Network Engineer (Cisco Zero Trust)
Job Location:
Washington, DC - USA
Monthly Salary:
Posted on:
Vacancies:
Job Summary
PLEASE NOTE:
- It is a Hybrid position in Washington D.C. Metro.
- Clearance Requirement: Public Trust Tier 2 will be required after onboarding
- Full Time
Summary:
We are seeking an experienced Network Engineer to serve as Key Personnel supporting the Clients enterprise network this role you will design implement and maintain secure network architectures that enforce Zero Trust principles. You will be responsible for ensuring that all Cisco network devices including switches routers and perimeter systems are properly configured hardened and continuously monitored according to strict federal security standards.
- Architecture & Zero Trust: Implement and maintain network security controls aligned with NIST SP 800-53 and enforce Zero Trust network architecture principles in accordance with NIST SP 800-207. Design and execute network segmentation micro-segmentation and least-privilege network access controls.
- Infrastructure Operations: Configure manage and troubleshoot Cisco routing switching and network services including VLANs DNS DHCP and VPNs. Perform root cause analysis (RCA) for network incidents performance degradation and outages.
- Security & Compliance: Secure public-facing and perimeter network assets using ingress/egress filtering firewall rule optimization and multi-factor authentication. Manage 802.1X port-based network access controls and configure centralized logging for enterprise SIEM platforms.
- Maintenance & Vulnerability Management: Conduct continuous monitoring and vulnerability assessments in alignment with the NIST Risk Management Framework (RMF). Maintain automated patch management firmware updates and hardware/configuration baselines using Cisco Secure Configuration Guides.
- Documentation & Leadership: Serve as a technical advisor for complex service desk tickets and collaborate across cloud and cybersecurity teams. Develop and maintain accurate network diagrams configuration documentation and Standard Operating Procedures (SOPs). Ensure all changes follow formal change control processes with security impact analyses.
Requirements
Mandatory Qualifications:
- Must be a U.S. Citizen or hold Permanent Residence Status.
- Must hold active highly relevant IT networking and security certifications (e.g. CCNP CCNA Security or equivalent) that have been actively maintained for a minimum of 5 years. Expired certifications or those never used professionally will not be accepted.
- Extensive hands-on experience designing and operating Cisco-based network infrastructures (core distribution access and edge layers).
- Proven background hardening network devices and supporting incident response activities within federal frameworks (NIST SP 800-53 NIST SP 800-207 and RMF).
- Must support continuous real-time monitoring of network infrastructure.
Required Skills:
Mandatory Qualifications Must be a U.S. Citizen or hold Permanent Residence Status. Must hold active highly relevant IT networking and security certifications (e.g. CCNP CCNA Security or equivalent) that have been actively maintained for a minimum of 5 years. Expired certifications or those never used professionally will not be accepted. Extensive hands-on experience designing and operating Cisco-based network infrastructures (core distribution access and edge layers). Proven background hardening network devices and supporting incident response activities within federal frameworks (NIST SP 800-53 NIST SP 800-207 and RMF). Must support continuous real-time monitoring of network infrastructure
