Title: Principal Network Architect
Vertical: IT / Information Security
Location: Fort Meade, MD (HYBRID 2/3 DAYS)
Pay: $70 - $80 Hourly W2 / 150K – 170K Salary / 1099 (Possible)
Clearance: Top Secret (MUST HAVE)
Certifications: CSSP (MUST HAVE)
Job Description:
The Defense Enclave Services contract will unify the DOD Fourth Estate Defense Agencies and Field Activities’ common use information technology systems, personnel, functions and program elements under the direction of DISA’s Fourth Estate Network Optimization program office. Your role is critical to the overall operational and end User Experience (UX) as automation capabilities impacts each user across the global enterprise.
CLEARANCE REQUIREMENT:
· Must hold an active Top-Secret clearance prior to start. (US Citizenship required)
PRIMARY RESPONSIBILITIES:
· Implementing network security controls like firewalls, intrusion prevention systems (IPS), and intrusion detection systems (IDS).
· Configuring routers, switches, and other network devices with security best practices.
· Implementing and managing security patches and updates.
· Configuring and managing firewalls, VPNs, and other security appliances.
· Tuning security devices for optimal performance and security.
BASIC QUALIFICATIONS:
· Knowledge of routing protocols (BGP, OSPF, EIGRP, IS-IS)
· Knowledge of TCP/IP, ACL, NAT, Policy Based Routing, SDWAN, QoS, high availability, VoIP, Wireless, DHCP, DN
· Excellent network hardware troubleshooting experience
· A Bachelor’s degree and 8+ years of network engineering experience; additional years of experience may be substituted in lieu of a degree.
· Excellent analytical capabilities including creative problem solving and root cause analysis.
· Committed to documentation and organization efforts.
· Capable of multitasking while working in a constantly shifting environment with many moving pieces
· Must have a DoD IAT level II baseline certification, prior to start (Sec+).
PREFERRED QUALIFICATIONS:
· Knowledge of proper procedures, techniques, tools and equipment used to install, maintain and repair wireless communications systems and subsystems. Knowledge of electronic and wireless theory including digital, analog, and circuitry.
· Proficiency with Cisco IOS or other IP/transport network protocols and general practices. Expertise in IP technologies, i.e. Networking architectures and methodologies and Voice Services.
· Expert Knowledge of IP principles.
· Proficiency in at least two or more of the following devices: Cisco routers, Palo Alto firewalls, Cisco switches, KG175.
· Proficiency in at least one of the following tools: Science Logic, Catalyst Center, Ansible tower.
· CCNP Enterprise certification preferred
· Experience interpreting, implementing, and assessing DISA STIGs.
Required Qualifications:
· Knowledge of routing protocols (BGP, OSPF, EIGRP, IS-IS)
· Knowledge of TCP/IP, ACL, NAT, Policy Based Routing, SDWAN, QoS, high availability, VoIP, Wireless, DHCP, DNS
· Excellent network hardware troubleshooting experience
· A Bachelor’s degree and 8+ years of network engineering experience; additional years of experience may be substituted in lieu of a degree.
· Excellent analytical capabilities including creative problem solving and root cause analysis.
· Committed to documentation and organization efforts.
· Capable of multitasking while working in a constantly shifting environment with many moving pieces.
· Must have a DoD IAT level II baseline certification, prior to start (Sec+).
Desired Qualification:
· Knowledge of proper procedures, techniques, tools and equipment used to install, maintain and repair wireless communications systems and subsystems. Knowledge of electronic and wireless theory including digital, analog, and circuitry.
· Proficiency with Cisco IOS or other IP/transport network protocols and general practices. Expertise in IP technologies, i.e. Networking architectures and methodologies and Voice Services.
· Expert Knowledge of IP principles.
· Proficiency in at least two or more of the following devices: Cisco routers, Palo Alto firewalls, Cisco switches, KG175.
· Proficiency in at least one of the following tools: Science Logic, Catalyst Center, Ansible tower.
· CCNP Enterprise certification preferred
· Experience interpreting, implementing, and assessing DISA STIGs