SkyePoint Decisions, Inc.
Firewall Engineer
SkyePoint Decisions, Inc., Beltsville, Maryland, United States, 20705
OverviewSkyePoint Decisions is a leading Cybersecurity Architecture and Engineering, Critical Infrastructure and Operations, and Applications Development and Maintenance IT service provider headquartered in Dulles, Virginia with operations across the U.S. We provide innovative enterprise-wide solutions as well as targeted services addressing the complex challenges faced by our federal government clients. Our focus is on enabling our clients to deliver their mission most efficiently and effectively – anytime, anywhere, securely. We combine technical expertise, mission awareness, and an empowered workforce to produce meaningful results.
As a SkyePoint employee you will be given the opportunity to support some of our nation’s most critical information systems by utilizing not only your existing cybersecurity skills and talents, but those that you will learn in your new role. In your new role as a cyber security professional, you will protect our customer’s most sensitive data and complex systems from all forms of threats including cyber-attacks, insider threats, rogue network devices, and malicious software and applications. You will work with a team of like-minded professionals to share and collaborate upon your ideas to improve the cybersecurity infrastructure, architecture, and configuration deployments. Your ideas and contributions will matter.
This is a contingent position based upon customer approval.
ResponsibilitiesSkyepoint Decisions is seeking a Firewall Engineer to support the security engineering team on the Vanguard 2.2.1 Cybersecurity Integrity Center (CIC) office within the DOS. This person will be providing engineering leadership over multiple firewall and security systems and devices. The candidate will possess and apply comprehensive expert knowledge regarding security devices. The candidate must be capable of planning and leading the testing, implementation, and maintenance of security technologies and devices. The candidate must be capable of evaluating performance results, performing risk assessments, and recommending changes affecting security configuration/implementations. The position directly supports DOS on-site to provide security protection to over 100,000 customers globally.
This role can be located in Beltsville, MD or Washington, DC. It is hybrid and requires at least 2-3 days per week onsite.
Responsibilities:
Works directly with the DOS Security customer to build, design, test and deploy security (Firewall) solutions.
Develop and deploy perimeter security solutions utilizing multi-vendor firewalls, email security, IPS/IDS, SSL decryption, DMZs, and virtualization/zones for on premise and cloud based services.
Collaborate with technical SMEs on Enterprise wide solutions, participate in technical working groups, and contribute to technical advisory boards.
Supports the compilation of records and reports concerning perimeter operations and maintenance to analyze the performance of perimeter security systems.
Provides input to the problem management process, including assessing and evaluating software and hardware anomalies. Supports the root cause analysis efforts to determine problems and develop remediation activities. Interfaces with vendor support service groups to ensure proper support during outages or periods of degraded system performance.
Supports the transition to operations of perimeter security devices.
Collaborate with Cross-Bureaus and Agencies to implement network changes as it relates to perimeter security.
Supports the configuration testing of replacement perimeter devices.
Plans, documents, and implements hardware and software build and refresh.
Create and Maintain standard operating procedures and guides for new and/or existing perimeter hardware and software.
Address Tier III escalation issues.
Attend weekly teleconferences, onsite meetings, and participates in working groups, as related to constant changing security environment.
QualificationsRequired:
Bachelor degree in a computer science/computer engineering related discipline; Additional experience may be accepted in lieu of degree.
10+ years IT security/network engineering support experience (Tier II, Tier III, network infrastructure implementation and maintenance).
Experience working directly with Government customer.
Expert experience in one or more of the following security devices: Palo Alto firewalls, Panorama management console, McAfee/Forcepoint StoneGate firewalls, A10 Encrypted Traffic Inspection/Application Delivery, and Cisco ESA & ASA.
Experience developing and configuring SSL encryption/decryption solutions for traffic inspection.
Experience supporting the configuration and maintenance of Firewall/DMZ infrastructure including Network and Application Firewall Packet Filtering technologies (Palo Alto, McAfee/Forcepoint Stonegate).
Firsthand experience in developing and providing quality assurance review of engineering change orders relating to the replacement or enhancement of perimeter security hardware and software.
Experienced with performing root cause analysis, risk identification, and risk mitigation.
Knowledgeable with configuring Cisco switches.
Strong understanding of routing/switching technologies, IP addressing/subnetting, and network traffic analysis/troubleshooting.
Experience with network monitoring devices such as HP Openview, Nagios, Zenoss, NeuralStar or other similar monitoring tool.
US Citizenship.
Active Secret clearance with the ability to obtain a Top Secret clearance.
Preferred:
ITIL Foundation certification.
Certifications: Palo Alto Networks Certified Network Security Engineer (PCNSE), A10 Certification/Accreditation, StoneGate Firewall/VPN Architect Certification, StoneGate Management Client (SMC) Certification, Microsoft Certified Professional (MCP), Network+, Security+, CISSP.
Familiarity with DoS environment (data and voice networks, IT security systems, policies and procedures), Foreign Affairs Handbooks (FAHs), Foreign Affairs Manuals (FAMs).
Experience with Red Hat Linux/CentOS and Ubuntu including administration scripting is a plus.
Interpersonal skills including the ability to collaborate effectively, self-awareness, and excellent written and oral communications.
What We Can Offer You -
At SkyePoint, we go B.I.G. (beginning in GRATITUDE) by recognizing all we have and giving back to our employees, families, and communities. It instills a positive mindset that permeates all we do. By beginning in gratitude, SkyePoint can continue to spread living in gratitude each day.
Great Benefits: Several insurance options including HMO and High Deductible plans with Health Savings Accounts [HSAs], Flex Spending Accounts [FSAs], Full Dental Plans, ST/LT Disability, Life Insurance, floating federal holiday options, and 401k matched.
Certificate Incentive Program: To promote professional development, we recognize and reward employees who obtain new certifications aligned with business needs.
SkyePoint DoD SkillBridge Industry Partner Fellowship Program.
Flexible Work Environment.
Compensation:
Salary Range: $144K - $150K
The SkyePoint Decisions salary range for this position is a general guideline only. It represents an estimated range for this position and is just one piece of our total compensation package.
Salary at SkyePoint is determined by various factors, including but not limited to location, work schedule, the candidate’s combination of education, knowledge, skills, competencies, and experience, as well as contract-specific affordability, market data and business considerations.
In addition to a competitive salary, SkyePoint offers benefits including a certification incentive program, PTO, floating federal holiday options, several insurance options including HMO and High Deductible plans with Health Savings Accounts [HSAs], Flex Spending Accounts [FSAs], Full Dental Plans, Vision, ST/LT Disability, Life Insurance, and 401k matched.
SkyePoint Decisions is an established ISO 9001:2015 and ISO/IEC 27001:2013 certified small business and appraised at CMMI Level 3 for Services and Development. We possess a common vision of excellence and foster a collaborative team culture built upon individual performance and accountability. We invest in our people and systems to create value for our clients. It is the SkyePoint Way. We are grateful for the opportunity to work with exceptional people and give back to the communities we serve. Our employees value the flexibility at SkyePoint that allows them to balance quality work and their personal lives.
Please be aware of recruiting scams and people claiming to be from SkyePoint Decisions. For more information, please see the Welcome Page of our Careers site.
Skyepoint Decisions is a participating E-Verify Employer.
U.S. Citizenship is required for most positions.
Equal Opportunity Employer/Veterans/Disabled.
#J-18808-Ljbffr
As a SkyePoint employee you will be given the opportunity to support some of our nation’s most critical information systems by utilizing not only your existing cybersecurity skills and talents, but those that you will learn in your new role. In your new role as a cyber security professional, you will protect our customer’s most sensitive data and complex systems from all forms of threats including cyber-attacks, insider threats, rogue network devices, and malicious software and applications. You will work with a team of like-minded professionals to share and collaborate upon your ideas to improve the cybersecurity infrastructure, architecture, and configuration deployments. Your ideas and contributions will matter.
This is a contingent position based upon customer approval.
ResponsibilitiesSkyepoint Decisions is seeking a Firewall Engineer to support the security engineering team on the Vanguard 2.2.1 Cybersecurity Integrity Center (CIC) office within the DOS. This person will be providing engineering leadership over multiple firewall and security systems and devices. The candidate will possess and apply comprehensive expert knowledge regarding security devices. The candidate must be capable of planning and leading the testing, implementation, and maintenance of security technologies and devices. The candidate must be capable of evaluating performance results, performing risk assessments, and recommending changes affecting security configuration/implementations. The position directly supports DOS on-site to provide security protection to over 100,000 customers globally.
This role can be located in Beltsville, MD or Washington, DC. It is hybrid and requires at least 2-3 days per week onsite.
Responsibilities:
Works directly with the DOS Security customer to build, design, test and deploy security (Firewall) solutions.
Develop and deploy perimeter security solutions utilizing multi-vendor firewalls, email security, IPS/IDS, SSL decryption, DMZs, and virtualization/zones for on premise and cloud based services.
Collaborate with technical SMEs on Enterprise wide solutions, participate in technical working groups, and contribute to technical advisory boards.
Supports the compilation of records and reports concerning perimeter operations and maintenance to analyze the performance of perimeter security systems.
Provides input to the problem management process, including assessing and evaluating software and hardware anomalies. Supports the root cause analysis efforts to determine problems and develop remediation activities. Interfaces with vendor support service groups to ensure proper support during outages or periods of degraded system performance.
Supports the transition to operations of perimeter security devices.
Collaborate with Cross-Bureaus and Agencies to implement network changes as it relates to perimeter security.
Supports the configuration testing of replacement perimeter devices.
Plans, documents, and implements hardware and software build and refresh.
Create and Maintain standard operating procedures and guides for new and/or existing perimeter hardware and software.
Address Tier III escalation issues.
Attend weekly teleconferences, onsite meetings, and participates in working groups, as related to constant changing security environment.
QualificationsRequired:
Bachelor degree in a computer science/computer engineering related discipline; Additional experience may be accepted in lieu of degree.
10+ years IT security/network engineering support experience (Tier II, Tier III, network infrastructure implementation and maintenance).
Experience working directly with Government customer.
Expert experience in one or more of the following security devices: Palo Alto firewalls, Panorama management console, McAfee/Forcepoint StoneGate firewalls, A10 Encrypted Traffic Inspection/Application Delivery, and Cisco ESA & ASA.
Experience developing and configuring SSL encryption/decryption solutions for traffic inspection.
Experience supporting the configuration and maintenance of Firewall/DMZ infrastructure including Network and Application Firewall Packet Filtering technologies (Palo Alto, McAfee/Forcepoint Stonegate).
Firsthand experience in developing and providing quality assurance review of engineering change orders relating to the replacement or enhancement of perimeter security hardware and software.
Experienced with performing root cause analysis, risk identification, and risk mitigation.
Knowledgeable with configuring Cisco switches.
Strong understanding of routing/switching technologies, IP addressing/subnetting, and network traffic analysis/troubleshooting.
Experience with network monitoring devices such as HP Openview, Nagios, Zenoss, NeuralStar or other similar monitoring tool.
US Citizenship.
Active Secret clearance with the ability to obtain a Top Secret clearance.
Preferred:
ITIL Foundation certification.
Certifications: Palo Alto Networks Certified Network Security Engineer (PCNSE), A10 Certification/Accreditation, StoneGate Firewall/VPN Architect Certification, StoneGate Management Client (SMC) Certification, Microsoft Certified Professional (MCP), Network+, Security+, CISSP.
Familiarity with DoS environment (data and voice networks, IT security systems, policies and procedures), Foreign Affairs Handbooks (FAHs), Foreign Affairs Manuals (FAMs).
Experience with Red Hat Linux/CentOS and Ubuntu including administration scripting is a plus.
Interpersonal skills including the ability to collaborate effectively, self-awareness, and excellent written and oral communications.
What We Can Offer You -
At SkyePoint, we go B.I.G. (beginning in GRATITUDE) by recognizing all we have and giving back to our employees, families, and communities. It instills a positive mindset that permeates all we do. By beginning in gratitude, SkyePoint can continue to spread living in gratitude each day.
Great Benefits: Several insurance options including HMO and High Deductible plans with Health Savings Accounts [HSAs], Flex Spending Accounts [FSAs], Full Dental Plans, ST/LT Disability, Life Insurance, floating federal holiday options, and 401k matched.
Certificate Incentive Program: To promote professional development, we recognize and reward employees who obtain new certifications aligned with business needs.
SkyePoint DoD SkillBridge Industry Partner Fellowship Program.
Flexible Work Environment.
Compensation:
Salary Range: $144K - $150K
The SkyePoint Decisions salary range for this position is a general guideline only. It represents an estimated range for this position and is just one piece of our total compensation package.
Salary at SkyePoint is determined by various factors, including but not limited to location, work schedule, the candidate’s combination of education, knowledge, skills, competencies, and experience, as well as contract-specific affordability, market data and business considerations.
In addition to a competitive salary, SkyePoint offers benefits including a certification incentive program, PTO, floating federal holiday options, several insurance options including HMO and High Deductible plans with Health Savings Accounts [HSAs], Flex Spending Accounts [FSAs], Full Dental Plans, Vision, ST/LT Disability, Life Insurance, and 401k matched.
SkyePoint Decisions is an established ISO 9001:2015 and ISO/IEC 27001:2013 certified small business and appraised at CMMI Level 3 for Services and Development. We possess a common vision of excellence and foster a collaborative team culture built upon individual performance and accountability. We invest in our people and systems to create value for our clients. It is the SkyePoint Way. We are grateful for the opportunity to work with exceptional people and give back to the communities we serve. Our employees value the flexibility at SkyePoint that allows them to balance quality work and their personal lives.
Please be aware of recruiting scams and people claiming to be from SkyePoint Decisions. For more information, please see the Welcome Page of our Careers site.
Skyepoint Decisions is a participating E-Verify Employer.
U.S. Citizenship is required for most positions.
Equal Opportunity Employer/Veterans/Disabled.
#J-18808-Ljbffr