Leidos
Join to apply for the
VPN and DMZ Network Engineer
role at
Leidos Description Leidos currently has an opening on the Service Management, Integration and Transport (SMIT) Contract for a VPN (Virtual Private Network) & DMZ (Demilitarized Zone) Network Engineer located in Oak Harbor, WA. Join our team to support the SMIT mission, the largest IT services program for the United States Navy. You will play a pivotal role in delivering the Navy-Marine Corps Intranet (NMCI) to customers around the globe. We are seeking a skilled VPN & DMZ Network Engineer proficient in network engineering appliances and technologies (i.e. Firewalls, DMZ, VPN) to join our Transport Operations team. In this role, you will be responsible for designing, implementing, and maintaining robust & mature global network security solutions. Responsibilities Support Current Operations for the United States Navy by providing VPN, DMZ, and Firewall Network Engineering Subject Matter Expertise (SME) for the NMCI network. Responsibilities include network modification, operation, integration, maintenance, security, and implementation of services for the as-fielded NMCI network. Collaborates with the Network Operations Center, Network Administrators, and the Network Engineering Team to define and continuously improve: Network Security Appliances (DMZ, VPN, Firewalls). Test and validate automation and best practice insertion opportunities. Lead development of Network SOPs/TTPs and pursue Continuous Service Improvements (CSI). System performance tuning and enhancements; create and maintain Engineering Implementation Plans (EIP). Plan and execute network upgrades and maintenance activities with NMCI Operations Manager, NOC Lead, Release Management team and other key stakeholders. Provide Tier III escalation support and vendor engagement to support Incident Management activities. Participate in Root Cause Analysis for Problem Management activities. Qualifications Requires B.S. Degree and 4-8 years of prior relevant experience. Work experience may be substituted for degree at Hiring Manager’s discretion. U.S. Citizen with an active DoD Secret security clearance. Must currently possess an active DoD 8570.01 IAT Level II Certification (e.g., CCNP Security, CISSP, or CASP+). Must currently possess an active Associate level Network Vendor Certification (Cisco, Juniper, or F5 Networks). Ability to work or be called in to work during off-hours to meet customer mission support requirements. Participate in on-call rotation for Incident Management responsibilities among the Transport Operations team. Network Subject Matter Expert for operations providing Tier-III support to the NOC watch staff. Perform highly technical maintenance and configuration to firewalls, VPNs, and DMZ appliances. Extensive experience engineering and troubleshooting networks, including routing, switching, MPLS, VPNs, routing protocols (e.g., BGP, OSPF, IS-IS), switching protocols (e.g., Spanning Tree Protocol, VLANs, LLDP, VoIP), Multicast protocols and emerging network technologies. Strong understanding of IP network/subnet addressing and defense-in-depth principles, network architecture, modern network topologies, network appliance integrity, and security elements. Experience with Ansible, Python, and IaC network automation. Note : This description reflects the original posting and required qualifications without adding new factual details beyond the text provided.
#J-18808-Ljbffr
VPN and DMZ Network Engineer
role at
Leidos Description Leidos currently has an opening on the Service Management, Integration and Transport (SMIT) Contract for a VPN (Virtual Private Network) & DMZ (Demilitarized Zone) Network Engineer located in Oak Harbor, WA. Join our team to support the SMIT mission, the largest IT services program for the United States Navy. You will play a pivotal role in delivering the Navy-Marine Corps Intranet (NMCI) to customers around the globe. We are seeking a skilled VPN & DMZ Network Engineer proficient in network engineering appliances and technologies (i.e. Firewalls, DMZ, VPN) to join our Transport Operations team. In this role, you will be responsible for designing, implementing, and maintaining robust & mature global network security solutions. Responsibilities Support Current Operations for the United States Navy by providing VPN, DMZ, and Firewall Network Engineering Subject Matter Expertise (SME) for the NMCI network. Responsibilities include network modification, operation, integration, maintenance, security, and implementation of services for the as-fielded NMCI network. Collaborates with the Network Operations Center, Network Administrators, and the Network Engineering Team to define and continuously improve: Network Security Appliances (DMZ, VPN, Firewalls). Test and validate automation and best practice insertion opportunities. Lead development of Network SOPs/TTPs and pursue Continuous Service Improvements (CSI). System performance tuning and enhancements; create and maintain Engineering Implementation Plans (EIP). Plan and execute network upgrades and maintenance activities with NMCI Operations Manager, NOC Lead, Release Management team and other key stakeholders. Provide Tier III escalation support and vendor engagement to support Incident Management activities. Participate in Root Cause Analysis for Problem Management activities. Qualifications Requires B.S. Degree and 4-8 years of prior relevant experience. Work experience may be substituted for degree at Hiring Manager’s discretion. U.S. Citizen with an active DoD Secret security clearance. Must currently possess an active DoD 8570.01 IAT Level II Certification (e.g., CCNP Security, CISSP, or CASP+). Must currently possess an active Associate level Network Vendor Certification (Cisco, Juniper, or F5 Networks). Ability to work or be called in to work during off-hours to meet customer mission support requirements. Participate in on-call rotation for Incident Management responsibilities among the Transport Operations team. Network Subject Matter Expert for operations providing Tier-III support to the NOC watch staff. Perform highly technical maintenance and configuration to firewalls, VPNs, and DMZ appliances. Extensive experience engineering and troubleshooting networks, including routing, switching, MPLS, VPNs, routing protocols (e.g., BGP, OSPF, IS-IS), switching protocols (e.g., Spanning Tree Protocol, VLANs, LLDP, VoIP), Multicast protocols and emerging network technologies. Strong understanding of IP network/subnet addressing and defense-in-depth principles, network architecture, modern network topologies, network appliance integrity, and security elements. Experience with Ansible, Python, and IaC network automation. Note : This description reflects the original posting and required qualifications without adding new factual details beyond the text provided.
#J-18808-Ljbffr