Millennium Corporation is hiring a Network Firewall Engineer in Charleston, SC. Candidate must have an active Secret Clearance.
The Network Security Firewall Engineer will configure, monitor and maintain network security equipment including, access control lists (ACLs), layer 3 and 4 firewalls, and layer 4-7 application-aware firewalls.
Implement physical and virtual firewalls.
Manage firewall and network security systems by establishing and enforcing approved policies.
Research and verify ports, protocol and services (PPS) for security compliance.
Possess a thorough understanding of how applications communicate over the network using source and destination IP addresses, ports and protocols.
Ability to analyze network security requirements and implement perimeter security changes.
Serve as a subject matter expert in coordinating and troubleshooting with customers, other infrastructure support activities and business units.
Develop network documentation of security infrastructure.
Troubleshoot a variety of products within a multi-vendor environment.
Monitor network performance and implement performance tuning as necessary.
Utilize industry best practices for security, disaster recovery, business continuity, change control, the engineer will design, configure, manage and troubleshoot a variety of network firewall technologies.
Assist with Business Development activities as required to support Millennium's strategic business objectives, which may include but not limited to participation in technical interviews, creation of technical documentation, general proposal writing support and proposal color reviews.
Must have an active Secret Clearance
Bachelor's degree and 8+ years of Networking experience
Expert level knowledge of Cisco ASA and Palo Alto Firewalls
Experience in administrating and troubleshooting firewalls in medium to large, complex organizations.
Preferred applicants will also have experience with intrusion detection systems, VPN technologies, vulnerability assessment tools, event and log analysis solutions, configuration and change management and other network security systems and devices.
Solid experience configuring and troubleshooting routing and switched infrastructure.
Experience with packet capture and analysis methodologies.
Preferred applicants will also be familiar with government information assurance standards including DISA STIGs, NIST 800-53, IAVAs management, auditing and accreditation processes.
Experience scripting with Python, Java, and or Perl.