Today
Secret
Unspecified
Unspecified
IT - Hardware
Remote/Hybrid• (Off-Site/Hybrid)
GDIT is the leading systems integrator in the Zero Trust Defense sector market-developing and delivering innovative solutions to government customers. Our Zero Trust business continues experiencing rapid growth, and this is an opportunity to join our team and be a part of creating Cybersecurity solutions that make a real impact.
As a Network Engineer on an Enterprise Zero Trust Program for a DoD cleint, your responsibilities will include:
Basic Qualifications:
Required Skills/Knowledge:
Desired Skills/Knowledge:
GDIT IS YOUR PLACE:
Work Requirements
As a Network Engineer on an Enterprise Zero Trust Program for a DoD cleint, your responsibilities will include:
- Contributing to the design, implementing, and maintaining a high distributed network aligning to zero trust principles.
- Contributing to the designing and implementing SD-WAN based network architecture spanning dozens of sites at a global scale.
- Configuring, installing, and managing network hardware (routers, switches, firewalls) and software.
- Planning, executing, and documenting network upgrades, expansions, and optimizations.
- Designing and establishing protocol compatibility standards.
- Serve as a subject matter expert in zero trust network security tools, cloud security, and firewall architecture.
- Maintaining comprehensive network documentation, including architecture diagrams, rack elevations, SOPs, and configuration logs.
- Diagnosing and resolving complex network issues, including those related to performance, security, and connectivity.
- Investigating and responding to network security incidents, implementing corrective measures, and reporting on security vulnerabilities.
- Analyzing network traffic, identifying bottlenecks, and optimizing performance.
- Developing and implementing disaster recovery plans to ensure network resilience.
- Managing and deploying software patches to network devices to mitigate security vulnerabilities.
- Supervising and mentoring junior network engineers.
- Communicating network status, performance, and security information to stakeholders, including management and end-users.
- Working with other IT teams (e.g., systems administrators, security specialists) to ensure network integration and interoperability.
- Working with vendors to select, purchase, and implement network equipment.
- Ensuring that the network meets relevant industry standards, DoD regulations, and DoD ZT requirements as defined in the DoD ZT Execution Roadmap.
Basic Qualifications:
- 5-8 years' of experience in network security or network engineering roles, with a focus on Zero Trust, network security, software defined networks, and SD-WAN
- Experience in designing, implementing, and managing networks, including LAN/WAN and SD-WAN
- Knowledge of zero trust network security best practices, including firewalls, intrusion detection systems, and data security protocols.
- Deep understanding of routing & switching, multicast, and QoS
- Excellent troubleshooting and problem-solving skills
- Knowledge of common security threats and protections to network, cloud, and endpoint resources.
- Knowledge and experience in log forwarding and event correlation with an enterprise grade SIEM.
- Knowledge and experience with public cloud networking and security technologies in AWS, Azure, and/or GCP.
- Clear and concise written and verbal communication skills.
- Highly self-motivated.
- Detail Oriented.
Required Skills/Knowledge:
- Current Secret clearance
- Relevant certifications required for Base and Compute Environment applicable to DoD 8570 IAT Level II
- Experience with network security technologies (Palo Alto, Cisco, Juniper, etc.)
- Strong expertise in firewall architecture and security best practices.
- Extensive experience in the design, configuration, troubleshooting, and administration of network security tools and virtual appliances such as firewalls, zero trust network access, and intrusion detection systems
- Experience implementing SD-WAN solutions
- Knowledge of cloud security and securing cloud applications.
- Strong working knowledge of and experience with common network protocols including but not limited to: BGP, OSPF, STP, ARP, VLANs, Trunking, LACP, VPCs, ICMP, LDAP, RADIUS, DNS, DHCP, HTTP, TLS, SMTP, SSH, SCP
- Strong knowledge and hands-on experience with Public Key Infrastructure (PKI) and certificates.
- Implementation and administration experience with forward and reverse proxies and/or load balancers.
Desired Skills/Knowledge:
- Implementation and administration experience with application centric network technologies (load balancers, WAF/WAAP).
- Strong analytical and troubleshooting skills with the ability to diagnose and resolve complex network issues.
- Threat intelligence experience (consumption, presentation, and enforcement of indicators)
- Familiarity with the MITRE ATT&CK framework.
- Familiarity with NIST SP 800 series.
- Additional certifications related to Security and Route/ Switch would be a plus
- Bachelor's Degree and 5-8 years of technical experience in Network Security or Network Engineering with large-scale enterprise/global networks in high-paced, diverse environment.
GDIT IS YOUR PLACE:
- Full-flex work week to own your priorities at work and at home
- 401K with company match
- Comprehensive health and wellness packages
- Internal mobility team dedicated to helping you own your career
- Professional growth opportunities including paid education and certifications
- Cutting-edge technology you can learn from
- Rest and recharge with paid vacation and holidays
Work Requirements
group id: 90979310
Explore the Art of the Possible | GDIT