M.C. Dean

Senior Security Network Engineer (m/w/d)

ab sofort

70173 Stuttgart


Position Summary

In this role, you will design, model, configure, install, and test network security infrastructures (Firewall/IPS/IDS/SEIM) systems for DoD, government, and private companies. You will implement and integrate complex network security systems such as firewalls, IPS/IDS, packet brokers, switches, routers, wireless access and bridging infrastructures, data center infrastructure, security control devices and software defined networking (SDN) technologies for on premise, and hybrid deployments within an Information System (IS). Essential responsibilities and activities include but are not limited to:

  • Collaborating with stakeholders and domain experts to define requirements, design, implement, and document functional multifaceted IS networks and to ensure project progress and resolve challenges as they arise
  • Researching new technologies to fully understand implementation requirements and implications for integration with other systems
  • Developing and implementing network security strategies, architectures, and rulesets to be implemented at the enterprise level
  • Performing IS hardening functions and audits of existing network infrastructures including IP addressing, hosted devices, circuit loads, and traffic flows
  • Creating and supporting disaster recovery procedures and continuity of operations plans
  • Troubleshoot and debugging complex network problems and recommending operational efficiency improvements
  • Required

  • Applicants selected will be subject to a government security investigation and may meet eligibility requirements, including U.S. Citizenship, for access to classified information; DoD Secret clearance and up is required
  • MS and 5 + years of the following Progressive Experience or
  • BS and 7 + years of the following Progressive Experience
  • Designing, implementing operating and maintaining network security technologies and providing end-user support
  • Knowledge of DoD Regulations, Standards, Policies and Procedures for Information Systems (IS)
  • Working knowledge of DoD DISA Security Technical Implementation Guides (STIGs) and Security Requirements Guides (SRGs)
  • Strong MS Word, MS Excel, MS Visio and Autodesk AutoCAD skills
  • Cisco Certified Network Professional (CCNP) ***or*** Juniper Networks Certified Internet Professional (JNCIP)
  • Able to meet the following qualifications within 90 days: DoD IA Workforce Qualifications (DoD 8570.01-M) - Information Assurance Management (IAM) Level II or higher
  • Proficient

  • Specialized in Enterprise Network Security Architectures: Firewall Architectures, IPS/IDS Architectures, Identify Management, Zero Trust, Break and Inspect, Enterprise WAN/LAN
  • Enterprise core services such as DNS, DHCP, NTP, and Directory Services
  • Information system (IS) device hardware requirements to include physical space, power & cooling
  • Transmission mediums to include copper cabling (Ex. CAT5E, CAT6) and fiber cabling (Ex. OS2, OM3)
  • Experienced

  • Enterprise Class network security Hardware: Cisco NextGen Firewalls (Firepower Threat Defense), Palo Alto Next Generation Firewalls, IPS/IDS (Tipping Point), Packet Brokers, Cisco ISE, F5, and other related DoD enterprise hardware
  • 3+ of the following Network Operating Systems (NOS): IOS, IOS-XE, IOS-XR, NX-OS, AireOS, ASA, FTD, Junos OS, PAN-OS, or equivalent
  • 1+ of the following Operating Systems (OS): Window Server OS, Linux OS, Unix OS, or equivalent
  • Knowledge

  • Software Defined Networking (SDN) technologies for Access, WAN, & Data Center
  • Firewalls, IDS/IPS, VPN, Packet Broker, Load-Balancer technologies
  • Voice & Video Collaboration infrastructure and technologies to include Call Manger/Gateway and Endpoints
  • Data Center infrastructure, Service Provider infrastructure and/or Security Control infrastructure
  • Awareness

  • Cloud infrastructure, Virtual Server Infrastructure (VSI) and/or Virtual Desktop Infrastructure (VDI)
  • Storage Area Network (SAN) infrastructure
  • Project management life cycle framework to include Initiation, Planning, Execution and Closure
  • Coding languages including Python and Ansible
  • Abilities

  • Exposure to computer screens for an extended period of time
  • Sitting for extended periods of time
  • Reach by extending hands or arms in any direction
  • Have finger dexterity in order to manipulate objects with fingers rather than whole hands or arms, for example, using a keyboard
  • Listen to and understand information and ideas presented through spoken words and sentences
  • Communicate information and ideas in speaking so others will understand
  • Read and understand information and ideas presented in writing
  • Apply general rules to specific problems to produce answers that make sense
  • Identify and understand the speech of another person
  • Applicants for this position may be required to prove that they have received the COVID-19 vaccine or demonstrate that they have a valid religious or medical reason not to be vaccinated.

    EOE Minorities/Females/Protected Veterans/Disabled
    VEVRAA Contractor



    M.C. Dean