Think Beyond The Label Jobs

Job Number: R0213098

Firewall Engineer, Senior The Opportunity: Are you looking for an opportunity to share your experience in cybersecurity to safeguard our nation and its critical infrastructure assets? As a Firewall Engineer, you'll lead the engineering, maintenance, and operations of security solutions, specifically Palo Alto firewalls, within various enclaves. You'll assess security threats and implement infrastructure controls. You'll work under limited supervision and apply extensive knowledge for a wide range of IA concepts, practices, and procedures to ensure the secure integration and operation of all enclave systems. You'll work independently or lead and direct others and solve cybersecurity interconnected environment problems quickly and completely, develop and implement security solutions in alignment with security strategy, and maintain an awareness of market and technology trends to bring best of breed solutions to the client.

On our team, you'll troubleshoot and analyze complex challenges for customers using your knowledge of Palo Alto firewalls and other security tools such as Splunk, Cribl, Forescout, Trellix, ACAS, Gigamon, Suricata, and FireEye

In this role, you'll directly impact a critical component and organizational mission within the intelligence community. With mentoring, challenging hands-on problem-solving, and opportunities to learn new tools and skills, we focus on growing as a team to make the best solutions for our customers.

Work with us as we secure and strengthen our nation's vital cyber security infrastructure.

Join us. The world can't wait.

You Have:

3+ years of experience with privileged and elevated access deploying, maintaining, administrating, or integrating Firewalls, including Palo Alto

Experiencetroubleshooting applications, hardening using STIGs, and patching and updating Palo Alto or other Firewalls

Experience with the design of cyber systems or solutions

Knowledge of DoD Risk Management Framework and security architecture design and integration

Ability to integrate cybersecurity engineering principles into infrastructure planning, design, and deployment

Ability to provide on-site, full-time support in a client environment

Active TS/SCI clearance; willingness to take a polygraph exam

HS diploma or GED and 7+ years of experience conducting or supporting cyber engineering projects and activities, Associate's degree and 5+ years of experience conducting or supporting cyber engineering projects and activities, or Bachelor's degree and 3+ years of experience conducting or supporting cyber engineering projects and activities

DoD 8570 IAT Level II Certification, including Security+ CE, CCNA-Security, GSEC, SSCP, CySA+, GICSP, or CND Certification

Ability to obtain a DoD 8570 Cybersecurity Service Provider - Infrastructure Support Certification, including CEH, CySA+, GICSP, SSCP, CHFI, CFR, Cloud+, or CND Certification before start date

Nice If You Have:

Experience deploying, maintaining, or integrating using cybersecurity tools, including Gigamon, FireEye, Trellix, Ansible, Encase, Forescout, Suricata, Varonis, or VMWare tools

Experience with Cloud services, including AWS, Azure, or GCP

Experience with Zero-Trust Architecture

Experience with DevSecOps, CI and CD, IaC and CaC, IT Infrastructure Library, and IT Service Management

Experience as a network engineer or Windows or Linux system administrator

Experience with scripting, including Python or Ansible

Experience in a client-facing environment

Possession of excellent verbal and written communication skills, including using presentation expertise to convey complex ideas to clients and internal staff

Possession of excellent problem-solving skills

Palo Alto Network Security Generalist, Palo Alto Next-Generation Firewall Engineer, Palo Alto Certified Network Security Administrator (PCNSA), Palo Alto Certified Network Sec rity Engineer (PCNSE), or Palo Alto Certified Software Firewall Engineer (PCSFE) certification

Clearance: Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information;