Firewall Engineer

Job#: 2036691

Job Description:

• Experience with cloud security solutions such as Cloud Access Security Brokers/Microsoft Cloud App Security solution (CASB/MCAS) including complex deployment with multi-cloud, onboarding a variety of cloud applications, configuring CASB policies, and troubleshooting issues with cloud applications and CASB.
• Lead onboarding and migration of cloud applications to (CASB/MCAS) solution. Provide Tier 3 support for issues with cloud security solutions such as CASB/MCAS.
• Build, design, test and deploy perimeter security rules.
• Directs compilation of records and reports concerning perimeter operations and maintenance to analyze the performance of perimeter security systems.
• Provides input to the problem management process, including assessing and evaluating software and hardware anomalies. Supports the root cause analysis efforts to determine problems and develop remediation activities. Interfaces with vendor support service groups to ensure proper support during outages or periods of degraded system performance.
• Collaborate with Cross-Bureaus and Agencies to implement network changes as it relates to perimeter security.
• Supports the escalation of problems from the Tier 2 staff.
• Perform software builds and refreshes for assigned projects.
• Create and Maintain standard operating procedures and guides for existing perimeter hardware and software.
• Attend weekly teleconferences, onsite meetings, and participates in working groups, as related to constant changing security environment.
• Support on-call rotations for after hours support to the Tier 2 staff.

•  Bachelor degree in a computer science/computer engineering related discipline.
•  3-7 years IT network engineering support experience (Tier II, Tier III, network infrastructure implementation and maintenance).
• Strong experience in one or more of the following security devices: Palo Alto firewalls, Panorama management console, FortiGate, A10 Encrypted Traffic Inspection/Application Delivery, and Cisco Firepower.
• Experience supporting the configuration and maintenance of Firewall/DMZ infrastructure including Network and Application Firewall Packet Filtering technologies (Palo Alto, FortiGate, A10).
• Experienced with performing root cause analysis, risk identification, and risk mitigation.
• Knowledgeable with configuring Cisco switches.
• Experienced with network monitoring devices such as HP Openview, Nagios, Zenoss, NeuralStar or other similar SIEM monitoring tools.

• US Citizenship.
• Ability to obtain a Top Secret Clearance.

• Experience developing and configuring SSL encryption/decryption solutions for traffic inspection.
• Experience with Red Hat Linux/CentOS and Ubuntu including administration scripting is a plus.
• ITIL ® Foundation certification.
• Certifications: Palo Alto Networks Certified Network Security Engineer (PCNSE), A10 Certification/Accreditation, FortiGate Engineer, Microsoft Certified Professional (MCP), Network+, Security+.
• Familiarity with DoS environment (data and voice networks, IT security systems, policies and procedures), Foreign Affairs Handbooks (FAHs), Foreign Affairs Manuals (FAMs).
• Interpersonal skills including the ability to collaborate effectively, self-awareness, and excellent written and oral communications.

#clearance
EEO Employer

Apex Systems is an equal opportunity employer. We do not discriminate or allow discrimination on the basis of race, color, religion, creed, sex (including pregnancy, childbirth, breastfeeding, or related medical conditions), age, sexual orientation, gender identity, national origin, ancestry, citizenship, genetic information, registered domestic partner status, marital status, disability, status as a crime victim, protected veteran status, political affiliation, union membership, or any other characteristic protected by law. Apex will consider qualified applicants with criminal histories in a manner consistent with the requirements of applicable law. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation in using our website for a search or application, please contact our Employee Services Department at [email protected] or 844-463-6178.

EEO Employer

Apex Systems is an equal opportunity employer. We do not discriminate or allow discrimination on the basis of race, color, religion, creed, sex (including pregnancy, childbirth, breastfeeding, or related medical conditions), age, sexual orientation, gender identity, national origin, ancestry, citizenship, genetic information, registered domestic partner status, marital status, disability, status as a crime victim, protected veteran status, political affiliation, union membership, or any other characteristic protected by law. Apex will consider qualified applicants with criminal histories in a manner consistent with the requirements of applicable law. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation in using our website for a search or application, please contact our Employee Services Department at [email protected] or 844-463-6178.