Job Description :
Sr. Firewall Engineer

Location : Washington DC

Interview : Phone and F2F

Duration : 6+ Months

Visa : Only USC



JOB DESCRIPTION :


Hands-on experience with all phases of firewall and network operations, firewall change requests, firewall configuration, network services, and network security
Minimum of 3 years of hands-on experience performing firewall assessments
US Citizenship required
Relevant industry certifications are required, including, but not limited to a CCNP certification or higher




Preferred Qualifications


CCIE, CISSP or similar industry certification
Master’s degree in Information Systems, related discipline or equivalent experience




Responsibilities


Work directly with SOC function to monitor/manage security logs associated with the Cisco ASA554X devices including all modules.
Manage security related controls/policies and IP Fragmentation settings across the enterprise: Enable IP Audit policies, and IV&V on all Firewall configurations
Review and propose rule changes to the firewall to ensure operations
Plan and conduct complex project studies; includes analyzing multiple data sources and publishing results to the team or to the technical user community
Responsible for the planning, design, implementation, organization and operation of Cisco based data communications network and network security devices.
Responsible for troubleshooting network and firewall problems, specifically Cisco ASA’s.
Monitor that the firewall and network system is adequately monitored to identify and solve data communication problems and user performance issues; this includes understanding chronic issues causing inefficiency in operation and seek resolution.
Be a subject matter expert on network and firewall related issues
Draft technical requirements, configuration management, and planning documentation
Support the Security Impact Analysis (SIA) an analysis that is conducted by the security team to review the extent to which changes to the information system will affect the security state of the system.
Participate in testing and planning of operational network segmentation
Perform implementation of security and compliance-based use cases based on the NIST 800-53 Rev4 security controls.