Network Engineer

Marathon TS is looking for a Network Engineer to provide the following: Proactively review and assess existing physical, logical, and virtual network architecture, including specific configuration information for network device hardware and software such as Quality of Service (QoS); server and workstation network interface and related settings; security settings; and WAN accelerator configurations. Based on review and assessment results, identify recommended changes and enhancements to existing network infrastructure. Identify recommended changes and enhancements to the USAO network security posture to ensure compliance with Federal, Department, and EOUSA security requirements, and provide support for enterprise-wide IT security initiatives involving network configuration. Document, in detail, required hardware, software, configuration updates, and other changes to the current network architecture and design (both lab and production); and document detailed implementation steps to successfully complete network changes in support of USAO projects and initiatives, IT security compliance, and enhancements to USAO network infrastructure. Establish standard test plans and perform comprehensive testing for all proposed changes prior to production deployment and validate new design and network enhancements within a pilot program to ensure minimal impact to users and environment. Provide Tier 3 troubleshooting support to resolve complex network issues in the USAO network environment. Utilize network-troubleshooting tools and analyze packet captures and other troubleshooting data to determine root cause. Effectively communicate troubleshooting steps taken, findings, and resolution steps. Perform regular network configuration integrity-checks and device audits. Evaluate overall network configuration consistency in software versions, hardware devices and modules, protocol and media, and naming conventions, and identify and correct potential issues. Contribute to the review and update process for existing network documentation, including but not limited to network architecture design, detailed network topology, current software and firmware versions, hardware specifications, and detailed information on network applications, associated resource utilization, QoS strategy, and operational documents. Establish a testing and release schedule for network equipment firmware, software, or other updates; and server patching and updates, in compliance with approved Change Management processes; and develop and document standard operational procedures and test plans to be followed for regular, periodic updates. Collaborate with IT and other EOUSA staffs to integrate new solutions into the USAO network environment; optimize current architecture; and troubleshoot complex incidents escalated from Tier 2/Tier 3 IT support involving network connectivity. Interface with business and IT stakeholders to capture and analyze technical requirements in support of USAO initiatives and provide network solution design recommendations. Design recommendations shall align with industry best practices and conform to network thresholds and parameters established through solution testing and network performance assessments in the USAO network environment. Perform maintenance activities requiring network downtime outside of normal business hours. If network downtime during business hours is required, Government notification is required in writing at least six (5) business days in advance of the anticipated network downtime. Skill Sets Anticipated CCIE Routing and Switching or Enterprise Network Design; AND 10 Years of LAN/WAN architecture design experience in an enterprise IT environment similar in size and scope to the EOUSA requirement Designing, implementing, and troubleshooting complex enterprise WAN and LAN with multiple platforms and technologies. Expertise shall include configuration & troubleshooting of routing protocols such as BGP and OSPF; configuration, management, deployment, and troubleshooting Cisco 2900, 3800, 3900, 7200, 7600, ASR 1006, 1002 series routers; configuration, management, automated deployment, and troubleshooting of Cisco Catalyst 3560, 3800, 4400, 4500, 9300 and 9500 switches in a complex, multi-VLAN network environment. Configuration, management, deployment, and troubleshooting Nexus 7000 and 5000 switches, including but not limited to configuration of M and F series modules, VDCs, VPC, VLANs, 802.1q, port channels, and QoS. Configuration, management, deployment and troubleshooting of Cisco ACE, F5 (LTM) Load balancers to provide efficient switching and routing for local and global traffic. Configuration, deployment, management and troubleshooting of Cisco ASA firewalls, including but not limited to NAT, PAT, VPN, Route maps, VLAN, and ACL. Managing and securing remote access through using IPsec, SSL and Dynamic VPN technologies, and Client-to-Site VPN. IP v4 and IP v6 addressing scheme, planning and implementation. Marathon TS is committed to the development of a creative, diverse and inclusive work environment. In order to provide equal employment and advancement opportunities to all individuals, employment decisions at Marathon TS will be based on merit, qualifications, and abilities. Marathon TS does not discriminate against any person because of race, color, creed, religion, sex, national origin, disability, age or any other characteristic protected by law (referred to as "protected status"). CJJOBS