices such as, STIG compliance and system accreditation implementation efforts.
  • Able to thoroughly document project design and development efforts.
  • Able to collaborate with other departments to explain network security requirements and compliance.
  • Able to learn security hardening basics for wide range of niche products, software and applications.
  • Able to summarize, brief, and recommend solutions to security issues to leadership.
  • Understand basics of VMware and ESXi STIGing/Hardening
  • Secret clearance required.
  • DOD 8570 IAT - Level II.
  • Bachelor of Science Degree with 5 or more years of experience OR Master of Science Degree with 3 years of experience (Degrees must be in a relevant field of study).