Arcetyp LLC
Mid-Level Firewall Engineer for Security Operations Center (SOC) Telework
Arcetyp LLC, Washington, District of Columbia, us, 20022
Arcetyp LLC is a growing small business that provides a broad range of consulting services to US Federal Government, US Military, and Commercial clients. Services include Management & IT Consulting, Program & Project Management, and Professional & Admin Services. We are recruiting to fill a position to lead business development activities for a small government contracting firm focused on IT Services and Cyber Security for clients in Civil and DoD markets.
We can't sponsor H1B. We accept direct hire candidates only, W2 employee hires. We do not accept 1099 independent consultants. We do not accept staffing firms. We do not accept corp-to-corp (C2C) candidates.
Arcetyp LLC is looking for an experienced Firewall Engineer with project lead experience and hands-on engineering experience. The Firewall Engineer will be responsible for the engineering, implementation, and support of security solutions for the State of Maryland DoIT Security Operations Center (SOC) with a special focus on enterprise firewall systems. This role will be responsible for performing the following tasks:
DUTIES AND RESPONSIBILITIES:
Gap assessment and analysis of security solutions and recommendation of improvement initiatives.Implementation of scalable, redundant, and reliable firewall solutions.Security hardening firewall configurations.Configuration management and control of architectural/design/functional configuration changes to firewalls.Firewall brake-fix troubleshooting, root cause analysis, and support.Firewall patch/upgrade monitoring, reviews, maintenance scheduling and deployment.Management of firewall operational and security audits logs.Definition, development, and configuration of firewall security and operational alerts, dashboards, and reporting.Monitoring firewall operational and security alerts and dashboards.Defining, implementing, and monitoring process/procedures for maintaining the lifecycle firewall policies and rules.Configuration, maintenance, and support of additional firewall services such as URL filtering, Malware Sandboxing Analysis, Threat Intelligence Feeds, Threat Prevention, User ID etc.Provide firewall log correlation support for emerging and retroactive security incident investigations.Support the integration with other security tools such IDS/IPS, SIEM, NACs, VPN etc.Define requirements and develop roles-based Standard Operating Procedure (SOPs) documents.EDUCATION AND YEARS OF EXPERIENCE:
At least 6-8 years of hands-on experience in Network Engineering/Architecture.At least five (5) years of technical experience in architecture, design, implementation, support of firewall technologies.Bachelor's degree from an accredited college or university with a major in Computer Science, Information Systems, Engineering or related scientific or technical discipline.REQUIRED SKILLS/CERTIFICATIONS:
Must have current Palo Alto Networks Certified Network Security Engineer (PCNSE) certification or hands-on experience implementing Palo Alto Advanced/NextGen features to include App-ID, User-ID, Content-ID, URL Filtering, Threat Prevention, WildFire, Virtual Wire, Virtual System (VSys), Global Protect, NAT Policies, Security Profiles, Inbound SSL Decryption, Outbound SSL Decryption (SSL Forward Proxy), File Blocking, and Data FilteringHand-on experience with Palo Alto Panorama for centralized management of PANOS firewallsSelf-starter, able to gather requirements, plan, execute firewall architecting and deployment efforts.Able to perform gap analysis and initiate and execute architectural improvements.Strong demonstrated experience with network security architecture, design, and implementation best-practices i.e., Defense-in-depth architecture, knowledge of emerging Zero Trust architecture.Hands-on experience with firewall architecture, design, and implementation.Hands-on experience with operational and security hardening configuration for firewall solutions.Hands-on experience with configuration management and change control for firewall solutions.Demonstrated experience with networking and switching protocols and infrastructure services, able to troubleshoot and identify DNS, DHCP, WiFi protocols, NTP, SNMP, routing, switching, and firewall issues affecting connectivity of applications and services.Must have working knowledge and understanding of network infrastructure components such as Routers, Switches, IDS, IPS, NAC, VPN Gateways, Wireless APs etc.
Min. Citizenship Status Required: U.S Citizenship.
Physical Requirement(s): None
Location: Remote
COMPENSATION: Pay and benefits information for this position will be provided to interested candidates that apply. Arcetyp offers a package of compensation and benefits to full-time salaried employees.
Arcetyp is an Equal Opportunity Employer and we highly value diversity of our workforce. We accept resumes from all interested parties and consider applicants for all positions without regard to race, color, religion, sex, national origin, age, marital status, sexual preference, personal appearance, family responsibility, the presence of a non-job-related medical condition or physical disability, matriculation, political affiliation, veteran status, or any other legally protected status.
We can't sponsor H1B. We accept direct hire candidates only, W2 employee hires. We do not accept 1099 independent consultants. We do not accept staffing firms. We do not accept corp-to-corp (C2C) candidates.
Arcetyp LLC is looking for an experienced Firewall Engineer with project lead experience and hands-on engineering experience. The Firewall Engineer will be responsible for the engineering, implementation, and support of security solutions for the State of Maryland DoIT Security Operations Center (SOC) with a special focus on enterprise firewall systems. This role will be responsible for performing the following tasks:
DUTIES AND RESPONSIBILITIES:
Gap assessment and analysis of security solutions and recommendation of improvement initiatives.Implementation of scalable, redundant, and reliable firewall solutions.Security hardening firewall configurations.Configuration management and control of architectural/design/functional configuration changes to firewalls.Firewall brake-fix troubleshooting, root cause analysis, and support.Firewall patch/upgrade monitoring, reviews, maintenance scheduling and deployment.Management of firewall operational and security audits logs.Definition, development, and configuration of firewall security and operational alerts, dashboards, and reporting.Monitoring firewall operational and security alerts and dashboards.Defining, implementing, and monitoring process/procedures for maintaining the lifecycle firewall policies and rules.Configuration, maintenance, and support of additional firewall services such as URL filtering, Malware Sandboxing Analysis, Threat Intelligence Feeds, Threat Prevention, User ID etc.Provide firewall log correlation support for emerging and retroactive security incident investigations.Support the integration with other security tools such IDS/IPS, SIEM, NACs, VPN etc.Define requirements and develop roles-based Standard Operating Procedure (SOPs) documents.EDUCATION AND YEARS OF EXPERIENCE:
At least 6-8 years of hands-on experience in Network Engineering/Architecture.At least five (5) years of technical experience in architecture, design, implementation, support of firewall technologies.Bachelor's degree from an accredited college or university with a major in Computer Science, Information Systems, Engineering or related scientific or technical discipline.REQUIRED SKILLS/CERTIFICATIONS:
Must have current Palo Alto Networks Certified Network Security Engineer (PCNSE) certification or hands-on experience implementing Palo Alto Advanced/NextGen features to include App-ID, User-ID, Content-ID, URL Filtering, Threat Prevention, WildFire, Virtual Wire, Virtual System (VSys), Global Protect, NAT Policies, Security Profiles, Inbound SSL Decryption, Outbound SSL Decryption (SSL Forward Proxy), File Blocking, and Data FilteringHand-on experience with Palo Alto Panorama for centralized management of PANOS firewallsSelf-starter, able to gather requirements, plan, execute firewall architecting and deployment efforts.Able to perform gap analysis and initiate and execute architectural improvements.Strong demonstrated experience with network security architecture, design, and implementation best-practices i.e., Defense-in-depth architecture, knowledge of emerging Zero Trust architecture.Hands-on experience with firewall architecture, design, and implementation.Hands-on experience with operational and security hardening configuration for firewall solutions.Hands-on experience with configuration management and change control for firewall solutions.Demonstrated experience with networking and switching protocols and infrastructure services, able to troubleshoot and identify DNS, DHCP, WiFi protocols, NTP, SNMP, routing, switching, and firewall issues affecting connectivity of applications and services.Must have working knowledge and understanding of network infrastructure components such as Routers, Switches, IDS, IPS, NAC, VPN Gateways, Wireless APs etc.
Min. Citizenship Status Required: U.S Citizenship.
Physical Requirement(s): None
Location: Remote
COMPENSATION: Pay and benefits information for this position will be provided to interested candidates that apply. Arcetyp offers a package of compensation and benefits to full-time salaried employees.
Arcetyp is an Equal Opportunity Employer and we highly value diversity of our workforce. We accept resumes from all interested parties and consider applicants for all positions without regard to race, color, religion, sex, national origin, age, marital status, sexual preference, personal appearance, family responsibility, the presence of a non-job-related medical condition or physical disability, matriculation, political affiliation, veteran status, or any other legally protected status.