Job Requirements
Quantico, VA
Top Secret/SCI Polygraph not specified
Career Level not specified
$140,000 - $180,000
Job Description
The Senior Firewall / Network Security Engineer is responsible for the engineering, architectural design, and implementation of enterprise network and security solutions supporting mission‑critical environments. This role applies advanced, specialized knowledge of computer systems and network security to design, integrate, optimize, and secure complex infrastructures across data centers and cloud environments, including AWS GovCloud. The position operates with a high degree of independent judgment and discretion, translating business, mission, and security requirements into engineered technical solutions in accordance with DoD, DCSA, and industry best practices.
Essential Duties and Responsibilities
Designs, engineers, and architects enterprise firewall and network security solutions using Cisco, Palo Alto, and related security platforms.
Develops and engineers firewall architectures, security policies, and rule frameworks based on risk assessments, mission requirements, and industry standards.
Architects secure network solutions, including firewalls, VPNs, routing, switching, and secure connectivity across on‑premises and cloud environments.
Performs systems and network analysis to identify architectural improvements, security enhancements, scalability needs, and performance optimization opportunities.
Leads engineering integration, testing, and validation efforts to ensure security, operational readiness, and interoperability prior to deployment.
Applies expert knowledge of network protocols, IP addressing, access control mechanisms, routing, switching, and secure network design to ensure efficient and secure data flow.
Engineers capacity planning, resiliency, and performance optimization solutions based on projected system and mission demands.
Translates strategic goals, requirements, risks, and constraints into engineered network and security solutions, presenting technical recommendations to stakeholders.
Establishes and enforces network and security engineering design standards, ensuring alignment with DoD, DCSA, and cybersecurity requirements.
Collaborates with cybersecurity and technical leadership to ensure network architectures support enterprise security posture and modernization initiatives.
Provides technical leadership and mentorship to junior engineers, offering guidance on engineering best practices and solution design.
Researches, evaluates, and applies emerging technologies, trends, and best practices to improve enterprise network and security capabilities.
Produces and maintains authoritative engineering documentation, including network architectures, design diagrams, standards, and technical artifacts.
Provides engineering input to planning and status documentation as required.
Required Qualifications
Bachelor’s degree in Computer Science, Information Technology, Engineering, or a related technical field OR equivalent combination of education and extensive professional experience (minimum 14 years).
Active Top Secret clearance and SCI eligibility.
DoD 8570 / 8140 IAT Level II certification (e.g., CCNA‑Security, Security+ CE, CySA+, GSEC, SSCP, GICSP).
Applicable Network Environment Certification such as CCNP (CCIE preferred) or Palo Alto Next‑Generation Firewall Engineer.
Desired Experience and Skills
Extensive experience engineering enterprise‑scale firewall and network security architectures.
Deep technical expertise with Cisco and Palo Alto security platforms.
Proven ability to exercise independent technical judgment and lead solution design initiatives.
Strong analytical and problem‑solving skills with an engineering mindset.
Excellent communication skills, with the ability to articulate technical solutions to diverse stakeholders.
Essential Duties and Responsibilities
Designs, engineers, and architects enterprise firewall and network security solutions using Cisco, Palo Alto, and related security platforms.
Develops and engineers firewall architectures, security policies, and rule frameworks based on risk assessments, mission requirements, and industry standards.
Architects secure network solutions, including firewalls, VPNs, routing, switching, and secure connectivity across on‑premises and cloud environments.
Performs systems and network analysis to identify architectural improvements, security enhancements, scalability needs, and performance optimization opportunities.
Leads engineering integration, testing, and validation efforts to ensure security, operational readiness, and interoperability prior to deployment.
Applies expert knowledge of network protocols, IP addressing, access control mechanisms, routing, switching, and secure network design to ensure efficient and secure data flow.
Engineers capacity planning, resiliency, and performance optimization solutions based on projected system and mission demands.
Translates strategic goals, requirements, risks, and constraints into engineered network and security solutions, presenting technical recommendations to stakeholders.
Establishes and enforces network and security engineering design standards, ensuring alignment with DoD, DCSA, and cybersecurity requirements.
Collaborates with cybersecurity and technical leadership to ensure network architectures support enterprise security posture and modernization initiatives.
Provides technical leadership and mentorship to junior engineers, offering guidance on engineering best practices and solution design.
Researches, evaluates, and applies emerging technologies, trends, and best practices to improve enterprise network and security capabilities.
Produces and maintains authoritative engineering documentation, including network architectures, design diagrams, standards, and technical artifacts.
Provides engineering input to planning and status documentation as required.
Required Qualifications
Bachelor’s degree in Computer Science, Information Technology, Engineering, or a related technical field OR equivalent combination of education and extensive professional experience (minimum 14 years).
Active Top Secret clearance and SCI eligibility.
DoD 8570 / 8140 IAT Level II certification (e.g., CCNA‑Security, Security+ CE, CySA+, GSEC, SSCP, GICSP).
Applicable Network Environment Certification such as CCNP (CCIE preferred) or Palo Alto Next‑Generation Firewall Engineer.
Desired Experience and Skills
Extensive experience engineering enterprise‑scale firewall and network security architectures.
Deep technical expertise with Cisco and Palo Alto security platforms.
Proven ability to exercise independent technical judgment and lead solution design initiatives.
Strong analytical and problem‑solving skills with an engineering mindset.
Excellent communication skills, with the ability to articulate technical solutions to diverse stakeholders.
group id: kforcecx
We offer roles across all three clearance levels: Confidential, Secret and Top Secret. With a Top Secret Facilities clearance, a proven subcontractor track record and a deep understanding of agencies across Defense, Intelligence, Homeland, Justice and Federal Civilian Sectors, Kforce brings more than 20 years of experience to supporting critical missions at federal, state and local levels.
