Apex Systems
Firewall/VPN Design Engineer Sr - Quantico, VA
Apex Systems, Virginia, Minnesota, United States, 55792
Apex Systems is seeking a Secret Cleared Sr. Firewall/VPN Design Engineer to join our team in Quantico, VA! Please see below for more details.This is a Long-Term-Contract position supporting the United States Marine Corps through 2029.Overview:
Job Title:
Sr. Firewall EngineerJob Type:
Full-Time, W2, LTCCompensation:
$60/hr - $78/hr (rate dependent upon experience)Location:
Quantico, VA 5x/wkShift:
Standard EST core hoursClearance Required:
Active Secret, can hold TSJob Description:
Assist the Government Lead in the daily engineering duties on systems.Design, integrate, and test complex large-scale computer networks.Design and evaluate communication hardware and software.Troubleshoot Local Area Network (LAN)/Base Area Network (BAN)/Wide Area Network (WAN) and other network related problems.Provide Navy/Marine Corps, Defense Information Systems Agency (DISA) and Joint interoperability of network design, integration, and implementation.Perform network routing utilizing Border Gateway Protocol (BGP), Enhanced Interior Gateway Routing Protocol (EIGRP), Open Shortest Path First (OSPF) routing, and Virtual routing and forwarding (VRF).Perform network security utilizing VRF, Multiprotocol Label Switching (MPLS), access control list (ACL), IPSec and Layer 2 Virtual Private Network (L2 VPNs).Monitors Rights Management Services for administrators, users and groups.Design the capabilities and features that allow end users to access internal and external web content via Hypertext Transfer Protocol (HTTP) and Hypertext Transfer Protocol Secure (HTTPS) protocols.Design the capabilities for caching and proxy to enhance information access and performance.Actively protects the content that may be accessed through the proxy (i.e. filter by category, allow policy application scheduling, and filter category updates from a government approved industry provider).Develop, update, track, and perform IP scheme and address management.Assist with the development and integration of identity and access management requirements.Perform integration with public key infrastructure (PKI) certificates and network accounts to support two-factor authentication for all Active Directory (AD) domain account categories and eliminate the need for password-based authentication.Perform Capacity and Demand Management activities in accordance with the USMC Circuit Management processes. Schedule conversions and cutovers and supports traffic analysis and traffic shaping design plans.Provide design and integration of multivendor solutions utilizing Cisco, Juniper, Brocade and other vendor technologies such as Juniper Security Appliances (SSL-VPN and VPN), McAfee Firewalls, and FortiGate Firewalls.Perform tasks associated with Stateful Packet Filtering Network Firewall, Application Firewall, and Web Application Firewall.Design Uniform Resource Locator (URL) filtering, anti-malware, HTTP and HTTPS inspections.Perform tasks associated with application networking ports and protocols, Information Assurance (IA), routing and LAN. Must possess Information Technology Infrastructure Library (ITIL) version 3 Foundation certification.Qualifications:
Bachelor’s Degree w/ ~10 years of experience.Experience in telecommunications and/or data communications.Experience with the performance, design, and configuration of networks.Experience with Domain Name Server (DNS) and Dynamic Host Configuration Portal (DHCP).Active Secret Clearance.Must also possess professional-level certifications in one or more technology related vendor solutions such as Cisco Certified Network Professional (CCNP) Security, Fortinet Certified Network Security Professional (FCNSP), Juniper Networks Certified Specialist Security (JNCIP-SEC), Certified Modeling & Simulation Professional (CMSP), or equivalent certification, or demonstrate sufficient experience in lieu of certification.
#J-18808-Ljbffr
Job Title:
Sr. Firewall EngineerJob Type:
Full-Time, W2, LTCCompensation:
$60/hr - $78/hr (rate dependent upon experience)Location:
Quantico, VA 5x/wkShift:
Standard EST core hoursClearance Required:
Active Secret, can hold TSJob Description:
Assist the Government Lead in the daily engineering duties on systems.Design, integrate, and test complex large-scale computer networks.Design and evaluate communication hardware and software.Troubleshoot Local Area Network (LAN)/Base Area Network (BAN)/Wide Area Network (WAN) and other network related problems.Provide Navy/Marine Corps, Defense Information Systems Agency (DISA) and Joint interoperability of network design, integration, and implementation.Perform network routing utilizing Border Gateway Protocol (BGP), Enhanced Interior Gateway Routing Protocol (EIGRP), Open Shortest Path First (OSPF) routing, and Virtual routing and forwarding (VRF).Perform network security utilizing VRF, Multiprotocol Label Switching (MPLS), access control list (ACL), IPSec and Layer 2 Virtual Private Network (L2 VPNs).Monitors Rights Management Services for administrators, users and groups.Design the capabilities and features that allow end users to access internal and external web content via Hypertext Transfer Protocol (HTTP) and Hypertext Transfer Protocol Secure (HTTPS) protocols.Design the capabilities for caching and proxy to enhance information access and performance.Actively protects the content that may be accessed through the proxy (i.e. filter by category, allow policy application scheduling, and filter category updates from a government approved industry provider).Develop, update, track, and perform IP scheme and address management.Assist with the development and integration of identity and access management requirements.Perform integration with public key infrastructure (PKI) certificates and network accounts to support two-factor authentication for all Active Directory (AD) domain account categories and eliminate the need for password-based authentication.Perform Capacity and Demand Management activities in accordance with the USMC Circuit Management processes. Schedule conversions and cutovers and supports traffic analysis and traffic shaping design plans.Provide design and integration of multivendor solutions utilizing Cisco, Juniper, Brocade and other vendor technologies such as Juniper Security Appliances (SSL-VPN and VPN), McAfee Firewalls, and FortiGate Firewalls.Perform tasks associated with Stateful Packet Filtering Network Firewall, Application Firewall, and Web Application Firewall.Design Uniform Resource Locator (URL) filtering, anti-malware, HTTP and HTTPS inspections.Perform tasks associated with application networking ports and protocols, Information Assurance (IA), routing and LAN. Must possess Information Technology Infrastructure Library (ITIL) version 3 Foundation certification.Qualifications:
Bachelor’s Degree w/ ~10 years of experience.Experience in telecommunications and/or data communications.Experience with the performance, design, and configuration of networks.Experience with Domain Name Server (DNS) and Dynamic Host Configuration Portal (DHCP).Active Secret Clearance.Must also possess professional-level certifications in one or more technology related vendor solutions such as Cisco Certified Network Professional (CCNP) Security, Fortinet Certified Network Security Professional (FCNSP), Juniper Networks Certified Specialist Security (JNCIP-SEC), Certified Modeling & Simulation Professional (CMSP), or equivalent certification, or demonstrate sufficient experience in lieu of certification.
#J-18808-Ljbffr