Enterprise Information Services, Inc.

  • Firewall Engineer (Network 4)

    Job Location US-DC
    # of Openings
    Targeted Job Start Date
  • Overview

    The Division of Technology and Network Management (DTNM) is responsible for the operation, maintenance, and enhancement of the Bureau of Labor Statistics (BLS) local and wide area network. This includes end-user helpdesk services, local network engineering and support, wide area network engineering and support, central e-mail systems, central storage systems, central Oracle platforms, central Weblogic platforms, hardware repair, and operational security controls, such as firewalls.


    • Advanced level supporting Cisco ASA and AnyConnect VPNs (a must), remote access solutions (i.e., two factor authentications), AAA servers, syslog and policy management.  Similar knowledge and skillsets with Checkpoint firewalls
    • Ability to take a technical leadership role and has experience with enterprise security solutions, IPv4 and routing, PKI, OCSP, AD, LDAP and SecureID servers
    • Advanced troubleshooting skills, incident reporting and handling, working escalations, and has a solid understanding of encryption technologies
    • Expert in all aspects of the installation, maintenance and usage of a large-scale local and wide area network
    • Manages network performance and maintains security posture
    • Experience in network monitoring tools such as Solarwinds, Wireshark, tcpdump, snoop (or similar network packet capture tools)
    • Excellent communication, documentation and presentation skills
    • Demonstrates organizational and project planning skills by being a visionary and a self-starter, taking charge of current operations from a high-level, covering all aspects of security operations including, but not limited to: patch management, vulnerability remediation, network security designs, working knowledge of endpoint security, client-to-site and site-to-site VPNs, IPSEC, Cisco AnyConnect profiles, ASA Clustering, wireless technologies, enterprise proxies and web-filtering technologies, project management, change management, configuration management, and scheduling


    • Ten (10) years of experience working in a large organization responsible for administering, operating, maintaining, and securing a network infrastructure
    • Five (5) years of experience in a technical leadership or supervisory role
    • Five (5) years of experience in engineering, testing implementing and upgrading Cisco ASA firewalls and Cisco AnyConnect VPN solutions
    • Thorough knowledge of network telecommunications, endpoint security, Windows Server operating systems, and TCP/IP protocol
    • Two (2) years of experience supporting Web content filtering/proxy and wireless technologies
    • Thorough knowledge of PKI and supporting technologies
    • Thorough knowledge of network-based protocols such as Exchange, Oracle, DNS, DNSSec, DHCP, and Internet-Based Domain Naming services and registration process
    • Regular business hours work along with scheduled maintenance weekend support (as needed)
    • Certifications desired: CCNA Security or CCNP Security and or CCSE Checkpoint
    • Must be able to pass a government background check

    EIS is an Equal Opportunity Employer/M/F/V/Disabled.


    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share on your newsfeed