Macpower Digital Assets Edge
Senior Network Engineer - Active TS/SCI
Macpower Digital Assets Edge, Bedford, Massachusetts, us, 01730
JOB SUMMARY:
As the
Network Engineering SME , you will shape the tactical and enterprise networking underpinnings of
Major Release
- orchestrating SATCOM, SDR, cross-domain solutions, and software-defined networking that connect airborne platforms to the Digital Infrastructure (DI) and the broader DAF BATTLE NETWORK. ESSENTIAL JOB FUNCTIONS: Architect & Design: Lead creation of the PG network reference architecture spanning Nomad hardware, Smith software builds, and Watch node-management elements. Define routing schemas (BGP/OSPF/IS-IS), QoS policies, IPSec/crypto overlays, and multi-level security / cross-domain data-flow rulesets that comply with NSA and DISA STIG requirements. Produce SysML/CAMEO artifacts feeding the government-owned digital thread. Integration & Lab Leadership:
Specify and configure routers, switches, firewalls, SATCOM modems, and SDRs inside the Integration SIL; drive interface-control documentation (ICDs) for airborne PIMs. Develop automated test harnesses (IXIA/TestCenter, Spirent, Ansible) to validate throughput, latency, packet-loss, and IA posture before DT/OT. DevSecOps & Cyber Hygiene:
Embed network-security controls into the PG DevSecOps pipeline; champion zero-trust principles and continuous ATO artifacts (RMF eMass packages, ACAS/SCAP scans). Guide implementation of Software Defined Networking (SD-WAN, OpenFlow, or comparable) for dynamic airborne/ground path selection. Fielding & Operations:
Partner with platform SPOs and flight-test organizations to translate lab configs into flight-worthy builds; draft Interim Authorizations To Test (IATT) and airworthiness network annexes. Support Watch help-desk playbooks, operational runbooks, and remote monitoring dashboards (Elastic, Grafana, Prometheus). Leadership & Mentoring:
Serve as the chief technical adviser to Government IPT leads; brief network readiness, risk, and performance metrics at program reviews. Mentor mid-level engineers and ensure knowledge transfer to Government personnel. Required Skills:
ctive TS/SCI clearance. Bachelor's degree in Electrical Engineering, Computer Engineering, or related field (Master's preferred) and
12+ years designing, integrating, and securing DoD or IC mission-critical IP networks. Deep expertise in routing/switching (Layer 2/3), SATCOM backhaul, RF/mesh networking, and transport enclaves in contested or bandwidth-limited environments. Demonstrated experience with cross-domain solutions, NSA Type-1 crypto, and multi-level security architectures. Hands-on with network test/validation tools and scripting/automation (Python, Ansible, Terraform). Desired Skills:
CCNP/CCIE, JNCIE, or equivalent expert-level certification. Prior work on CJADC2, ABMS, OMS/UCI, tactical data links (Link-16/22, TTNT), or airborne networking programs. Familiarity with containerized networking (CNI plugins, Service Mesh) and classified DevSecOps pipelines (Platform One, Iron Bank). Experience shepherding RMF packages through eMass to full ATO. gile/Scrum or SAFe certification.
As the
Network Engineering SME , you will shape the tactical and enterprise networking underpinnings of
Major Release
- orchestrating SATCOM, SDR, cross-domain solutions, and software-defined networking that connect airborne platforms to the Digital Infrastructure (DI) and the broader DAF BATTLE NETWORK. ESSENTIAL JOB FUNCTIONS: Architect & Design: Lead creation of the PG network reference architecture spanning Nomad hardware, Smith software builds, and Watch node-management elements. Define routing schemas (BGP/OSPF/IS-IS), QoS policies, IPSec/crypto overlays, and multi-level security / cross-domain data-flow rulesets that comply with NSA and DISA STIG requirements. Produce SysML/CAMEO artifacts feeding the government-owned digital thread. Integration & Lab Leadership:
Specify and configure routers, switches, firewalls, SATCOM modems, and SDRs inside the Integration SIL; drive interface-control documentation (ICDs) for airborne PIMs. Develop automated test harnesses (IXIA/TestCenter, Spirent, Ansible) to validate throughput, latency, packet-loss, and IA posture before DT/OT. DevSecOps & Cyber Hygiene:
Embed network-security controls into the PG DevSecOps pipeline; champion zero-trust principles and continuous ATO artifacts (RMF eMass packages, ACAS/SCAP scans). Guide implementation of Software Defined Networking (SD-WAN, OpenFlow, or comparable) for dynamic airborne/ground path selection. Fielding & Operations:
Partner with platform SPOs and flight-test organizations to translate lab configs into flight-worthy builds; draft Interim Authorizations To Test (IATT) and airworthiness network annexes. Support Watch help-desk playbooks, operational runbooks, and remote monitoring dashboards (Elastic, Grafana, Prometheus). Leadership & Mentoring:
Serve as the chief technical adviser to Government IPT leads; brief network readiness, risk, and performance metrics at program reviews. Mentor mid-level engineers and ensure knowledge transfer to Government personnel. Required Skills:
ctive TS/SCI clearance. Bachelor's degree in Electrical Engineering, Computer Engineering, or related field (Master's preferred) and
12+ years designing, integrating, and securing DoD or IC mission-critical IP networks. Deep expertise in routing/switching (Layer 2/3), SATCOM backhaul, RF/mesh networking, and transport enclaves in contested or bandwidth-limited environments. Demonstrated experience with cross-domain solutions, NSA Type-1 crypto, and multi-level security architectures. Hands-on with network test/validation tools and scripting/automation (Python, Ansible, Terraform). Desired Skills:
CCNP/CCIE, JNCIE, or equivalent expert-level certification. Prior work on CJADC2, ABMS, OMS/UCI, tactical data links (Link-16/22, TTNT), or airborne networking programs. Familiarity with containerized networking (CNI plugins, Service Mesh) and classified DevSecOps pipelines (Platform One, Iron Bank). Experience shepherding RMF packages through eMass to full ATO. gile/Scrum or SAFe certification.