Network Security Engineer SME

The Network Security Engineer (SME) shall be responsible for the following:

1. Add and manage nodes in Splunk and Riverbed for monitoring purposes.
2. Update monitoring tools using Ansible.
3. Interact successfully with both program leads and DOJ partners to ensure objectives are completed on-time.
4. Manage information technology security, including backups, firewalls, and routers.
5. Provide guidance for design and management of information systems security policy, implementation, and management for a globally distribute MPLS infrastructure.
6. Provide network security management and support Windows servers.
7. Resolve routing and Network Address Translation (NAT) issues utilizing tcpdump and other tools.
8. Perform system upgrades and implement any new security policies per agency guidance and policy.
9. Key contributions include troubleshooting complex LAN/WAN infrastructure involving routing protocols BGP, EIGRP, OSPF, VPNs, web proxy, and XML gateway for enterprise web services.
10. Work on various networking concepts and routing protocols like BGP, EIGRP, DMVPN, and other LAN/WAN technologies.
11. Recommend enterprise information assurance and security standards.
12. Develop and implement information assurance/security standards and procedures.
13. Coordinate, develop, and evaluate security programs for the organization, recommending solutions to support customer requirements.
14. Identify, report, and resolve security violations.
15. Establish and satisfy information assurance and security requirements based on analysis of user, policy, regulatory, and resource demands.
16. Support customers at the highest levels in developing and implementing doctrine and policies.
17. Perform system engineering tasks related to major systems design, integration, and implementation, including personnel, hardware, software, and support facilities.
18. Apply know-how to government and commercial systems, including dedicated systems requiring specialized security features.
19. Perform analysis, design, and development of security features for system architectures.
20. Define security requirements for various computer systems, including mainframes, workstations, and PCs.
21. Design, develop, engineer, and implement security solutions that meet requirements.
22. Provide integration and implementation of system security solutions.
23. Analyze complex technical problems related to information assurance and provide engineering support.
24. Perform vulnerability and risk analyses during all phases of the system development life cycle.
25. Ensure all information systems are functional and secure.
26. Perform system security tuning, monitoring, user management, and review software updates and patches.
27. Monitor and script for storage, network, and peripheral interfaces.
28. Design and execute security system tests.
29. Support all certification and accreditation activities.
30. Qualifications:
    1. Five years of experience, with at least two current years supporting and troubleshooting computing devices and OS.
    2. Strong technical background; CompTIA A+ preferred.
    3. Proficiency in networking and cybersecurity protocols.
    4. Experience with Linux/Unix OS troubleshooting.
    5. Experience with Application Layer Gateway (ALG), RTP, RTSP, FTP, DNS, HTTP, DHCP.
    6. Certifications: CompTIA Security+, CASP+, or CCCP preferred.
    7. Experience in Agile methodologies like Scrum, XP, Kanban, SAFe.
    8. Bachelor's degree in relevant field preferred.