Posted today
Top Secret/SCI
Senior Level Career (10+ yrs experience)
Unspecified
No Traveling
Engineering - Systems
Remote/Hybrid•Washington, DC (On-Site/Office)
Senior Network Security Engineer – Packet Capture & Threat Detection (TS/SCI)
Location: Reston, VA | Southeast Washington, DC | College Park, MD
Clearance Requirement: Active TS/SCI clearance; willingness to take a polygraph exam
Employment Type: Full-Time
About the Role:
We are seeking a senior-level Network Security Engineer to design, deploy, and sustain enterprise-scale packet capture and network detection capabilities supporting mission-critical national security systems. This is a hands-on engineering role focused on implementing and maintaining high-performance packet capture infrastructure (Endace), integrating telemetry into SIEM/SOAR/NDR ecosystems, and supporting Zero Trust-aligned network visibility strategies across data center and cloud environments.
Key Responsibilities:
Design, deploy, and configure enterprise-scale packet capture solutions, including Endace DAG and probe platforms
Architect high-availability, scalable packet capture clusters across data center and cloud environments
Develop packet capture strategies aligned with network architecture and Zero Trust principles
Integrate packet telemetry with SIEM, SOAR, NDR, and EDR platforms
Perform deep packet inspection (DPI) and support network forensic investigations
Maintain and optimize hardware and software performance, including upgrades and patching
Automate workflows using Python, Bash, or PowerShell
Collaborate with security operations, engineering, and architecture teams to enhance detection capabilities
Required Qualifications:
Active TS/SCI clearance with willingness to take a polygraph exam
DoD 8570.01-M IAT Level II certification (Security+ CE, SSCP, CySA+, CCNA-Security, GSEC, GICSP, or CND)
Ability to obtain DoD 8570.01-M CSSP Infrastructure Support certification within 30 days
5+ years of experience in network security engineering, cybersecurity engineering, or SOC tooling
Strong expertise in packet analysis, PCAP workflows, deep packet inspection, and network forensics
Proficiency in Linux administration and scripting (Python, Bash, or PowerShell)
Experience supporting regulated or high-security environments (DoD, IC, FedRAMP, PCI, HIPAA)
Familiarity with Zero Trust Architecture, segmentation principles, and identity-centric policy models
Preferred Qualifications:
Hands-on experience deploying and managing Endace packet capture platforms
Experience with Zeek, Suricata, Arkime, or other NDR technologies
Cloud networking experience in AWS, Azure, or GCP
Advanced certifications such as CISSP, GCIA, GNFA, or GCIH
Strong analytical, troubleshooting, communication, and collaboration skills
Location: Reston, VA | Southeast Washington, DC | College Park, MD
Clearance Requirement: Active TS/SCI clearance; willingness to take a polygraph exam
Employment Type: Full-Time
About the Role:
We are seeking a senior-level Network Security Engineer to design, deploy, and sustain enterprise-scale packet capture and network detection capabilities supporting mission-critical national security systems. This is a hands-on engineering role focused on implementing and maintaining high-performance packet capture infrastructure (Endace), integrating telemetry into SIEM/SOAR/NDR ecosystems, and supporting Zero Trust-aligned network visibility strategies across data center and cloud environments.
Key Responsibilities:
Design, deploy, and configure enterprise-scale packet capture solutions, including Endace DAG and probe platforms
Architect high-availability, scalable packet capture clusters across data center and cloud environments
Develop packet capture strategies aligned with network architecture and Zero Trust principles
Integrate packet telemetry with SIEM, SOAR, NDR, and EDR platforms
Perform deep packet inspection (DPI) and support network forensic investigations
Maintain and optimize hardware and software performance, including upgrades and patching
Automate workflows using Python, Bash, or PowerShell
Collaborate with security operations, engineering, and architecture teams to enhance detection capabilities
Required Qualifications:
Active TS/SCI clearance with willingness to take a polygraph exam
DoD 8570.01-M IAT Level II certification (Security+ CE, SSCP, CySA+, CCNA-Security, GSEC, GICSP, or CND)
Ability to obtain DoD 8570.01-M CSSP Infrastructure Support certification within 30 days
5+ years of experience in network security engineering, cybersecurity engineering, or SOC tooling
Strong expertise in packet analysis, PCAP workflows, deep packet inspection, and network forensics
Proficiency in Linux administration and scripting (Python, Bash, or PowerShell)
Experience supporting regulated or high-security environments (DoD, IC, FedRAMP, PCI, HIPAA)
Familiarity with Zero Trust Architecture, segmentation principles, and identity-centric policy models
Preferred Qualifications:
Hands-on experience deploying and managing Endace packet capture platforms
Experience with Zeek, Suricata, Arkime, or other NDR technologies
Cloud networking experience in AWS, Azure, or GCP
Advanced certifications such as CISSP, GCIA, GNFA, or GCIH
Strong analytical, troubleshooting, communication, and collaboration skills
group id: 91121264
