Firewall Engineer

Firewall Engineer Location : BELTSVILLE, MD , United States Category : Cyber Subcategory : Cybersecurity Spec Schedule : Full-time Shift : Swing Shift (3 PM - 11 : 30 PM) Travel : No Minimum Clearance Required : Secret Clearance Level Must Be Able to Obtain : Top Secret Hybrid Schedule : Current work schedule is 3 days on-site and 2 days remote.

JOB DESCRIPTION Description This is an opening for a Firewall Engineer to support a Department of State (DoS) Bureau of Information Resource Management (IRM) program.

This program provides transparent, interconnected systems and security supporting the DoS in successfully carrying out its U.

S. foreign policy mission. IRM provides enterprise architecture design, engineering, operations and maintenance support services for desktops, servers, networks, firewalls, and enterprise applications across the Department.

Program is named "Vanguard" and is an IT consolidation consisting of the Department's servers, mainframes, network devices, network perimeter, anti-virus engineering, public key infrastructure (PKI) / biometrics / encryption, monitoring tools, telephony, mobile computing platform, virtual environment, and enclave design / security engineering.

This is a firewall admin position within the Vanguard 2.2.1 program, providing general Tier II monitoring, configuration, and support to multiple firewall and perimeter security systems.

The position directly supports DoS on-site to provide perimeter security protection to over 80,000 customers globally. This is a hybrid remote role, with 3 days on-site and 2 days remote.

Description of Duties : Provides Tier 2 support in the monitoring, management, and troubleshooting of perimeter devices to include firewalls, proxies, switches, and mail transport agents.

Creating, updating, and reporting using ServiceNow’s application for incident and service requests. · Implements firewall routing rules and policies, perform troubleshoots of firewall, email, and Proxy platforms for performance issues.

Analyzes network traffic captures. · Escalates issues as required to Tier 3 staff or OEM and monitors issues throughout a problem’s life cycle · Performs recurring maintenance activities such as device reboots on perimeter devices · Records and reports on firewall operations, utilization, and maintenance.

• Collaborate across Bureaus and Agencies to implement and repair network changes as they relate to perimeter security devices.
• Support Diplomatic Security Computer Incident Response Team by implementing IP address blocks requests. · Routinely updates architecture diagrams using Visio · Monitor and perform health checks on multiple perimeter security devices.
• Draft, coordinate and publish outage notifications as required. · Update shift logs and provide reports to leadership daily.
• Maintain standard operating procedures, work instructions, and other working documents. · Attend weekly teleconferences, onsite meetings, and participate in working groups as required.
• Mentor and supervise a small team of four other shift engineers. Qualifications Required Education BA degree and 5 years of direct IT experience in core technologies;

may accept additional experience in lieu of degree. Required Experience, Skills, & Attributes · In Depth experience using Palo Alto Firewalls and Panorama monitoring tools to troubleshoot and configure a Firewall infrastructure.

Strong understanding of networking, proxy, and packet filtering technologies. · 3-5 years direct Firewall support experience (Tier I - III).

First-hand experience with supporting the monitoring and configuration of Firewall / DMZ infrastructure. Including configuration of routing, policies, NAT, zones, objects, reviewing and analyzing data captures.

Network and Application Firewall Packet Filtering technologies such as (Cisco ASA, Palo Alto, Checkpoint, Fortinet Security Appliances, A10 proxy devices).

• CLI experience required. Preferred Experience, Skills, & Attributes · Experienced in utilizing other network monitoring tools such as Nagios and Neural Star · Knowledge of Proxy and Email methods and protocols · Intermediate knowledge in configuring Cisco routing and switches.
• Experienced with TCP / IP network implementation and troubleshooting Clearance Requirement · An active Secret clearance is required to start work and requires eligibility to obtain a Top Secret clearance. Powered by JazzHR
30+ days ago