GDIT is the leading systems integrator in the Zero Trust Defense sector market—developing and delivering innovative solutions to government customers. Our Zero Trust business continues experiencing rapid growth, and this is an opportunity to join our team and be a part of creating Cybersecurity solutions that make a real impact.

As a Network Engineer on an Enterprise Zero Trust Program for a DoD cleint, your responsibilities will include:

Contributing to the design, implementing, and maintaining a high distributed network aligning to zero trust principles.Contributing to the designing and implementing SD-WAN based network architecture spanning dozens of sites at a global scale.Configuring, installing, and managing network hardware (routers, switches, firewalls) and software.Planning, executing, and documenting network upgrades, expansions, and optimizations. Designing and establishing protocol compatibility standards. Serve as a subject matter expert in zero trust network security tools, cloud security, and firewall architecture.Maintaining comprehensive network documentation, including architecture diagrams, rack elevations, SOPs, and configuration logs. Diagnosing and resolving complex network issues, including those related to performance, security, and connectivity. Investigating and responding to network security incidents, implementing corrective measures, and reporting on security vulnerabilities. Analyzing network traffic, identifying bottlenecks, and optimizing performance. Developing and implementing disaster recovery plans to ensure network resilience. Managing and deploying software patches to network devices to mitigate security vulnerabilities. Supervising and mentoring junior network engineers. Communicating network status, performance, and security information to stakeholders, including management and end-users. Working with other IT teams (e.g., systems administrators, security specialists) to ensure network integration and interoperability. Working with vendors to select, purchase, and implement network equipment. Ensuring that the network meets relevant industry standards, DoD regulations, and DoD ZT requirements as defined in the DoD ZT Execution Roadmap. 

Basic Qualifications:

5-8 years’ of experience in network security or network engineering roles, with a focus on Zero Trust, network security, software defined networks, and SD-WANExperience in designing, implementing, and managing networks, including LAN/WAN and SD-WANKnowledge of zero trust network security best practices, including firewalls, intrusion detection systems, and data security protocols. Deep understanding of routing & switching, multicast, and QoSExcellent troubleshooting and problem-solving skillsKnowledge of common security threats and protections to network, cloud, and endpoint resources.Knowledge and experience in log forwarding and event correlation with an enterprise grade SIEM.Knowledge and experience with public cloud networking and security technologies in AWS, Azure, and/or GCP.Clear and concise written and verbal communication skills.Highly self-motivated.Detail Oriented.

Required Skills/Knowledge:

Current Secret clearanceRelevant certifications required for Base and Compute Environment applicable to DoD 8570 IAT Level IIExperience with network security technologies (Palo Alto, Cisco, Juniper, etc.)Strong expertise in firewall architecture and security best practices.Extensive experience in the design, configuration, troubleshooting, and administration of network security tools and virtual appliances such as firewalls, zero trust network access, and intrusion detection systemsExperience implementing SD-WAN solutionsKnowledge of cloud security and securing cloud applications.Strong working knowledge of and experience with common network protocols including but not limited to: BGP, OSPF, STP, ARP, VLANs, Trunking, LACP, VPCs, ICMP, LDAP, RADIUS, DNS, DHCP, HTTP, TLS, SMTP, SSH, SCPStrong knowledge and hands-on experience with Public Key Infrastructure (PKI) and certificates.Implementation and administration experience with forward and reverse proxies and/or load balancers.

Desired Skills/Knowledge:

Implementation and administration experience with application centric network technologies (load balancers, WAF/WAAP).Strong analytical and troubleshooting skills with the ability to diagnose and resolve complex network issues.Threat intelligence experience (consumption, presentation, and enforcement of indicators)Familiarity with the MITRE ATT&CK framework.Familiarity with NIST SP 800 series.Additional certifications related to Security and Route/ Switch would be a plusBachelor's Degree and 5-8 years of technical experience in Network Security or Network Engineering with large-scale enterprise/global networks in high-paced, diverse environment.

GDIT IS YOUR PLACE:

Full-flex work week to own your priorities at work and at home

401K with company match

Comprehensive health and wellness packages

Internal mobility team dedicated to helping you own your career

Professional growth opportunities including paid education and certifications

Cutting-edge technology you can learn from

Rest and recharge with paid vacation and holidays