COIFirewallIDS-IPS Engineer

We are seeking a highly skilled and innovative COI/Firewall/IDS-IPS Engineer to join our team in the greater DMV area supporting the Army National Guard.

Responsibilities

• Lead design implementation and lifecycle management of nextgeneration firewalls (NGFW) IDS and IPS across COI onpremises cloud and hybrid environments.
• Architect segmented network environments applying zerotrust leastprivilege and defenseindepth principles.
• Develop and maintain firewall policies ACLs NAT VPN architectures and security rule sets governing interenclave and external connectivity.
• Perform deeppacket inspection signature tuning anomaly detection refinement and trafficflow validation to detect APTs lateral movement C2 and data exfiltration.
• Integrate NGFW/IDS/IPS telemetry with SIEM and SOAR platforms to enhance correlation detection and incident response.
• Conduct technical risk assessments and control validations aligned to NIST SP 80053 NIST SP 80041 DoD STIGs and RMF requirements.
• Execute rulebase optimization reviews configuration audits and compliance assessments to reduce attack surface and improve detection fidelity.
• Lead troubleshooting and rootcause analysis for complex network security incidents; coordinate containment and remediation with SOC network and system teams.
• Provide architectural guidance for highavailability deployments encrypted traffic inspection secure remote access and secure system onboarding.
• Maintain detailed documentation dataflow diagrams change control records and evidence to support continuous monitoring and accreditation.

#ENOCS

Qualifications

• Minimum of 8 years with BS/BA; Minimum of 6 years with MS/MA; Minimum of 3 years with PhD

• Clearance: Active TS/SCI clearance.

• Candidate must meet ONE of the following:

  • Masters degree or Ph.D. in Computer Science Cybersecurity Data Science Information Systems Information Technology Software Engineering or a related field; OR
  • Relevant DoD/military training (example: Security Architect (Advanced) Playlist); OR
  • Relevant professional certification or equivalent experience (examples: CCNP Enterprise CISM CISSPISSAP CISSPISSEP GCIA GDSA GICSP).

• Required experience and skills:

  • Network/security engineering experience with at least 3 years designing and operating NGFW/IDS/IPS in enterprise or DoD environments.
  • Handson expertise with firewall platforms IDS/IPS technologies TLS/SSL inspection VPNs NAT ACLs and highavailability clustering.
  • Experience tuning signatures creating detection logic and validating detections using packet capture and telemetry analysis.
  • Proficiency integrating telemetry into SIEM/SOAR developing correlation rules and enabling automated playbooks for response.
  • Strong knowledge of NIST SP 80053/80041 DISA STIGs RMF control families and compliance/audit evidence practices.
  • Proven incident response coordination rootcause analysis and crossfunctional remediation leadership.
  • Excellent documentation skills for architecture diagrams rulebase rationalization and change control artifacts.

• Desired:

  • Prior DoD/COI/ARNG networksecurity or CCRI support experience.
  • Experience with encrypted traffic inspection at scale TLS decryption architectures and privacy/inspection tradeoffs.
  • Familiarity with cloudnative firewall/IDS services and hybrid integration patterns.
  • Experience advising senior leadership on carrier/provider escalation SLA risk and architectural tradeoffs.

#ENOCS

Peraton is a next-generation national security company that drives missions of consequence spanning the globe and extending to the farthest reaches of the galaxy. As the worlds leading mission capability integrator and transformative enterprise IT provider we deliver trusted highly differentiated solutions and technologies to protect our nation and allies. Peraton operates at the critical nexus between traditional and nontraditional threats across all domains: land sea space air and cyberspace. The company serves as a valued partner to essential government agencies and supports every branch of the U.S. armed forces. Each day our employees do the cant be done by solving the most daunting challenges facing our customers. Visit to learn how were keeping people around the world safe and secure.