Posted 5 days ago
SME Network & Firewall Engineer/Architect
ManTech International - South Burlington, VT
Secure our Nation, Ignite your Future

Become an integral part of a diverse network team while working at an industry leading organization, where our employees come first. At ManTech International, you will help protect our national security while working on innovative projects that offer opportunities for advancement.

Currently, ManTech is seeking a motivated, career and customer-oriented Network & Firewall Engineer/ SME/ Architect in South Burlington, VT; Camp Springs, MD; or in a location to be determined upon offer acceptance.

Responsibilities include, but are not limited to:
  • Primary role is to perform as Level 4 Network Firewall and Engineering escalation point for network security to effectively support security processes and procedures.
  • Continually improve on the network stability working with the performance team to establish network performance metrics for alerting and remediation automations.
  • Work with other firewall engineer colleagues to configure and implement Next Generation Firewall and Intrusion Protection Systems.
  • Review existing configuration settings to identify potential security vulnerabilities and propose/implement setting or architectural changes to address these vulnerabilities.
  • Perform securing, hardening, and rule creation for new firewalls, switches, routers, and other network equipment. This includes reviewing and re-evaluating existing configuration settings and rules to verify USCIS' security posture and eliminate unnecessary risk.
  • Administrative oversight of firewall systems such as AlgoSec, Panorama, Firemon.
  • Use Agile engineering approach to DevSecOps and solutioning with Access Identity and Directory Services to architect, engineer, and implement network security control methods in cloud, on-premise and virtual environments to support DHS directive 4300A, NIST 800-53, and industry best practices
  • Extend into secure cloud solutions and next generation firewall and intrusion protection devices to scale against all connected devices.
  • Continually improve DDI and network access control reporting.
  • Knowledge and understanding to keep the network up to date (and ready to scale for the future) through compliance with all federal requirements such as DHS 4300A, NIST 800-53, and other industry best practices.
  • Enhance the security posture to scale upward without impeding performance.
  • Audit configurations to eliminate vulnerabilities and ensure USCIS deploys and operates in accordance with vendor recommendations, industry best-practices, DoD STIGs, and DHS configuration guidance.
  • Evaluate current and future network designs to ensure that network security is incorporated as an integral consideration in these designs.


Basic Qualifications:
  • A minimum of ten (10) years of experience as an enterprise firewall engineer across large and complex network and Microsoft AD environments
  • Extensive security background with Palo Alto firewall systems
  • A minimum of four (4) years of experience in cloud technologies such as but not limited to Azure and AWS.
  • Extensive experience designing mission critical infrastructure in enterprise environments.
  • Experience designing and implementing enterprise solutions that increase the availability and security of the enterprise.
  • Experience with on premise physical infrastructure and virtualization technologies including Hyper-V, VMWare, SAN, FCoe, NFS, SMB3 etc
  • Deep experience with networking and security methods and tools.
  • Strong troubleshooting and analytical skills required.
  • Must have strong critical thinking, complex problem solving, appropriate judgment, and decision-making skills
  • Possess superior technical aptitude and effective written and verbal communications skills.
  • Capable of supporting and using tools such as:


NetCollector

Cisco Routing platforms

ARX

Cisco Switching platform

AlgoSec

Google Cloud Platform / Amazon Web Services / MS Azure

Solarwinds

Meraki Cloud Portal and devices

StealthWatch

Infoblox

ForeScout

IWAN

Cisco ACI/SDN Platform

NetProfiler

Cisco Cloud Center

VipTella

Cisco Firepower

VMWare

Cisco Identity Services Engine

NSX

Cisco Meraki

Palo Alto Firewall

Cisco DNA

Palo Alto Panorama

Preferred Qualifications:
  • Familiar with tools including: ServiceNow, GitHub, Jira, Confluence
  • Experience with ITIL, DevSecOps and Agile concepts
  • Experience supporting Government contracts


Education:
  • Bachelor's Degree preferred


Certification:
  • PCNSE preferred


Security Clearance Requirements:
  • U.S. Citizen with the ability to obtain Public Trust and complete DHS Security Clearance
  • Ability to obtain DHS EOD suitability
  • Current DHS EOD highly preferred


Physical Requirements:
  • Remote office work, typically sedentary


The projected compensation range for this position is $127,000-$211,000. There are differentiating factors that can impact a final salary/hourly rate, including, but not limited to, Contract Wage Determination, relevant work experience, skills and competencies that align to the specified role, geographic location (For Remote Opportunities), education and certifications as well as Federal Government Contract Labor categories. In addition, ManTech invests in it's employees beyond just compensation. ManTech's benefits offerings include, dependent upon position, Health Insurance, Life Insurance, Paid Time Off, Holiday Pay, Short Term and Long Term Disability, Retirement and Savings, Learning and Development opportunities, wellness programs as well as other optional benefit elections.

For all positions requiring access to technology/software source code that is subject to export control laws, employment with the company is contingent on either verifying U.S.-person status or obtaining any necessary license. The applicant will be required to answer certain questions for export control purposes, and that information will be reviewed by compliance personnel to ensure compliance with federal law. ManTech may choose not to apply for a license for such individuals whose access to export-controlled technology or software source code may require authorization and may decline to proceed with an applicant on that basis alone.

ManTech International Corporation, as well as its subsidiaries proactively fulfills its role as an equal opportunity employer. We do not discriminate against any employee or applicant for employment because of race, color, sex, religion, age, sexual orientation, gender identity and expression, national origin, marital status, physical or mental disability, status as a Disabled Veteran, Recently Separated Veteran, Active Duty Wartime or Campaign Badge Veteran, Armed Forces Services Medal, or any other characteristic protected by law.

If you require a reasonable accommodation to apply for a position with ManTech through its online applicant system, please contact ManTech's Corporate EEO Department at ([redacted]. ManTech is an affirmative action/equal opportunity employer - minorities, females, disabled and protected veterans are urged to apply. ManTech's utilization of any external recruitment or job placement agency is predicated upon its full compliance with our equal opportunity/affirmative action policies. ManTech does not accept resumes from unsolicited recruiting firms. We pay no fees for unsolicited services.

If you are a qualified individual with a disability or a disabled veteran, you have the right to request an accommodation if you are unable or limited in your ability to use or access http://www.mantech.com/careers/Pages/careers.aspx as a result of your disability. To request an accommodation please click [redacted] and provide your name and contact information.