Network Security Engineer
Location — – Annapolis, Maryland Need Locals
duration —60+ months
Need Onsite Interview
AOC is seeking proposals from prospective Offerors to provide one (1) Network Security Engineer. The Network Security Engineer will actively participate in planning and coordinating the design, installation, and connectivity of computer and network systems to ensure stable, scalable, redundant, and secure 24×7 network operations.
OFFEROR RESOURCE QUALIFICATIONS
1. The Offeror shall propose resource(s) that meet the following minimum qualifications:
a. Associate degree.
b. Active certifications as follows:
(1) Palo Alto Networks Certified Network Security Administrator (PCNSA) Certification or Palo Alto Networks Network Security Professional Certification.
(2) Cisco Certified Network Associate (CCNA) Enterprise or (CCNA) Security Certification.
2. The AOC prefers Offeror proposed resource(s) to have the following qualifications:
a. Ten (10) years of CONUS technical experience in IT networking and network security.
b. Associate’s degree in an Information Technology (IT) related field, as determined by the AOC.
c. Certifications that are currently active or expired within three (3) years of proposal submission as follows:
(1) Palo Alto Networks Certified Network Security Engineer (PCNSE) Certification or Palo Alto Networks Next-Generation Firewall Engineer Certification or Palo Alto Networks Network Security Analyst Certification.
(2) Cisco Certified Network Professional (CCNP) Enterprise or (CCNP) Security Certification.
OFFEROR RESOURCE(S) SKILLS, EXPERIENCE, & CAPABILITIES
1. Offeror shall propose resource(s) possessing the following preferred skills, experience, and capabilities:
a. Five (5) years of experience with:
(1) Palo Alto Networks next generation firewall services.
(2) Intrusion Detection and Prevention with Palo Alto networks.
(3) Content Filtering Palo Alto networks.
(4) Virtual Private Networks using Palo Alto network systems.
(5) Data Loss Prevention
(6) TLS/SSL Inspection
b. Four (4) years of experience in Complex switching, routing, wireless with Cisco Systems.
c. Three (3) years of experience in Reverse Proxies, Load Balancing with A10 networks.
d. Two (2) years of experience in Network Access Control – Cisco Identity Services Engine (ISE), Free Radius, and Access Control Lists (ACLs).
e. General experience with the following:
(1) Implementing multifactor authentication solutions with Microsoft.
(2) Cloud based virtual networking and security services
(3) Authentication standards – (802.1x) in wired and wireless applications.
(4) Scalable routing protocols Enhance Interior Gateway Routing Protocol (EIGRP), Open Shortest Path Fist (OSPF), and Border Gateway Protocol (BGP).
(5) Enterprise Data Center implementing Micro segmentation.
(6) Certificate Management, Public Key Infrastructure (PKI).
(7) Vulnerability management using Nessus, NMAP, Windows, Unix, and Linux OS
(8) Packet/Protocol Analysis using Opnet, Riverbed, Wireshark, and taps.
(9) Centralized Management using Panorama, SolarWinds
(10) Major server and desktop operating systems and utilities
f. Ability to:
(1) To work independently, troubleshoot and provide mentoring to junior associates.
(2) Communicate effectively when providing presentations.
(3) Produce technical documents (diagrams, design documents, project plans and schedules, and user instructions) as require