Senior Network Security Engineer

Network Engineer III -Senior Network Security Engineer

Overview

We are seeking a Senior Network Security Engineer to support secure network architecture, integration, and engineering activities for Department of Defense (DoD) programs. This role focuses on designing, implementing, and securing enterprise and tactical network environments aligned with NSA Commercial Solutions for Classified (CSfC) and U.S. Army COMSEC requirements.

The ideal candidate brings deep expertise in network security technologies, multi-vendor environments, and secure enclave design, along with hands-on experience in both physical and virtualized infrastructures.

Responsibilities

• Design, architect, and implement secure network solutions supporting classified and unclassified environments
• Configure, administer, and maintain multi-vendor firewalls (Cisco, Juniper, SonicWall, Aruba, etc.)
• Engineer and support VPN solutions (site-to-site and remote access), including dynamic and static routing with VRF
• Develop and maintain multi-enclave architectures (red/black separation, layered security models)
• Implement solutions aligned with CSfC capability packages and DoW cybersecurity standards
• Configure and manage Intrusion Detection/Prevention Systems (IDS/IPS)
• Support SIEM integration, including log aggregation, alerting, and dashboard development
• Build and maintain virtualized environments using VMware technologies
• Deploy, configure, and secure Windows and Linux (RHEL) systems
• Develop and execute automation scripts using Bash and PowerShell
• Perform network testing, troubleshooting, and performance analysis
• Collaborate with government stakeholders to define architecture requirements and resolve technical challenges
• Develop and maintain technical documentation, including architecture diagrams, SOPs, and configuration guides
• All other duties as assigned.

## Qualifications

• Has the demonstrated ability to design/build/test/document solutions.
• Must demonstrate a professional demeanor.
• 5–10+ years of experience in:
• Network engineering
• Cybersecurity / network security
• Enterprise or DoW IT environments
• Strong expertise in:
• Firewalls, VPNs, IDS/IPS, and network segmentation
• Routing and switching protocols (BGP, OSPF, etc.)
• Multi-vendor network environments
• Experience designing and securing complex, multi-enclave networks
• Hands-on experience with:
• VMware virtualization platforms
• Windows Server and Red Hat Enterprise Linux (RHEL)
• Scripting (Bash, PowerShell)
• Ability to work independently and in team-based engineering environments
• Strong written and verbal communication skills

Security/Certification Requirements:

• Experience with Commercial Solutions for Classified (CSfC) architectures
• Familiarity with DoW network security frameworks and COMSEC practices
• Experience supporting Army, C5ISR, or DISA programs
• Knowledge of Key Management Infrastructure (KMI) or secure key handling

• Certifications:

• CISSP
• Security+
• Certified Ethical hacker
• CCNA/CCIE

Clearance:

• DOW Secret level or higher.

Education & Experience:

• Bachelors degree in computer science, Engineering, Cybersecurity or related field.
• 5-10 years of IT experience.
• 4 additional years with direct relatable experience can be substituted

Location:

• Aberdeen Proving Grounds, Maryland.

Travel:

20%

Physical Requirements:

• Prolonged periods of sitting at a desk and working on a computer.
• Must be able to lift up to 25 pounds at times.
• This position requires the ability to communicate information and ideas so others will understand.
• Must be able to exchange accurate information in work situations.
• Must be able to travel by public transportation.

Join the Team:

Tech(x) is a customer centric team, both external and internal customers. This team supports each other to be successful on the job and in meeting the mission. Tech(x) is an Equal Opportunity.