Network Security Engineer (SME) (Remote)

Network Security Engineer (SME)

Position is contingent upon award.

Company Overview
Dutch Ridge Consulting Group, LLC (DRCG) is an ISO 9001:2015, Department of Veterans Affairs (VA) Certified Veteran Enterprise (CVE), Service-Disabled Veteran-Owned Small Business (SDVOSB). DRCG provides technical support staff at ten locations throughout the United States with corporate offices in Beaver, Pennsylvania and Ashburn, Virginia. DRCG offers expertise in Systems Integration (SI), Information Technology (IT) solutioning, Program Management, Risk Management, Business Process Reengineering (BPR), Requirements Engineering, Workflow Solutioning, and Business Consulting Services. Established in 2016, DRCG is 100% US owned, and has over 50 employees (97% hold a Secret clearance or higher). DRCG optimizes client investments by leveraging expertise to better manage the growth and transformation of existing IT environments.

Description
Seeking a Network Security Engineer SME to support the critical infrastructure of a large complex government division with a mission to equip law enforcement, national security, and intelligence community partners with criminal justice information. The Network Security Engineer SME will provide expert level knowledge in networking and cybersecurity technologies and protocols.

The ideal candidate will:

• Add and manage nodes in Splunk and Riverbed for monitoring purposes.
• Update monitoring tools using Ansible.
• Interact successfully with both program leaders and DOJ partners to ensure objectives are completed on-time.
• Manage information technology security, including backups, firewalls, and routers.
• Provide guidance for design and management of information systems security policy, implementation, and management for a globally distributed MPLS infrastructure.
• Provide network security management and support windows servers.
• Resolve routing and Network Address Translation (NAT) issues utilizing tcpdump and other tools.
• Perform system upgrades and implement any new security policies per agency guidance and policy.
• Key contributions include troubleshooting of complex LAN/WAN infrastructure that includes routing protocols BGP, EIGRP and Open Shortest Path First (OSPF), VPNs, web proxy, and XML gateway for enterprise web services.
• Work on different networking concepts and routing protocols like BGP, EIGRP, dynamic multipoint virtual private network (DMVPN) and other LAN/WAN technologies.
• Recommend enterprise information assurance and security standards.
• Develop and implement information assurance/security standards and procedures.
• Coordinate, develop, and evaluate security programs for an organization.
• Recommend information assurance/security solutions to support customers' requirements.
• Identify, report, and resolve security violations.
• Establish and satisfy information assurance and security requirements based upon the analysis of user, policy, regulatory, and resource demands.
• Support customers at the highest levels in the development and implementation of doctrine and policies.
• Perform a variety of system engineering tasks and activities that are broad in nature and are concerned with major systems design, integration, and implementation, including personnel, hardware, software, budgetary, support facilities and/or equipment.
• Apply know-how to government and commercial common user systems, as well as to dedicated special purpose systems requiring specialized security features and procedures.
• Perform analysis, design, and development of security features for system architectures.
• Analyze and define security requirements for computer systems which may include mainframes, workstations, and personal computers.
• Design, develop, engineer, and implement solutions that meet security requirements.
• Provide integration and implementation of the computer system security solution.
• Analyze complex information assurance-related technical problems and provide multifaceted engineering and technical support in solving these problems.
• Perform vulnerability/risk analysis of computer systems and applications during all phases of the system development life cycle.
• Ensure that all information systems are functional and secure.
• Perform system security tuning, security monitoring, general and privileged user account management, and reviewing all COTS software products upgrades and patches, including operating systems.
• Monitor and perform script writing, storage management interfaces, network interfaces, external peripheral interfaces, and others systems interfacing.
• Design and execute security system tests.
• Support all systems/services certification and Accreditation activities.

Requirements

• Current Top-Secret clearance required.
• 5 years of total experience (2 years of current experience in supporting and troubleshooting various computing devices and operating systems).
• Strong technical background with at least one professional certification strongly desired.
• Proficiency in both networking and cybersecurity technologies and protocols.
• Experience in managing and troubleshooting Linux or Unix base operating systems.
• Experience with Application Layer Gateway (ALG) [Real-time Transport Protocol (RTP), Real-Time Streaming Protocol (RTSP) and File Transfer Protocol (FTP), Domain Name System (DNS), Hypertext Transfer Protocol (HTTP)], Dynamic Host Configuration Protocol (DHCP).
• CompTIA Security+ certified, CompTIA Advanced Security Practitioner (CASP+) certified or Cisco Certified Cybersecurity Professional (CCCP) preferred.
• Agile experience using Scrum, XP, Kanban, and SAFe.
• Bachelor's degree in computer science, information systems, engineering, or a related field is preferred.

Location

Remote
Note: Client is based in Clarksburg, West Virginia. Equipment and badging requirements may require travel to client site for this purpose.