Information Assurance and Security Network Engineer

NCI Information Systems, Inc. - Fort Huachuca, AZ3.6

Full-timeEstimated: $94,000 - $120,000 a year
EducationSkillsBenefits
Responsibilities
NCI: The Information Assurance and Security Network Engineer supports a highly-skilled team of technical network engineers responsible for providing capability management, technical engineering, integration, and troubleshooting services to NETCOM in accordance with (IAW) operational evaluation, and policy development practices from Ft. Huachuca, AZ. They will be responsible for 165 CONUS and OCONUS sites providing predictive analysis for network performance and baseline metrics and troubleshoot identified issues either remotely or on-site. Specifically, the Information Assurance and Network Security Engineer will be responsible for analysis and troubleshooting of packet and network data from a security compliance perspective, accreditation packages as a component of the team’s toolkit (to include STIGs, system documentation, IAVM compliance, etc.), ITSM Remedy Ticket Queue Management, monthly bandwidth report, team equipment inventory and accountability, and development of daily briefing slides.

Skills and Qualifications:
The Information Assurance and Security Network Engineer possesses knowledge of, and skill in applying:

Network standards, protocols, and procedures.
Capabilities and applications of network equipment including hubs, routers, switches, bridges, servers, transmission media, and related hardware the organization’s network architecture and infrastructure local area and wide area networking principles and concepts including bandwidth management.
Network systems design, development, testing, installation, operations, management, and maintenance concepts and methods the organization’s network architecture, topology, and protocols.
Assist in the development, configuration, installation, and maintenance of networked systems including local area networks (LANs) and wide area networks (WANs).
Perform routine network configuration management functions.
Provide network services that support business requirements.
Plan, design, develop, and integrate network systems consistent with existing or planned network infrastructures.
Possesses a thorough understanding and ability to apply intermediate concepts of cyber engineering and cybersecurity
Maintains thorough knowledge and understanding of DoD and U.S. Army cybersecurity policies and Risk Management Framework.
Initiates actions to conduct cybersecurity engineering research and analysis and provides recommendations for the implementation of security mechanisms.
Initiates actions to apply advanced concepts of cyber engineering and cybersecurity to development and architecture projects.
Coordinates effort to develop/maintain cybersecurity documentation, concept papers, and test plans required by client policies and the Risk Management Framework.
Analyzes complex information independently and takes appropriate actions, and reviews and implements recommendations from others.
Maintains extensive knowledge and understanding of DoD and U.S. Army engineering efforts, across multiple engineering disciplines.
Prioritizes competing requirements and tasks, and manages long term and short-term obligations.
Initiates actions to evaluate functional operation and performance in light of data collection, baseline metrics and makes recommendations.
Assists in conducting technical assessments of security and surveillance equipment.
Effectively provide engineering guidance to the engineering team.

Experience/Knowledge:
DoD Experience – Army NOSC or DISA Experience Preferred.
Working experience and knowledge in troubleshooting use one or more packet analysis applications: Wireshark, Fluke OptiView XG, NetScout nGenius Performance Manager, NetScout Unified Management Console, NetScout InfiniStream, Riverbed Packet Analyzer.
Working experience and knowledge in troubleshooting use one or more network and application performance management: NetScout nGenius Performance Manager, NetScout Unified Management Console, Riverbed AppResponse Xpert, Riverbed Cascade Express.
Working experience and knowledge in one or more of the following technologies: RedHat Enterprise Linux 5.x and 6.x, MS Windows 7, 8, and 10, MS Windows Server 2008R2, 2012, and 2012R2, Cisco iOS, Juniper OS.
Working experience and knowledge in virtualization;
Working experience and knowledge in networking to include one or more of the following: IPv4/IPv6, VLAN, VRF/VPN, MPLS, routing protocols, QoS, NAC/NAP 802.1x, VoIP, Proxy Services, WAN optimizers, SSL accelerators, EoIP, wireless, VTC, remote access, performance and protocol analyzer, load balancer, IPSec.
Experience with one or more Army Enterprise Tools: MS Active Directory, MS Exchange, MS Center Operations Manager (SCOM), MS Center Configuration Manager (SCCM), MS Windows Server Update Services (WSUS), McAfee Host Base Security System (HBSS), Assured Compliance Assessment Solution (ACAS) and Tenable Security Center and Nessus, CA-Spectrum, NeetScout, Arcsight.
Extensive Network troubleshooting.
Qualifications

MINIMUM REQUIREMENTS:
Candidate must Maintain DoD 8570.01-M (IA) baseline certification(s) at the IAT-II (Security+ CE, SSCP, GSEC, GICSP, CySA+, CCNA Security) or IAT-III (CISA, GCIH, GCED, CISSP (or Associate), CASP, CCNP Security) levels. Maintain full computing environment (CE) certification per DoD 8570.01-M.

Bachelor's Degree in Computer Science, Information Assurance, Information Systems, or other related scientific or technical discipline is preferred with 10 – 15 years' practical experience.
Five (5) to Eight (8) years of technical support experience with IT Network operations, implementation, troubleshooting, and maintenance support as well as supervisory skills in Network operations, management, and personnel.
Current Computing Environment (CE) certification (attainable within 6 months of performance start date): CISCO CCNP, CISCO CCNA, CISCO CCNA Security, Microsoft Certified Solutions Associate (MCSA) or equivalent

Clearance (required at performance start date): TOP SECRET/SSBI with current SCI-eligibility

Preferred Education and Experience:
Certified Information System Security Professional (CISSP) or CompTIA Advanced Security Practitioner (CASP) preferred.

Proactive Analysis Quick Response Qualifications:
Working experience and knowledge in troubleshooting using the following technologies:
Packet Analysis: WireShark, Fluke OptiView XG, NetScout nGenius Performance Manager, NetScout Unified Management Console, NetScout InfiniStream, Riverbed Packet Analyzer,
Network and Application Performance Management: NetScout nGenius Performance Manager, NetScout Unified Management Console, Riverbed AppResponse Xpert, Riverbed Cascade Express
Working experience and knowledge in the following technologies:
Operating Systems: RedHat Enterprise Linux 5.x and 6.x, Microsoft Windows 7 and 8, Microsoft Windows Server 2008R2, 2012, and 2012R2, Cisco iOS, Juniper OS
Virtualization: Hypervisors including VMware and Hyper-V, Virtual networking, Virtual storage
Networking: IPv4/IPv6, LAN, VRF/VPN, MPLS, Routing Protocols (such as BGP, OSPF), QoS, NAC/NAP 802.1x, VoIP, Proxy Services, WAN optimizers, SSL accelerators, DHCP controllers, EoIP, Wireless, VTC, Remote access, Performance and protocol analyzer, Load balancer
IPSec Army Enterprise Tools: Microsoft Active Directory, Microsoft Exchange , Microsoft System Center Operations Manager (SCOM). Microsoft System Center Configuration Manager (SCCM), Microsoft Windows Server Update Services (WSUS), McAfee Host Base Security System (HBSS), Assured Compliance Assessment Solution (ACAS) and Tenable Security Center and Nessus, CA-Spectrum, NetScout, Arcsight

PHYSICAL REQUIREMENTS:
This position requires the ability to perform the below essential functions:

Sitting for long periods
Standing for long periods
Ambulate throughout an office
Ambulate between several buildings
avel by land or air transportation 25%
It is the policy of NCI to provide equal opportunity in recruiting, hiring, training, and promoting individuals in all job categories without regard to race, color, religion, national origin, gender, age, disability, genetic information, veteran status, sexual orientation, gender identity, or any other protected class or category as may be defined by federal, state, or local laws or regulations. In addition, we affirm that all compensation, benefits, company-sponsored training, educational assistance, social, and recreational programs are administered without regard to race, color, religion, national origin, gender, age, disability, genetic information, veteran status, sexual orientation, or gender identity. It is our firm intent to support equal employment opportunity and affirmative action in keeping with applicable federal, state, and local laws and regulations. NCI is a VEVRAA Federal Contractor.