Firewall/VPN Design Engineer

  • Provide technical leadership in the design, integration, and testing of complex large-scale computer networks
  • Assist the Government Lead in the daily engineering duties on systems
  • Design and evaluates communication hardware and software, troubleshoots Local Area Network (LAN)/Body
    Area Network (BAN)/Wide Area Network (WAN) and other network related problems, provides
    technical expertise for performance, design and configuration of networks
  • Provide Marine Corps, Defense Information Systems Agency (DISA) and Joint interoperability of network design,
    integration and implementation
  • Provide design and integration of multivendor solutions utilizing
    Cisco, Juniper, Brocade and other vendor technologies such as Juniper Security Appliances (SSL-VPN
    and VPN), McAfee Firewalls, and FortiGate Firewalls
  • Perform Capacity and Demand Management
    activities in accordance with the USMC Circuit Management processes
  • Schedule conversions and
    cutovers and supports traffic analysis and traffic shaping design plans
  • Perform network routing utilizing Border Gateway Protocol (BGP), Enhanced Interior Gateway Routing Protocol (EIGRP),
    Open Shortest Path First (OSPF) routing and Virtual routing and forwarding (VRF)
  • Perform network security utilizing VRF, Multiprotocol Label Switching (MPLS), access control list (ACL), IPSec and
    Layer 2 Virtual Private Network (L2 VPNs)
  • Monitors Rights Management Services for
    administrators, users and groups
  • Design the capabilities and features that allow end users to
    access internal and external web content via Hypertext Transfer Protocol (HTTP) and Hyper Text Transfer Protocol Secure (HTTPS) protocols
  • Design the capabilities for caching and proxy to
    enhance information access and performance
  • Design control over the Actively protects the
    content that may be accessed through the proxy (i.e. filter by category, allow policy application
    scheduling, and filter category updates from a Government approved industry provider).
  • Develop, update, track, and perform IP scheme and address management
  • Assist with the development and
    integration of identity and access management requirements. Integrate with public key
    infrastructure (PKI) certificates and network accounts to support two-factor authentication for all Active Directory (AD) domain account categories and eliminate the need for password-based authentication
  • Expert knowledge of Domain Name Server (DNS) and Dynamic Host Configuration Portal (DHCP)
  • Perform tasks associated with Stateful Packet Filtering Network Firewall, Application Firewall, and Web Application Firewall
  • Design Uniform Resource Locator (URL)
    filtering, anti-malware, HTTP and HTTPS inspections.
  • Perform tasks associated with application
    networking ports and protocols, Information Assurance (IA), routing and LAN.
  • Must possess ITIL V3
  • Must possess professional-level certifications in one or more technology related vendor solutions such as Cisco Certified Network Professional (CCNP) Security, Fortinet Certified Network Security Professional (FCNSP), Juniper Networks Certified Specialist Security (JNCIP-SEC), Certified
    Modeling & Simulation Professional (CMSP), or equivalent certification, or resume as accepted by Government demonstrating sufficient experience in lieu of certification


  • ITIL V3 and at least one of CCNP, FCNSP, JNCIP-SEC, CMSP or equivalent certification, or resume as accepted by Government
    demonstrating sufficient experience in lieu of certification
  • Juniper, Palo Alto, Fortinet

  • Ten or more (10+) years of experience in telecommunications and/or data communications

Want to apply later?

Type your email address below to receive a reminder

Apply to Job

ErrorRequired field
ErrorRequired field
ErrorRequired field