Today
DoE Q or L
Unspecified
Unspecified
IT - Hardware
Germantown, MD (On-Site/Office)
Job Details
• Serve in a dual-capacity role that balances high-level network design and architecture responsibilities with day-to-day operational support and device configuration across enterprise environments.
• Administer and maintain a multi-site enterprise network, including the configuration and lifecycle management of routers, switches, firewalls, VPNs, wireless infrastructure, and load balancing technologies.
• Develop scalable and resilient network architectures that support high availability, fault tolerance, and future growth, with an emphasis on alignment with DOE enterprise IT strategy and security policies.
• Engineer and support complex routing strategies involving protocols such as EIGRP, OSPF, and BGP; ensure optimal route redistribution, convergence, and path selection across hybrid connectivity models including DMVPN and MPLS.
• Firewall and Security Integration: Implement and manage next-generation firewall platforms (e.g., Palo Alto), including high availability configuration, SSL decryption, policy optimization, IDS/IPS system configurations, and integration with cloud and on-premises security architectures.
• Design, deploy, and manage hybrid network topologies within Microsoft Azure, including Virtual Networks (VNets), ExpressRoute, peering, NAT Gateway, and firewall solutions to ensure secure and performant cross-premise connectivity.
• Support the implementation and management of NAC solutions such as Cisco ISE, including potential integration with Microsoft Intune to enforce endpoint compliance and identity-based access control.
• Lead and execute infrastructure modernization initiatives, including the planning, implementation, and validation of new networking technologies or the re-architecture of existing environments.
• Leverage network performance tools such as Catalyst Center, SolarWinds and Azure Network Watcher to monitor availability, perform root cause analysis, and implement performance enhancements.
• Maintain accurate technical documentation including topology diagrams, configuration baselines, IP address management, and change control records to support audit readiness and operational continuity.
• Partner with adjacent IT disciplines-including cloud, systems, security-to deliver integrated solutions; provide mentorship and technical leadership to junior technical staff as needed.
Minimum Qualifications
• Bachelor's Degree in Computer Science, Information Technology, or related field or equivalent experience. Master's Degree preferred.
• Cisco CCNP (Routing & Switching or Enterprise).
• 7+ years of experience.
Other Job Specific Skills
• Expert knowledge of TCP/IP, BGP, OSPF, DMVPN, DNS, DHCP.
• Cisco routing/switching with Nexus 9K, Catalyst, ISR, and C8500 series.
• Strong Palo Alto experience including SSL decryption, HA configuration, and IPS tuning.
• Azure networking including ExpressRoute, NSGs, virtual WAN, peering, VPNs.
• Familiarity with Cisco ACI or willingness to rapidly train up for deployment.
• Experience leading physical buildouts and Data Center Moves: rack layout, cable management, port planning.
• PowerShell or Python scripting for automation and config deployment
#cjpost
Job Requirements:
Must have CCNP
• Serve in a dual-capacity role that balances high-level network design and architecture responsibilities with day-to-day operational support and device configuration across enterprise environments.
• Administer and maintain a multi-site enterprise network, including the configuration and lifecycle management of routers, switches, firewalls, VPNs, wireless infrastructure, and load balancing technologies.
• Develop scalable and resilient network architectures that support high availability, fault tolerance, and future growth, with an emphasis on alignment with DOE enterprise IT strategy and security policies.
• Engineer and support complex routing strategies involving protocols such as EIGRP, OSPF, and BGP; ensure optimal route redistribution, convergence, and path selection across hybrid connectivity models including DMVPN and MPLS.
• Firewall and Security Integration: Implement and manage next-generation firewall platforms (e.g., Palo Alto), including high availability configuration, SSL decryption, policy optimization, IDS/IPS system configurations, and integration with cloud and on-premises security architectures.
• Design, deploy, and manage hybrid network topologies within Microsoft Azure, including Virtual Networks (VNets), ExpressRoute, peering, NAT Gateway, and firewall solutions to ensure secure and performant cross-premise connectivity.
• Support the implementation and management of NAC solutions such as Cisco ISE, including potential integration with Microsoft Intune to enforce endpoint compliance and identity-based access control.
• Lead and execute infrastructure modernization initiatives, including the planning, implementation, and validation of new networking technologies or the re-architecture of existing environments.
• Leverage network performance tools such as Catalyst Center, SolarWinds and Azure Network Watcher to monitor availability, perform root cause analysis, and implement performance enhancements.
• Maintain accurate technical documentation including topology diagrams, configuration baselines, IP address management, and change control records to support audit readiness and operational continuity.
• Partner with adjacent IT disciplines-including cloud, systems, security-to deliver integrated solutions; provide mentorship and technical leadership to junior technical staff as needed.
Minimum Qualifications
• Bachelor's Degree in Computer Science, Information Technology, or related field or equivalent experience. Master's Degree preferred.
• Cisco CCNP (Routing & Switching or Enterprise).
• 7+ years of experience.
Other Job Specific Skills
• Expert knowledge of TCP/IP, BGP, OSPF, DMVPN, DNS, DHCP.
• Cisco routing/switching with Nexus 9K, Catalyst, ISR, and C8500 series.
• Strong Palo Alto experience including SSL decryption, HA configuration, and IPS tuning.
• Azure networking including ExpressRoute, NSGs, virtual WAN, peering, VPNs.
• Familiarity with Cisco ACI or willingness to rapidly train up for deployment.
• Experience leading physical buildouts and Data Center Moves: rack layout, cable management, port planning.
• PowerShell or Python scripting for automation and config deployment
#cjpost
Job Requirements:
Must have CCNP
group id: 10238000
