Network Security Engineer Job Details

The ideal candidate will possess the following ISSO CAPABILITIES and KNOWLEDGE:

-Knowledge of DIACAP,and IAVA/STIG implementation and remdiation process

-Establish and manage information technology (IT) systems in accordance with (IAW) government guidelines

-Assist in Implementation of IT security policy and provide guidance for security compliance

-assist in Implementation of IT security plans for computing systems IAW government and company policy

-Coordinate IT security approvals to ensure compliance

-Assist in network/system analysis and vulnerability studies in coordination with network management staff and systems

administrators

-Knowledge (basic to extensive) of networking protocols and management, security auditing, virus technology, software

platforms and customer computer security requirements

-Work well with other staff, including proficient written, verbal, leadeship and people skills

JOB DESCRIPTION: Assists with network security systems for LAN/WAN, telecommunications, and voice systems.

Reports to Manager of network security administration staff. Includes information assurance responsibilities. Candidate

will ensure to implement security requirements for IT systems throughout their life cycle, from the requirements definition

phase through disposal, including any disaster recovery. This will include ensuring that the systems and data being

processed are not only properly protected but are also available to the user community when needed on essentially a 24/7

basis IAW the NISPOM. The candidate will coordinate all IT security matters with the security chain of command of the

Contractor Program Security Officer and subsequently the Contractor Program Security Manager. ISSO responsibilities

(listed above and in the NISPOM) include preparing Systems Security Plans (SSPs) for certification and accreditation,

security input in the configuration management of the networks, staying abreast of new technologies and methodologies

as it relates to information security, and meeting contract deliverables, such as PMRs, 24/7 availability, on-call, etc.

Concentrates on the network design and security, particularly troubleshooting and/or debugging network/security-related

problems. Ability to analyze alert data from a variety of products and help the Government develop a strategy on how

to address these threats. Able to monitor and analyze data from a variety of network devices and provide security

analyst support for a complex, global, wide area network, including firewalls, routers, switches, out-of-band management

appliances, network analyzer appliances, virtual private network (VPN) appliances, intrusion detection systems (IDS) and

communications circuits. Backbone and WAN support consist of Internet connections and point-to-point, frame-relay and

MPLS networks. Must be familiar with DOD STIG Requirements. Able to analyze DoD operations of firewalls, recommend

firewall rule changes, and recommend changes to router access-lists according to STIGs and Checklists. Must be able to

run scripts and command line checks on all types of Unix and Solaris Servers. Must have experience with UNIX kernels

system administration. To meet DOD requirements, must have a minimum Security certification. Must have Solaris

System Administration experience and knowledge. Familiar with Linux and all the Open Source types of Unix systems.

Familiarization of Cisco IOS a plus. Programming language for scripting unix shells a must to include Perl and C at a

minimum. Working knowledge of network and security tools for proper troubleshooting to include Wireshark, Ethereal,

Snort etc. Knowledge of Database and database security a plus. Must be familiar with the IAVA management process

and the Vulnerabiltiy Management System (VMS) used by Government. agencies to comply with security requirements.

Familiar with Remedy trouble ticket system a must. Hardware and software experience on all types of Unix Open Source

systems. TCP/IP knowledge and firewall administration a must. Handles web and network security exploits, intrusion

prevention, network traffic analysis, cryptography and encryption.

SECURITY REQUIREMENTS: The candidate must be a US citizen and possess a Secret security clearance.

EDUCATION and/or EXPERIENCE:A Bachelors Degree in Network Engineering or equivalent years of experience, five

(5) plus years experience in integration and configuration of secure network facilities and proficiency with computer based

applications is preferred.