IT Network / Firewall Engineer / Secret Clearance / Stateful Firewalls/ Blue Coat / VPN Job in Arlington, Virginia US

IT Network / Firewall Engineer / Secret Clearance / Stateful Firewalls/ Blue Coat / VPN

Exciting Opportunity with CSC Customer, US AID, in Arlington VA. Must have an Active Secret Clearance to be considered. General description: Day to day operations consist of troubleshooting application issues that occur on the enterprise network, as well as investigate wide area network VPN connectivity with remote offices that are OCONUS. Extensive work the change control process is part of the weekly work-load in which the candidate may be required to shepherd change requests through the process. The supported organization utilizes both stateful and application firewalls in order to secure their networks throughout the enterprise which is managed by the Firewall Operations group. On-call duty rotation and periodic afterhours work will be required and is shared throughout the group. The position being advertised is for first shift, with hours ranging from 0600 - 1800; with 8 hours selected out of that range. Essential Job Functions * Monitor, configure, and provide up to Tier III troubleshooting firewall systems and Blue Coat content filtering solution. * Monitor ticket queue and respond to incident and requests. * Troubleshoot application issues that occur on the enterprise network, as well as investigate wide area network VPN connectivity with remote offices that are OCONUS. * Review, audit, and update firewall rule bases; implement VPN tunnels. * Troubleshoot wide area network communications problems related to firewalls, VPNs and routing. * Communicate with technicians around the world with varying levels of English language and technical proficiency. Essential Job Functions Leads and coordinates the maintenance of complex data, voice or video network hardware and systems; investigates and resolves complex network and hardware matters of significance; researches, analyzes, isolates and resolves errors; assesses and evaluates current and future systems. Provides technical support and guidance on network design issues. Provides problem resolution of complex problems to less experienced personnel. Evaluates and tests data, voice or video networking technologies to establish their potential use. Designs appropriate testing routines or scripts; may conduct more complex testing to meet specified requirements. Designs, implements and maintains more complex LAN, WAN, or Voice Systems in accordance with specified requirements. Analyzes data, voice or video network documentation and assists in communicating to management regarding the current operational status of networks. Determines methods and procedures for new data, voice or video technologies to ensure performance. Determines approach for customer, based on assessment of customer needs. Provides consultation, support and guidance to organizations and clients. May develop and conduct training as needed or appropriate. Participates in discussions regarding project decisions and project direction at the executive level. Manages client expectations and balances the needs of organization and client to ensure satisfaction for all relevant parties. Participates in proposal efforts and sales calls to ensure product meets client specifications. Prepares proposal documentation and information to meet customer requirements. Recommends data, voice or video network investment decisions to management and customers based on results of independent assessment of current and future network performance, stability, and network management issues. Performs cost analyses and vendor comparisons to ensure cost-effective and efficient operations; measures feasibility of various approaches, makes recommendations as appropriate. Provides leadership and work guidance to less experienced personnel. Qualifications Basic Qualifications Bachelor's degree or equivalent combination of education and experience Bachelors degree in engineering, computer science, management information systems, or related field preferred Six or more years of experience in data, voice or video networks Experience working with multiple technical platforms (e.g., mainframe, two-tiered client-server, three-tiered client-server) and at least two network systems (e.g., Novell, Windows NT) Experience working with network systems, networking principles, data, voice or video Experience working with network software and hardware, data, voice or video Experience working with proprietary software and hardware Possess Department of Defense (DoD) security access and/or DoD security clearance Other Qualifications * Must have at least at least 4 years experience with Stateful Firewalls (Juniper or Netscreen firewalls a plus) * Must have extensive experience with the creation, troubleshooting and implementation of firewall policies. * Must have experience with proxy, URL and content filtering devices as well as understanding of transparent proxy methods using WCCP * Must be able to demonstrate a strong knowledge of network security * Must have an in-depth understanding of networked applications that traverse security devices with the ability to efficiently troubleshoot such traffic. * Skill level must be such that the candidate is able to handle 90% of daily issues independently and be able to respond to issues and tasks as they arrive with minimal direction. * Skilled at analysis to identify root causes and recommend / implement associated process or system improvements * Must be able to quickly isolate complex issues and know when those issues should be escalated. * Ability to troubleshoot WAN and LAN network problems as they relate to the firewall topology and configuration * Experience evaluating network and firewall designs and providing recommendations to enhance security posture. * Experience with documenting procedures and operations manual * Must be able to work well independently and as part of a team * Must have good oral and written communication skills. * Occasional extended, weekend and off-hours work required. * Must be able to work extended or modified hours as required. * Some local travel required.