Network Security Engineer SME - FBI ISBOS

JOB TITLE: Network Security Engineer (SME)

GOVERNMENT AGENCY: Federal Bureau of Investigation (FBI), Infrastructure Services & Back Office Support (ISBOS)

LOCATION: Fully Remote; Employee will be required to travel to Clarksburg, WV upon hire for a 2-day initial orientation

POSITION TIMING: Contingent on award; expected contract start date June 2025

BENEFITS: Health, Dental and Vision, 401(k), Flexible Spending Account (FSA), 11 Paid Federal Holidays, PTO, education reimbursement

CLEARANCE REQUIREMENT: Candidate must hold an active Top-Secret clearance

ITC Federal is an information technology and consulting company focused on servicing the needs of the Federal Government. ITC's mission is to apply earned expertise in information technology and information assurance/security to assist this client in achieving its mission. ITC is located in Fairfax, VA and offers outstanding compensation and benefits plan and a challenging and rewarding professional work environment.

ITC is seeking a highly skilled and experienced Network Security Engineer to join our team supporting The Federal Bureau of Investigation (FBI) Criminal Justice Information Services (CJIS) Division. As part of the CJIS Division, you will be instrumental in equipping law enforcement, national security, and intelligence community partners with the critical criminal justice information necessary to protect the United States while ensuring the preservation of civil liberties.

In this critical role, you will be responsible for managing, securing, and optimizing the network infrastructure that supports the FBI's mission of providing criminal justice information to law enforcement, national security, and intelligence community partners. The Network Security Engineer will work with both program leads and partners to ensure timely completion of security objectives and manage various aspects of information systems security.

Monitoring & Management: Add and manage nodes in Splunk and Riverbed for effective monitoring and performance analysis.
• Automation & Updates: Update and maintain monitoring tools using Ansible for automated configurations and deployments.
• Collaboration: Collaborate with program leads and DOJ partners to ensure objectives are met on time and network security is maintained.
• IT Security Management: Manage the security of information technology systems, including backups, firewalls, routers, and overall infrastructure security.
• Security Policy Guidance: Provide guidance on the design and management of information systems security policies, implementation, and management for globally distributed MPLS infrastructures.
• Network Support: Provide network security management for Windows servers and resolve routing and NAT issues using tcpdump and other diagnostic tools.
• System Upgrades & Security Policies: Implement system upgrades and enforce new security policies in accordance with agency guidance and best practices.
• Troubleshooting & Protocols: Troubleshoot complex LAN/WAN infrastructures, including routing protocols (BGP, EIGRP, OSPF), VPNs, web proxies, and XML gateways for enterprise web services.
• Routing & VPN Expertise: Work with various networking concepts such as BGP, EIGRP, DMVPN, and other LAN/WAN technologies to optimize performance and security.
• Enterprise Security Standards: Recommend and implement enterprise information assurance and security standards and solutions.
• Security Program Development: Develop and evaluate security programs and recommend solutions to meet customer requirements.
• Violation Management: Identify, report, and resolve security violations to ensure the integrity and confidentiality of systems and data.
• System Engineering & Design: Perform system engineering tasks related to major systems design, integration, and implementation, including personnel, hardware, software, and facilities.
• Security Architecture Development: Analyze, design, and develop security features for system architectures, ensuring systems meet required security standards.
• Vulnerability & Risk Analysis: Conduct vulnerability/risk analyses of computer systems and applications at every stage of the system development life cycle.
• System Security Tuning: Perform system security tuning, security monitoring, account management, and review of software upgrades and patches, including operating systems.
• Interface Management: Monitor and perform management of script writing, storage interfaces, network interfaces, and other systems interfacing.
• Testing & Certification: Design and execute security system tests, and support certification and accreditation activities for all systems and services.

REQUIRED:

• Minimum of 10 years total experience in IT with a heavy Network/Network Security focus, with at least two years of current experience supporting and troubleshooting various computing devices and operating systems.
• Technical Expertise:

• Proficiency in networking and cybersecurity technologies, including a strong understanding of networking protocols (BGP, EIGRP, OSPF, DMVPN, etc.) and application layer protocols (RTP, RTSP, FTP, DNS, HTTP).
• Experience with dynamic host configuration (DHCP) and Linux/Unix-based operating systems.
• Expertise in managing firewalls, routers, and network security policies.
• Splunk experience/exposure, preferred

• Security Clearance: Active Top Secret clearance.
• Methodology Experience: Experience working in an Agile organization utilizing frameworks such as Scrum, Extreme Programming (XP), Kanban, and SAFe.

DESIRED:

• FBI Program Experience: Prior exposure to FBI IT/Infrastructure programs and operations is highly desirable, as it will allow for a faster integration into the CJIS Division's mission and objectives.
• Bachelor's Degree in Engineering, System Management, Business Administration, or a related field, preferred

• Certifications: CompTIA A+, CompTIA Security+ certified, CompTIA Advanced Security Practitioner (CASP+) certified, or Cisco Certified Cybersecurity Professional (CCCP) preferred.

WORK ENVIRONMENT AND PHYSICAL DEMANDS: Candidate must be able to function in general office environment.

ITC Federal is an equal opportunity/affirmative action employer and will not discriminate against any application for employment on the basis of age, race, color, gender, national origin, religion, creed, disability, veteran status, marital status, sexual orientation, genetic information, military status, disability, or sex including pregnancy and childbirth or related medical condition or on any other basis prohibited by law.