HHS Sr. Network Security Engineer (Firewall)

Rockville, MD - USA

Monthly Salary: Not Disclosed

Posted on: 19 hours ago

Vacancies: 1 Vacancy

Job Summary

cFocus Software seeks a Sr. Network Security Engineer (Firewall / IDS / IPS / WAF) to join our program supporting the Department of Health and Human Services (HHS) This position is remote. This position requires the ability a Public Trust clearance.
Qualifications:

Bachelors degree in Information Technology Cybersecurity or related field (or equivalent experience).
7 years of experience in network security engineering or SOC operations.
Hands-on experience with firewalls IDS/IPS WAF and network monitoring tools.
Strong understanding of TCP/IP routing switching and network protocols.
Experience with zero trust architecture and network segmentation concepts.
Knowledge of NIST SP 800-53 FISMA OMB and HHS security requirements.
Ability to analyze network traffic logs and alerts to identify malicious activity.
Strong documentation and communication skills.
Experience working in a federal or regulated environment preferred.
CISSP CCNP Security CCIE Security GCIH GCIA GCED Palo Alto or Fortinet certifications (preferred).

Duties:

Monitor HRSA networks for intrusions anomalies and threats using approved SOC tools.
Administer configure and maintain firewalls IDS/IPS inline filtering devices and network security platforms.
Review and tune network security policies signatures and profiles to reduce false positives and improve detection.
Monitor firewall and network security device health daily and troubleshoot operational issues.
Develop and deploy indicators of compromise (IOCs) based on emerging threats.
Investigate triggered network security alerts and respond within defined SLA timeframes.
Support zero trust network architecture initiatives including segmentation and identity-aware controls.
Adjust and maintain cloud WAF configurations to protect applications from OWASP Top 10 threats bot activity and DDoS attacks.
Perform upgrades patches and configuration changes following HRSA change management processes.
Develop workflows SOPs and documentation for network security operations.
Provide on-call support per SOC procedures and incident response requirements.
Coordinate with Network Operations and SOC teams to resolve complex network security incidents.
Provide recommendations for tool enhancements and network security process improvements.
Implement automation to improve network security monitoring and response efficiency.

Required Experience:

Senior IC

Bachelors degree in Information Technology Cybersecurity or related field (or equivalent experience).
7 years of experience in network security engineering or SOC operations.
Hands-on experience with firewalls IDS/IPS WAF and network monitoring tools.
Strong understanding of TCP/IP routing switching and network protocols.
Experience with zero trust architecture and network segmentation concepts.
Knowledge of NIST SP 800-53 FISMA OMB and HHS security requirements.
Ability to analyze network traffic logs and alerts to identify malicious activity.
Strong documentation and communication skills.
Experience working in a federal or regulated environment preferred.
CISSP CCNP Security CCIE Security GCIH GCIA GCED Palo Alto or Fortinet certifications (preferred).

Duties:

Monitor HRSA networks for intrusions anomalies and threats using approved SOC tools.
Administer configure and maintain firewalls IDS/IPS inline filtering devices and network security platforms.
Review and tune network security policies signatures and profiles to reduce false positives and improve detection.
Monitor firewall and network security device health daily and troubleshoot operational issues.
Develop and deploy indicators of compromise (IOCs) based on emerging threats.
Investigate triggered network security alerts and respond within defined SLA timeframes.
Support zero trust network architecture initiatives including segmentation and identity-aware controls.
Adjust and maintain cloud WAF configurations to protect applications from OWASP Top 10 threats bot activity and DDoS attacks.
Perform upgrades patches and configuration changes following HRSA change management processes.
Develop workflows SOPs and documentation for network security operations.
Provide on-call support per SOC procedures and incident response requirements.
Coordinate with Network Operations and SOC teams to resolve complex network security incidents.
Provide recommendations for tool enhancements and network security process improvements.
Implement automation to improve network security monitoring and response efficiency.