3982 Network Engineer

OVERVIEW:

Technical Reviewers play a pivotal role in evaluating the cybersecurity posture of enterprise environments across the Intelligence Community (IC). They conduct comprehensive technical assessments and perform detailed analysis of vulnerability scans to ensure compliance with Intelligence Community Directives (ICDs), IC Technical Implementation Guides (TIGs), Security Technical Implementation Guides (STIGs), Security Requirement Guides (SRGs), and NIST 800-53 rev 5 security controls.

GENERAL DUTIES:

• Conduct manual audits and vulnerability analysis on network devices including routers, switches, firewalls, and related network security components.
• Analyze network configurations, access controls, segmentation, routing, and security protocols to identify risks and vulnerabilities.
• Interpret complex STIG requirements and provide actionable recommendations to improve network security posture.
• Collaborate with network engineering teams, system administrators, and leadership to communicate inspection findings, risk assessments, and mitigation strategies.
• Lead and mentor Level 1 inspectors on networking technical evaluations and reporting.
• Stay current on emerging network threats, industry best practices, and advances in network security technologies.
• Participate in inspection planning, execution, and reporting processes.
• Travel as required to support onsite inspections across various IC locations. (8-12 weeks of travel avg, some international and passport required).

REQUIRED QUALIFICATIONS:

• Possess a master's degree, with 12+ years of total experience/equivalent certifications. Master's degree may be substituted with a bachelor's degree and 5+ years of additional experience/equivalent certifications, for a total of 13+ years.
• Knowledge:
  • In-depth understanding of enterprise networking concepts including LAN/WAN, TCP/IP, routing protocols (BGP, OSPF, EIGRP), VLANs, VPNs, firewalls, and IDS/IPS systems.
  • Familiarity with network security principles, segmentation strategies, and secure network design.
  • Proficient in interpreting and applying network-related STIGs and NIST 800-53/800-171 controls.
  • Knowledge of network attack vectors and defense mechanisms.
• Skills:
  • Skilled in manual network device configuration reviews and security audits.
  • Strong analytical and problem-solving abilities to identify network security gaps.
  • Effective communication skills to clearly present technical findings to technical and non-technical stakeholders.
  • Leadership and mentoring skills to guide junior inspectors.
• Abilities:
  • Lead networking inspections autonomously with minimal supervision.
  • Provide sound architectural recommendations to enhance network security posture.
  • Manage inspection timelines and deliverables effectively.
  • Adapt inspection approaches to diverse network environments and vendor equipment.
• Certifications:
  • Obtain an IAT-III or Maintain IAT Level III Certification in compliance with DoD 8570.01-M and DoD Directive 8140 Cyberspace Workforce Management.
  • CASP+ CE
  • CCNP Security
  • CISA
  • CISSP (or Associate)
  • GCED
  • GCIH
  • CCSP

CLEARANCE:

• Top Secret minimum