Network Security Engineer

FAR Group headquartered in Stafford, VA., is a Service-Disabled Veteran Owned Small
Business that provides federal professional services, primarily engaged in providing advanced
information technology, cyber security, management systems support, as well as business
and infrastructure management services.
We are among the most innovative, respected, and ethical providers of technology solutions
to the United States government. Our mission is to provide superior-quality,
innovative, information technology solutions that help federal agencies best aid, serve, and
protect the American people.

Job Title: Network Security Engineer

Job Summary:
FAR Group is currently seeking for a Network Security Engineer to to actively
participate in planning and coordinating the design, installation, and connectivity of computer
and network security systems to ensure stable, scalable, redundant, and secure 24x7 network
operations.

Qualifications:

a. Associate degree in an Information Technology (IT) related field.
b. Ten (10) years of technical experience in IT networking and security.
c. Certifications issued within the last four (4) years as follows:
(1) Prisma Certified Cloud Security Engineer (PCCSE) Certification from Palo Alto
Networks.
(2) Palo Alto Networks Certified Network Security Engineer (PCNSE) Certification.
(3) Cisco Certified Internetwork Expert (CCIE) in Enterprise Infrastructure or
Security Certification.

Responsibilities:

The candidate shall provide the following services:
a. Pro-actively identifying organization requirements, and helping to design, and engineer
implementations that best serve the needs.
b. Performing project-based engineering, design, installation and troubleshooting of data
security networks.
c. Providing assessment, design and implementation services of data and secure networking
environments.
d. Developing comprehensive graphical and text-based design documentation and effectively
managing the implementation process from design to acceptance.
e. Assisting internal groups through capacity planning, maintaining, monitoring and review
of secure data communications networks.
f. Leading migrations or assisting a team of engineers who will migrate traditional/legacy
network security platforms to current/next generation technologies and expose customers
to the full life cycle of defense in depth solutions.
g. Assisting network engineers in troubleshooting critical problems or threat remediation
relating to network security products.
h. Working with the engineering team to successfully implement configuration guidelines,
change management, and standard operating procedures for secure network solutions.
i. Leading, scheduling, providing guidance and coordinating the activities with other team
members to resolve end user problems in a timely and accurate fashion.
j. Generating weekly status reports including project progress, key milestones, and tasks
accomplished, etc.
k. Hosting weekly status meetings/calls with team or on as needed basis.
l. Lifting personal computers, printers, scanners, and other equipment associated with a
standard computer workstation.
m. Reporting as follows:
(1) Weekly report communicating project progress and status,
(2) Weekly time reporting on JIS provided forms, and
(3) Any additional reports as assigned by the supervising manager.

SKILLS, EXPERIENCE, & CAPABILITIES

1. The candidate shall propose resource(s) possessing the following preferred skills,
experience and capabilities:

• a. Five (5) years of experience in the following: (1) Palo Alto Networks next generation firewall services.
  (2) Intrusion Detection and Prevention with Palo Alto networks.
  (3) Content Filtering Palo Alto networks.
  (4) Virtual Private Networks using Palo Alto network systems
• Four (4) years of experience in Complex switching, routing, wireless with Cisco
  Systems.
• Three (3) years of experience in Reverse Proxies, Load Balancing with A10
  networks.
• Two (2) years of experience in Network Access Control - Cisco Identity
  Services Engine (ISE), Free Radius, and Access Control Lists (ACLs).
• General experience with the following:(1) Implementing multifactor authentication solutions with Microsoft.
  (2) Authentication standards - (802.1x) in wired and wireless applications.
  (3) Scalable routing protocols Enhance Interior Gateway Routing Protocol
  (EIGRP), Open Shortest Path Fist (OSPF), and Border Gateway Protocol
  (BGP).
  (4) Enterprise Data Center implementing Micro segmentation.
  (5) Certificate Management, Public Key Infrastructure (PKI).
  (6) Vulnerability management using Nessus, NMAP, Windows, Unix, and
  Linux OS
  (7) experience with Packet/Protocol Analysis using Opnet, Riverbed,
  Wireshark, and taps.
  (8) Hands-on mid-expert level experience
• Experience with Centralized Management using Panorama and SolarWinds,
• Excellent verbal communication skills.
• Ability to communicate effectively, and to establish and maintain effective
  working relationships with peers, end users and vendor development staff, as
  well as all levels of management and judicial personnel as necessary.
  
• Assisting network engineers in troubleshooting critical problems or threat remediation
  relating to network security products.
• Working with the engineering team to successfully implement configuration guidelines,
  change management, and standard operating procedures for secure network solutions.
• Leading, scheduling, providing guidance and coordinating the activities with other team
  members to resolve end user problems in a timely and accurate fashion.
• Generating weekly status reports including project progress, key milestones, and tasks
  accomplished, etc.
• Hosting weekly status meetings/calls with team or on as needed basis.
• Lifting personal computers, printers, scanners, and other equipment associated with a
  standard computer workstation.
• Reporting as follows:(1) Weekly report communicating project progress and status,
  (2) Weekly time reporting on JIS provided forms, and
  (3) Any additional reports as assigned by the supervising manager.

Why FAR Group?

You can take pride in working for a company dedicated to serving our government by
providing the best, most cost-effective solutions for the US Government. Our work helps the
Government US secure our nation, support the efforts of our military and intelligence communities,
and provide lifesaving medical services to our soldiers, vets, and their families.