Zero Trust Network Engineer

Job Description

GDIT is the leading systems integrator in the Zero Trust Defense sector market-developing and delivering innovative solutions to government customers. Our Zero Trust business continues experiencing rapid growth, and this is an opportunity to join our team and be a part of creating Cybersecurity solutions that make a real impact.

As a Network Engineer on an Enterprise Zero Trust Program for a DoD client, your responsibilities will include:

• Contributing to the design, implementing, and maintaining a high distributed network aligning to zero trust principles
• Contributing to the designing and implementing SD-WAN based network architecture spanning dozens of sites at a global scale
• Configuring, installing, and managing network hardware (routers, switches, firewalls) and software
• Planning, executing, and documenting network upgrades, expansions, and optimizations
• Designing and establishing protocol compatibility standards
• Serve as a subject matter expert in zero trust network architecture
• Maintaining comprehensive network documentation, including architecture diagrams, rack elevations, SOPs, and configuration logs
• Diagnosing and resolving complex network issues, including those related to performance, security, and connectivity
• Analyzing network traffic, to ensure successful system operations
• Developing and implementing disaster recovery plans to ensure network resilience
• Supervising and mentoring junior network engineers
• Working with other IT teams (e.g., systems administrators, security specialists, application engineers) to ensure network integration and interoperability
• Working with vendors to select, purchase, and implement network equipment
• Ensuring that the network meets relevant industry standards, DoD regulations, and DoD ZT requirements as defined in the DoD ZT Execution Roadmap

Basic Qualifications:

• 5-8 years of experience in network security or network engineering roles, with a focus on Zero Trust, network security, software defined networks, and SD-WAN
• Experience in designing, implementing, and managing networks, including LAN/WAN and SD-WAN
• Knowledge of zero trust network security best practices, including firewalls and macro/micro-segmentation
• Deep understanding of routing & switching, multicast, and QoS
• Excellent troubleshooting and problem-solving skills
• Knowledge of common security threats and protections to network, cloud, and endpoint resources
• Knowledge and experience in log forwarding and event correlation with an enterprise grade SIEM
• Knowledge and experience with public cloud networking and security technologies in AWS, Azure, and/or GCP
• Clear and concise written and verbal communication skills
• Highly self-motivated
• Detail oriented

Required Skills/Knowledge:

• Bachelor's Degree and 5-8 years of technical experience in Network Security or Network Engineering with large-scale enterprise/global networks in high-paced, diverse environment
• Current Secret clearance
• DoD 8570 IAT Level II certification
• Experience with network security technologies (Palo Alto, Cisco, Juniper, etc.)
• Strong expertise in firewall architecture and security best practices
• Extensive experience in the design, configuration, troubleshooting, and administration of highly distributed and segmented networks and network security technologies
• Experience implementing SD-WAN solutions
• Expertise with common network protocols including but not limited to: BGP, OSPF, STP, ARP, VLANs, Trunking, LACP, VPCs, ICMP, LDAP, RADIUS, DNS, DHCP, HTTP, TLS, SMTP, SSH, SCP
• Strong knowledge and hands-on experience with Public Key Infrastructure (PKI) and certificates

Desired Skills/Knowledge:

• Implementation and administration experience with application centric network technologies (load balancers, WAF/WAAP)
• Strong analytical and troubleshooting skills with the ability to diagnose and resolve complex network issues
• Familiarity with the MITRE ATT&CK framework
• Familiarity with NIST SP 800 series
• Additional certifications related to Security and Router/Switch are a plus

GDIT IS YOUR PLACE

• At GDIT, the mission is our purpose, and our people are at the center of everything we do.
• .Growth: AI-powered career tool that identifies career steps and learning opportunities
• Support: An internal mobility team focused on helping you achieve your career goals
• Rewards: Comprehensive benefits and wellness packages, 401K with company match, and competitive pay and paid time off
• Flexibility: Full-flex work week to own your priorities at work and at home
• Community: Award-winning culture of innovation and a military-friendly workplace

Work Requirements