Trace Systems
Palo Alto Engineer
Trace Systems, Alexandria, Virginia, 22350
Overview: Job Title: Palo Alto Engineer Job Location:Alexandria, VA Job Responsibilities: Trace Systems is seeking a Senior Palo Alto Engineer to support the Compartmented Enterprise Services Office (CESO) Task Order for the GIG Service Management – Operations II (GSM-O II) contract. This person should be a seasoned, self-motivated, professional with at least 10 years of hands-on engineering and testing experience in virtualized and cloud environments. A skilled engineer knowledgeable and experienced in developing and implementing Firewall/Networking Security Solutions. With the CESO program, the Defense Information System Agency (DISA) is looking to transform the existing Secure Web Services (SWS) environment, which provides secure information sharing to the community, into a more mature service offering to meet the DoD and intelligence communities. As part of this task order, Trace and its teammates will manage the commercial cloud migration and disestablishment of legacy systems, fully automate the continuous development & continuous integration environment, fourth estate consolidation, professionalize services – ITIL/DevSecOps based processes, improve the customer experience 1st call resolution, and achieve development of a service catalog for Defense Working Capital Fund (DWCF) Model. PRIMARY RESPONSIBILITIES: Identify and remediate misconfigurations, conflicting rules, security gaps, firewall and load balancer security issues, optimize rule-sets, and enhance the overall security posture and performance of Firewalls and Load Balancers Provide Tier 3 support to members of the operations network administrations. Maintain all HW and SW components at vendor supported levels. Support mission-critical Continuity of Operations (COOP). Conduct a minimum of two (2) assessment of firewall each month on CESO and customer devices and generate assessment reports and provide recommendations for improvements. Support the creation of network device performance and traffic utilization monthly reports. Develop and/or participate in After Action Reports (AARs) Provide expert advice and direction regarding the management and operation of all Palo Alto devices in the DISA CESO enterprise architecture. Interact with the customer point of contact to set objectives/goals based on Palo Alto Networks technologies and available technology roadmap for architecture and design discussions. Evaluate current technologies and processes associated with DISA CESO to identify gaps. Provide requirements and strategies for future cybersecurity operations. Active participant in meetings with DISA CESO and mission partner working groups. Adhere to applicable DOD STIGs, DISA applicable orders, and JSIG policy, guidelines, and regulations. Minimum Qualifications: Security Clearance: Active, in-scope US Government issuedTS clearance, and be eligible to obtain and maintain a TS/SCI Due to the nature of the work and contract requirements, US Citizenship required. Bachelor's degree and 12 years of directly relevant experience. Add'l experience may be considered in lieu of degree. 10 years of hands-on Cisco / Palo Alto Firewall experience in both engineering and Operations and maintenance roles. Strong knowledge of Palo Alto concepts and best practices: Panorama Installation Panorama HA Config Panorama Template and Template Stacks Panorama Policy creation and push to group of Firewalls and Verify Push Palo Alto Route configuration Palo Alto IPSec Site to Site VPN Config and Troubleshooting Palo Alto VM in AWS Palo Alto IPS Configuration Palo Alto Virtual Router / Systems Palo Alto Firewall HA Experience working in a high op-temp, Top Secret environment. Candidate must be willing to take and maintain a CI/Poly 8570 IAT Level II Baseline Certification (e.g. CCNA Security, CySA, GICSP, GSEC, Security CE, CND, SSCP) Desired Qualifications: Prior experienced with DISA and DISA’s support to mission partners TS/SCI w/CI Poly Preferred Education: BS in computer science or IT. Add'l experience may be considered in lieu of degree. Trace Systems Trace Systems Inc. was founded to support and defend our nation's security interests at home and abroad–– whenever and wherever. We provide enterprise IT, engineering, full life-cycle communications, cybersecurity, cloud and virtualization services and solutions to the United States Department of Defense and other federal agencies. To Apply: We invite you to put your talents to work by joining a growing team of dynamic professionals here at Trace Systems Be part of a culture at our leading-edge company where you can achieve great things while fostering a satisfying and rewarding career progression. To learn more about our current openings, text ‘tracejobs’ to 97211 or apply directly through our website at : www.tracesystems.com . jointracesystems Trace Systems is an equal opportunity and affirmative action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, age, sex, disability, veteran status, national origin, sexual orientation, gender identity, pregnancy, genetic information, or any other characteristic protected by law. Job ID 2024-6130 of Openings 1