DMI
Firewall Engineer
DMI, Crownsville, Maryland, United States, 21032
About DMI:
DMI is a leading global provider of digital services working at the intersection of public and private sectors. With broad capabilities across IT managed services, cybersecurity, cloud migration and application development, DMI provides on-site and remote support to clients within governments, healthcare, financial services, transportation, manufacturing, and other critical infrastructure sectors. DMI has grown to over 2,100+ employees globally and has been continually recognized as a Top Workplace in both regional and national categories.About the Opportunity:DMI (Digital Management, LLC.) is looking for a
Firewall Engineer
with project lead experience and hands-on engineering experience. The Firewall Engineer will be responsible for the engineering, implementation, and support of security solutions for the State of Maryland DoIT Security Operations Center (SOC) with a special focus on enterprise firewall systems. This role will be responsible for performing the following tasks:Duties and Responsibilities:Gap assessment and analysis of security solutions and recommendation of improvement initiatives.Implementation of scalable, redundant, and reliable firewall solutions.Security hardening firewall configurations.Configuration management and control of architectural/design/functional configuration changes to firewalls.Firewall brake-fix troubleshooting, root cause analysis, and support.Firewall patch/upgrade monitoring, reviews, maintenance scheduling and deployment.Management of firewall operational and security audits logs.Definition, development, and configuration of firewall security and operational alerts, dashboards, and reporting.Monitoring firewall operational and security alerts and dashboards.Defining, implementing, and monitoring process/procedures for maintaining the lifecycle firewall policies and rules.Configuration, maintenance, and support of additional firewall services such as URL filtering, Malware Sandboxing Analysis, Threat Intelligence Feeds, Threat Prevention, User ID etc.Provide firewall log correlation support for emerging and retroactive security incident investigations.Support the integration with other security tools such IDS/IPS, SIEM, NACs, VPN etc.Define requirements and develop roles-based Standard Operating Procedure (SOPs) documents.
Qualifications:Education and Years of Experience:At least 6-8 years of hands-on experience in Network Engineering/Architecture.At least five (5) years of technical experience in architecture, design, implementation, support of firewall technologies.Bachelors degree from an accredited college or university with a major in Computer Science, Information Systems, Engineering or related scientific or technical discipline.Required Skills/Certifications :Must have current
Palo Alto Networks Certified Network Security Engineer (PCNSE ) certification or hands-on experience implementing Palo Alto Advanced/NextGen features to include
App-ID ,
User-ID ,
Content-ID ,
URL Filtering ,
Threat Prevention ,
WildFire ,
Virtual Wire ,
Virtual System (VSys) ,
Global Protect ,
NAT Policies ,
Security Profiles ,
Inbound SSL Decryption ,
Outbound SSL Decryption (SSL Forward Proxy) ,
File Blocking , and
Data FilteringHand-on experience with Palo Alto
Panorama
for centralized management of PANOS firewallsSelf-starter, able to gather requirements, plan, execute firewall architecting and deployment efforts.Able to perform gap analysis and initiate and execute architectural improvements.Strong demonstrated experience with network security architecture, design, and implementation best-practices i.e., Defense-in-depth architecture, knowledge of emerging Zero Trust architecture.Hands-on experience with firewall architecture, design, and implementation.Hands-on experience with operational and security hardening configuration for firewall solutions.Hands-on experience with configuration management and change control for firewall solutions.Demonstrated experience with networking and switching protocols and infrastructure services, able to troubleshoot and identify DNS, DHCP, WiFi protocols, NTP, SNMP, routing, switching, and firewall issues affecting connectivity of applications and services.Must have working knowledge and understanding of network infrastructure components such as Routers, Switches, IDS, IPS, NAC, VPN Gateways, Wireless APs etc.Customer-oriented with excellent issue follow-through and resolution abilities.Outstanding leadership and organizational skills.Utilize tools and analytical skills to plan and execute technical changes.Excellent written and oral communication, and presentation skills.Ability to effectively work both autonomously as well as on a team.Outstanding interpersonal skills, strong work ethic, self-motivated and excellent presentation skills.Desired Skills/Certifications:Hands-on experience with Juniper firewallsCISSP, CompTIA Security +, CCNA/CCNP Security, Juniper JNCIP-SEC or relevant industry security certificationsCisco CCNA or CompTIA Network + or relevant networking industry certificationsExperience in project task technical analysis, planning, and estimationExperience with technology capabilities market research, technical analysis/review, and recommendationMin. Citizenship Status Required:
U.S Citizenship.Physical Requirement(s):
NoneLocation:
Crownsville, MD#LI-BQ1Working at DMIDMI is a diverse, prosperous, and rewarding place to work. Being part of the DMI family means we care about your wellbeing. We offer a variety of perks and benefits that help meet various interests and needs, while still having the opportunity to work directly with a number of our award-winning, Fortune 1000 clients. The following categories make up your DMI wellbeing:Convenience/Concierge - Virtual visits through health insurance, pet insurance, commuter benefits, discount tickets for movies, travel, and many other items to provide convenieDevelopment Annual performance management, continuing education, and tuition assistance, internal job opportunities along with career enrichment and advancement to help each employee with their professional and personal develoFinancial Generous 401k matches both pre-tax and post-tax (ROTH) contributions along with financial wellness education, EAP, Life Insurance and Disability help provide financial stability for each DMI employeRecognition Great achievements do not go unnoticed by DMI through Annual Awards ceremony, service anniversaries, peer-to-peer acknowledgment, employee referralWellness Healthcare benefits, Wellness programs, Flu Shots, Biometric screenings, and several other wellness optioEmployees are valued for their talents and contributions. We all take pride in helping our customers achieve their goals, which in turn contributes to the overall success of the company. The company does and will take affirmative action to employ and advance in employment individuals with disabilities and protected veterans, and to treat qualified individuals without discrimination based on their physical or mental disability or veteran status. DMI is an Equal Opportunity Employer Minority/Female/Veterans/Disability. DMI maintains a drug-free workplace.***************** No Agencies Please *****************Applicants selected may be subject to a government security investigation and must meet eligibility requirements for access to classified information. US citizenship may be required for some positions
DMI is a leading global provider of digital services working at the intersection of public and private sectors. With broad capabilities across IT managed services, cybersecurity, cloud migration and application development, DMI provides on-site and remote support to clients within governments, healthcare, financial services, transportation, manufacturing, and other critical infrastructure sectors. DMI has grown to over 2,100+ employees globally and has been continually recognized as a Top Workplace in both regional and national categories.About the Opportunity:DMI (Digital Management, LLC.) is looking for a
Firewall Engineer
with project lead experience and hands-on engineering experience. The Firewall Engineer will be responsible for the engineering, implementation, and support of security solutions for the State of Maryland DoIT Security Operations Center (SOC) with a special focus on enterprise firewall systems. This role will be responsible for performing the following tasks:Duties and Responsibilities:Gap assessment and analysis of security solutions and recommendation of improvement initiatives.Implementation of scalable, redundant, and reliable firewall solutions.Security hardening firewall configurations.Configuration management and control of architectural/design/functional configuration changes to firewalls.Firewall brake-fix troubleshooting, root cause analysis, and support.Firewall patch/upgrade monitoring, reviews, maintenance scheduling and deployment.Management of firewall operational and security audits logs.Definition, development, and configuration of firewall security and operational alerts, dashboards, and reporting.Monitoring firewall operational and security alerts and dashboards.Defining, implementing, and monitoring process/procedures for maintaining the lifecycle firewall policies and rules.Configuration, maintenance, and support of additional firewall services such as URL filtering, Malware Sandboxing Analysis, Threat Intelligence Feeds, Threat Prevention, User ID etc.Provide firewall log correlation support for emerging and retroactive security incident investigations.Support the integration with other security tools such IDS/IPS, SIEM, NACs, VPN etc.Define requirements and develop roles-based Standard Operating Procedure (SOPs) documents.
Qualifications:Education and Years of Experience:At least 6-8 years of hands-on experience in Network Engineering/Architecture.At least five (5) years of technical experience in architecture, design, implementation, support of firewall technologies.Bachelors degree from an accredited college or university with a major in Computer Science, Information Systems, Engineering or related scientific or technical discipline.Required Skills/Certifications :Must have current
Palo Alto Networks Certified Network Security Engineer (PCNSE ) certification or hands-on experience implementing Palo Alto Advanced/NextGen features to include
App-ID ,
User-ID ,
Content-ID ,
URL Filtering ,
Threat Prevention ,
WildFire ,
Virtual Wire ,
Virtual System (VSys) ,
Global Protect ,
NAT Policies ,
Security Profiles ,
Inbound SSL Decryption ,
Outbound SSL Decryption (SSL Forward Proxy) ,
File Blocking , and
Data FilteringHand-on experience with Palo Alto
Panorama
for centralized management of PANOS firewallsSelf-starter, able to gather requirements, plan, execute firewall architecting and deployment efforts.Able to perform gap analysis and initiate and execute architectural improvements.Strong demonstrated experience with network security architecture, design, and implementation best-practices i.e., Defense-in-depth architecture, knowledge of emerging Zero Trust architecture.Hands-on experience with firewall architecture, design, and implementation.Hands-on experience with operational and security hardening configuration for firewall solutions.Hands-on experience with configuration management and change control for firewall solutions.Demonstrated experience with networking and switching protocols and infrastructure services, able to troubleshoot and identify DNS, DHCP, WiFi protocols, NTP, SNMP, routing, switching, and firewall issues affecting connectivity of applications and services.Must have working knowledge and understanding of network infrastructure components such as Routers, Switches, IDS, IPS, NAC, VPN Gateways, Wireless APs etc.Customer-oriented with excellent issue follow-through and resolution abilities.Outstanding leadership and organizational skills.Utilize tools and analytical skills to plan and execute technical changes.Excellent written and oral communication, and presentation skills.Ability to effectively work both autonomously as well as on a team.Outstanding interpersonal skills, strong work ethic, self-motivated and excellent presentation skills.Desired Skills/Certifications:Hands-on experience with Juniper firewallsCISSP, CompTIA Security +, CCNA/CCNP Security, Juniper JNCIP-SEC or relevant industry security certificationsCisco CCNA or CompTIA Network + or relevant networking industry certificationsExperience in project task technical analysis, planning, and estimationExperience with technology capabilities market research, technical analysis/review, and recommendationMin. Citizenship Status Required:
U.S Citizenship.Physical Requirement(s):
NoneLocation:
Crownsville, MD#LI-BQ1Working at DMIDMI is a diverse, prosperous, and rewarding place to work. Being part of the DMI family means we care about your wellbeing. We offer a variety of perks and benefits that help meet various interests and needs, while still having the opportunity to work directly with a number of our award-winning, Fortune 1000 clients. The following categories make up your DMI wellbeing:Convenience/Concierge - Virtual visits through health insurance, pet insurance, commuter benefits, discount tickets for movies, travel, and many other items to provide convenieDevelopment Annual performance management, continuing education, and tuition assistance, internal job opportunities along with career enrichment and advancement to help each employee with their professional and personal develoFinancial Generous 401k matches both pre-tax and post-tax (ROTH) contributions along with financial wellness education, EAP, Life Insurance and Disability help provide financial stability for each DMI employeRecognition Great achievements do not go unnoticed by DMI through Annual Awards ceremony, service anniversaries, peer-to-peer acknowledgment, employee referralWellness Healthcare benefits, Wellness programs, Flu Shots, Biometric screenings, and several other wellness optioEmployees are valued for their talents and contributions. We all take pride in helping our customers achieve their goals, which in turn contributes to the overall success of the company. The company does and will take affirmative action to employ and advance in employment individuals with disabilities and protected veterans, and to treat qualified individuals without discrimination based on their physical or mental disability or veteran status. DMI is an Equal Opportunity Employer Minority/Female/Veterans/Disability. DMI maintains a drug-free workplace.***************** No Agencies Please *****************Applicants selected may be subject to a government security investigation and must meet eligibility requirements for access to classified information. US citizenship may be required for some positions