ZipRecruiter
Network Infrastructure Security Specialist
ZipRecruiter, Falls Church, Virginia, United States, 22042
Job Description
Tetrad Digital Integrity (TDI) is a leading-edge cybersecurity firm with a mission to safeguard and protect our customers from increasing threats and vulnerabilities in this digital era.
Overview
The Network Infrastructure Security Specialist is responsible for tracking, managing, liaison, and coordinating with internal and external stakeholders to develop, implement, and monitor security control measures as they relate to USPS network infrastructures. Key stakeholders include, but are not limited to, network operations, SOC, Enterprise Security Architecture, CISO, USPIS, DHS/CISA and their subordinate organizations. Roles align with functional teams within Network Operations in support of their ongoing efforts. The ideal candidate will be an experienced information security practitioner with a solid understanding of AI/LLM, goal-oriented, and committed to exceeding expectations. Responsibilities
Develop, document, and deploy security solutions, through novel approaches and innovative use of existing tools, including leveraging AI/ML capabilities. Provide security guidelines based on existing security policies and standards to Network Operations and the CISO. Monitor and validate network infrastructure practices to ensure adherence to security policy and governance. Develop and document, for implementation, use cases for CSOC. Coordinate within the group to interpret and issue guidance in accordance with known policies and governance. Engage stakeholders to identify or develop guidance and policy regarding their focus areas. Qualifications
Strong knowledge of network design and security principles, including network segmentation, MPLS, Internet access, SASE/SD-WAN, DIA, SSE, FWaaS, SWG, ZTNA, and how to incorporate AI and LLM into design and security principles. Strong knowledge of netflow/data analytics/network access control for compliance validation and Incident response / threat monitoring (e.g., Cisco ISE, StealthWatch, Netscout). Ability to work independently or within a group to identify and develop solutions to complex network and security issues. Hands-on experience with Network Services and their security features, including DNS, DHCP, IP management, DNS security (CISA PDNS, Bluecat Address Manager, Bluecat DNS Edge, Bluecat Gateway, IPAM, and Splunk). Strong knowledge of network-based security measures, e.g., firewall, IDS/IPS, explicit/transparent proxy, load balancers, and LAN segmentation. Knowledge of host-based data and asset protection, including AV, host-based firewall, X/NDR, and data encryption. Knowledge of NIST CSF, NIST SP 800-53 (and related) standards. One or more of the following: CISSP, Certified Ethical Hacker (C|EH), CISM, CCNP. 11+ years of experience in IT, data, or operational analysis, and/or security. Bachelor’s degree in computer science or another IT/security-related field; or equivalent experience as listed above. Desirable Qualifications
Knowledge of Security Standards (e.g., AS805). Project planning experience. Excellent writing skills. Proficiency with Microsoft Office, Visio. TDI does business with the federal government, which restricts employment to individuals who are either US citizens or lawful permanent residents of the United States. "TDI is an Equal Opportunity Employer. Employment decisions are based on individual qualifications, merit, and business needs. We do not discriminate in employment opportunities or practices based on race, color, religion, sex, national origin, age, disability, or other protected characteristics in accordance with applicable federal laws."
#J-18808-Ljbffr
The Network Infrastructure Security Specialist is responsible for tracking, managing, liaison, and coordinating with internal and external stakeholders to develop, implement, and monitor security control measures as they relate to USPS network infrastructures. Key stakeholders include, but are not limited to, network operations, SOC, Enterprise Security Architecture, CISO, USPIS, DHS/CISA and their subordinate organizations. Roles align with functional teams within Network Operations in support of their ongoing efforts. The ideal candidate will be an experienced information security practitioner with a solid understanding of AI/LLM, goal-oriented, and committed to exceeding expectations. Responsibilities
Develop, document, and deploy security solutions, through novel approaches and innovative use of existing tools, including leveraging AI/ML capabilities. Provide security guidelines based on existing security policies and standards to Network Operations and the CISO. Monitor and validate network infrastructure practices to ensure adherence to security policy and governance. Develop and document, for implementation, use cases for CSOC. Coordinate within the group to interpret and issue guidance in accordance with known policies and governance. Engage stakeholders to identify or develop guidance and policy regarding their focus areas. Qualifications
Strong knowledge of network design and security principles, including network segmentation, MPLS, Internet access, SASE/SD-WAN, DIA, SSE, FWaaS, SWG, ZTNA, and how to incorporate AI and LLM into design and security principles. Strong knowledge of netflow/data analytics/network access control for compliance validation and Incident response / threat monitoring (e.g., Cisco ISE, StealthWatch, Netscout). Ability to work independently or within a group to identify and develop solutions to complex network and security issues. Hands-on experience with Network Services and their security features, including DNS, DHCP, IP management, DNS security (CISA PDNS, Bluecat Address Manager, Bluecat DNS Edge, Bluecat Gateway, IPAM, and Splunk). Strong knowledge of network-based security measures, e.g., firewall, IDS/IPS, explicit/transparent proxy, load balancers, and LAN segmentation. Knowledge of host-based data and asset protection, including AV, host-based firewall, X/NDR, and data encryption. Knowledge of NIST CSF, NIST SP 800-53 (and related) standards. One or more of the following: CISSP, Certified Ethical Hacker (C|EH), CISM, CCNP. 11+ years of experience in IT, data, or operational analysis, and/or security. Bachelor’s degree in computer science or another IT/security-related field; or equivalent experience as listed above. Desirable Qualifications
Knowledge of Security Standards (e.g., AS805). Project planning experience. Excellent writing skills. Proficiency with Microsoft Office, Visio. TDI does business with the federal government, which restricts employment to individuals who are either US citizens or lawful permanent residents of the United States. "TDI is an Equal Opportunity Employer. Employment decisions are based on individual qualifications, merit, and business needs. We do not discriminate in employment opportunities or practices based on race, color, religion, sex, national origin, age, disability, or other protected characteristics in accordance with applicable federal laws."
#J-18808-Ljbffr