Firewall/VPN Design Engineer Senior

Location: Quantico, VA
Date Posted: 08-17-2018
Travel Required? No

Citizenship: Must be U.S. Citizen

Clearance Required: Top Secret

Education: HS Diploma or GED

Certifications Required: Must possess ITIL V3. Must possess professional-level certifications in one or more technology related vendor solutions such as Cisco Certified Network Professional (CCNP) Security, Fortinet Certified Network Security Professional (FCNSP), Juniper Networks Certified Specialist Security (JNCIP-SEC), Certified Modeling & Simulation Professional (CMSP), or equivalent certification, or resume as accepted by Government demonstrating sufficient experience in lieu of certification.

Position Description: Provide technical leadership in the design, integration, and testing of complex large-scale computer networks. Assist the Government Lead in the daily engineering duties on systems. Design and evaluates communication hardware and software, troubleshoots Local Area Network (LAN)/Body Area Network (BAN)/Wide Area Network (WAN) and other network related problems, provides technical expertise for performance, design and configuration of networks. Provide Marine Corps, Defense Information Systems Agency (DISA) and Joint interoperability of network design, integration and implementation. Provide design and integration of multivendor solutions utilizing Cisco, Juniper, Brocade and other vendor technologies such as Juniper Security Appliances (SSL-VPN and VPN), McAfee Firewalls, and FortiGate Firewalls. Perform Capacity and Demand Management activities in accordance with the USMC Circuit Management processes. Schedule conversions and cutovers and supports traffic analysis and traffic shaping design plans. Perform network routing utilizing Border Gateway Protocol (BGP), Enhanced Interior Gateway Routing Protocol (EIGRP), Open Shortest Path First (OSPF) routing and Virtual routing and forwarding (VRF). Perform network security utilizing VRF, Multiprotocol Label Switching (MPLS), access control list (ACL), IPSec and Layer 2 Virtual Private Network (L2 VPNs). Monitors Rights Management Services for administrators, users and groups. Design the capabilities and features that allow end users to access internal and external web content via Hypertext Transfer Protocol (HTTP) and Hyper Text Transfer Protocol Secure (HTTPS) protocols. Design the capabilities for caching and proxy to enhance information access and performance. Design control over the Actively protects the content that may be accessed through the proxy (i.e. filter by category, allow policy application scheduling, and filter category updates from a Government approved industry provider). Develop, update, track, and perform IP scheme and address management. Assist with the development and integration of identity and access management requirements. Integrate with public key infrastructure (PKI) certificates and network accounts to support two-factor authentication for all Active Directory (AD) domain account categories and eliminate the need for password-based authentication. Expert knowledge of Domain Name Server (DNS) and Dynamic Host Configuration Portal (DHCP). Perform tasks associated with Stateful Packet Filtering Network Firewall, Application Firewall, and Web Application Firewall. Design Uniform Resource Locator (URL) filtering, anti-malware, HTTP and HTTPS inspections. Perform tasks associated with application networking ports and protocols, Information Assurance (IA), routing and LAN.
this job portal is powered by CATS