Network Security Engineer

Job opening ID
3139

Posting title
Network Security Engineer

Roles and responsibilities
Must be a US Citizen
Estimated duration of 18 months with the potential for extension or conversion.
W2 with full benefits
Customer and contract specific training will be required and provided.
Labor Category: Network Engineer III

Job Description:
We are seeking a Network Security Engineer in support of Jet Propulsion Laboratory, to provide institutional and flight customers with advanced networking solutions and support. As a Network Security Engineer you will resolve one-off application and hardware integration issues, gather application requirements, implement standards, make best-practice recommendations, and find resolutions to complex issues, to and including mission critical systems resilient network connectivity within campus, and our business partners.

• Plans, designs, develops, and implements network engineering plans for wide-scale WAN / LAN firewall security schemes for
customers;
•Provides advanced knowledge in field in all customer interaction situations to resolve highly complex problems including receipt of specifications, design, test, and response to service requests;
• Performs network systems engineering including performance analysis, maintainability analysis, capacity analysis, and reliability
analysis;
• Establishes contingency plans and anomaly resolution plans for complex computer networks;
• Debugs and tests firewalls, plans projects, and performs needs assessments;
• Prepares and oversees cost/benefit estimates, presentations, negotiations, installation, problem resolution, and multi-vendor
product integration;
• May provide initial implementation support of networks to assure proper execution and provides resolution for system failures or
degradation;
• Forecasts network needs and works with other information systems areas to develop policies and procedures to resolve the most
complex and unique technical problems;
• Negotiates system requirements with users and resolves complex problem;
• Performs highly complex root cause analysis;
• Defines systems requirements and resolves highly complex problems;
• Implements networks and/or network applications;
• Applies highly complex network tools and performs analysis of various network technologies and network research;
• Provides problem and incident investigation and recommends resolution for highly complex problems;
• Performs complex and wide-ranging job functions and activities across disciplines;
• Work is evaluated upon completion to ensure objectives and institutional goals have been met;
• Regular use of creativity and innovation to address critical issues;
• Analysis of situation or data requires identification, review and interpretation of highly complex factors as well as decisions as to
policies, procedures and practices;
• Exercises discretion and independent judgment in evaluating potential approaches and solutions to critical problems and
determining appropriate resolutions;
• Interactions normally involve presenting, validating and analyzing complex information;
• Initiates interaction with colleagues or functional partners outside own organization on a frequent basis;
• Frequent interaction with vendors, industry partners and other NASA centers;

Required Skills:
• Must be a US Citizen
• Offer contingent on ability to successfully pass a background check and drug screen
• 3+ years of with Palo Alto or Juniper Firewall engineering experience;
• 5+ years of experience in firewall installation, configuration, maintenance, and troubleshooting;
• Practical knowledge of protocols OSPF, EIGRP, BGP, MPLS, VRF, IPSEC, QOS, DNS, VTP, Broadcast, Multicast and GRE;
• Practical working knowledge of Juniper SRX, Cisco ACS, F5 security module, and Palo Alto firewalls;
• Practical working knowledge of Pulse Secure VPN and NAC profiler;
• Working knowledge of Cloud security and cloud best practices;
• Understanding and wide application of advanced principles, theories, concepts and techniques in network and communications
engineering;
• Knowledge of applicable industry and/or academic practices and standards for firewalls, WANs and LANs and telecommunication
interfaces, with a working knowledge of network security and network security practices, support of a Security Operations Center,
network switch and routing protocols, familiarity of network services applications;
• Ability to perform problem identification, reporting, and resolution of task;
• Knowledge of applicable industry and/or academic practices and standards in Virtual Private Networks;
• Working knowledge of NAC 802.1x, SSL decrypt, and Certificate base authentications deployments;
• Knowledge of DDOS mitigation, URL filtering, Proxies, CASB, NAC, and SSL decryption;
• Experience with designing high traffic networks and security practices for Data Center Networks, which includes security, traffic
engineering, network redundancy, and disaster recovery;
• Multidisciplinary knowledge regularly used in the application and development of advanced principles, theories and concepts in
network engineering and operations;

Desired Skills:
• Working knowledge of a programming language like Python, Shell, Bash, Perl, Java, API, Ansible, JSON, SOAP, Ruby, or REST;
• Extensive experience gathering requirements from different business units, stakeholders and engineering teams;
• Recent experience in systems engineering applied to computing or network architectures;
• Achievement in developing breakthrough solutions to challenging technical problems;
• Cross-functional Network Project Management experience a plus.


Number of positions
1

Location
Pasadena

State
California