Senior Firewall Engineer Location: 2 Massachusetts Ave, N.E., Washington DC, 20212 Or Equinix Data Center, 21715 Filigree Ct. Ashburn, VA 20147 Department: Department of Labor (DOL) Type: Full Time Minimum Experience: Experienced Security Clearance Level: Ability to obtain a DOL Public Trust Clearance The clearance level stated above must be met for consideration for this specific opportunity. Unfortunately, FTC is unable to sponsor at this time. Military Veterans and individuals with disabilities are encouraged to apply!
Favor TechConsulting, LLC (FTC) is seeking a talented Senior Firewall Engineerwith extensive government experience. Essential Duties & Responsibilities
Role Overview: FTC supports the Department of Labor, Bureau of Labor Statistics (DOL BLS) by providing IT Support services. This position will be part of a team responsible for providing engineering, troubleshooting, and implementation of Check Point enterprise firewalls, Cisco ASA, Cisco Firepower, Cisco AnyConnect, Remote (VPN) management solutions, two-factor authentication, log reporting, firewall audits and vulnerability management
Responsibilities:
Ability to take on, with minimum supervision, technical leadership roles and hold experience with enterprise security solutions, IPv4 and dynamic routing, PKI, VPN, OCSP responders, Active Directory/LDAP/SecureID server authentication.
Advanced troubleshooting skills, incident and problem management, overseeing escalations, and has a solid understanding of encryption technologies
Manages network performance and maintain a high security posture
When required, presents security solutions, designs, and project planning and scheduling to the customer management group and peers
Install and maintain firewall devices with all levels of hardware and software support
When required, use network monitoring tools, like Solarwinds, Wireshark, tcpdump, etc.
When needed, propose upgrade, recommend new solutions, process improvements to ensure the customer’s network performs with stability, availability and scalability.
Lead, implement, and manage IT infrastructure projects, including taking ownership of deliverables, schedules, and coordinate resource allocation with the Task Manager
Required Skills & Experience
Excellent communications, documentation and presentation skills required to lead technical deployments, redesigns and proof of concepts
A must-have expertise supporting CheckPoint Firewalls (R77.30 or higher) and/or Cisco ASA/Firepower Firewalls along with AnyConnect VPN client
Expert in all aspects of the firewall device installations, maintenance and usage of a large-scale local and wide area network
Experience in network monitoring tools such as Solarwinds, Wireshark, tcpdump, snoop (or similar network packet capturing tools)
Demonstrates organizational and project planning skills by being a visionary and a self-starter, taking charge of current operations from a high-level, covering all aspects of security operations including, but not limited to: patch management, security device vulnerability remediation, network security designs, working knowledge of endpoint security, client-to-site and site-to-site VPNs, IPSEC tunnels, firewall clustering, Cisco AnyConnect profiles, ASA Clustering, wireless technologies, McAfee Web Proxy and Check Point URL filtering blade, project management, change management, configuration management, and technical project scheduling
Ten (10) years of experience in a large organization responsible for administering, operating, maintaining, and securing a large-scale computer network
Five (5) years of experience in a technical leadership or supervisory role
Five (5) years in testing and implementing PC LAN technologies and computer system applications
Five (5) years of networking administration experience in a large organization or corporation
Thorough knowledge of computer network telecommunications, firewalls, Windows Server operating systems, and TCP/IP protocol
Thorough knowledge of telecommunications, network, computer security issues, and established security practices
Thorough knowledge of PKI and supporting technologies
Thorough knowledge of network management protocols and related standard tools
Thorough knowledge of network-based application software such as Exchange, Oracle, DNS, DNSSec, DHCP, and Internet-Based Domain Naming services and registration process
Thorough knowledge of telecommunications, network, computer security issues, and established security practices
Experience evaluating current networks, identifying deficiencies, and recommending performance improvements
Two (2) years’ experience in installing, configuring, and maintaining public & private enterprise wireless network
Two (2) years’ experience in Web content filtering, firewalls, and VPN
Professional Certification(s): Technical certification (e.g., Cisco Certified Network Professional, Cisco Certified Design Professional, Check Point Certified Admin, Check Point Certified Expert)
Formal Education: College degree Years of Professional Experience: 10
Desired Skills & Experience
Ability to present complex IT solutions to stakeholders
Ability to write solid, clear, detailed technical solutions, implementation plans, schedules, test plans, and document incidents, problem resolution documents, and root cause analysis
Professional Certification(s):
Formal Education:
Years of Professional Experience:
Required Technical/Business Tools Experience
Five (5) years of experience in Check Point Enterprise Firewalls
Five (5) years of experience in Cisco ASA Server and/or Three (3) years of experience in Cisco Firepower
Five (5) years of experience in Cisco AnyConnect VPN client
Physical Requirements
Ability to carry heavy objects, up to 50 lbs.
Additional Information: U.S Citizenship is required for this specific opportunity and all selected applicants will be subject to a government security investigation. This includes but not limited to; meeting the eligibility requirements for access to classified information and the ability to obtain a government-granted security clearance. Individuals may also be subject to a background investigation including, but not limited to; criminal history, employment verification, education verification, drug testing, and creditworthiness. Favor TechConsulting is an Equal Opportunity Employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, age, national origin, marital status, disability, veteran status, sexual orientation, or genetic information.
Our Fortune 500 company is driving a digital transformation and looking for forward-thinking innovators to disrupt how our industry thinks about and uses technology. As one of the world\'s leading employee benefits providers, we help millions of people gain affordable access to benefits that help them protect their families, their finances and their futures.