Network Security Engineer Architect

New Today

Overview:
GovCIO is seeking a highly specialized F5 Big-IP Network Security Engineer/Architect to serve as the subject matter expert for our application delivery and security infrastructure. This role is centered on designing, implementing and managing solutions that ensure our critical applications are available, secure and performant. You will leverage the full capabilities of the F5 Big-IP platform, including LTM, ASM, APM, and DNS (GTM) to deliver robust load balancing, web application security and secure access. The ideal candidate is a seasoned engineer with deep expertise in F5 technologies and a strong understanding of how they integrate within a broader ecosystem of security and network services. This hybrid position requires working onsite one day per week and residency within a daily commutable distance of Alexandria, VA. Responsibilities: Application Delivery Control: Design, implement and manage advanced traffic management solutions using F5 Big-IP Local Traffic Manager (LTM). This includes writing and maintaining complex iRules, developing custom health monitors and configuring advanced persistence profiles
Web Application Security: Deploy, tune and manage F5 Big-IP Application Security Manager (ASM) policies to protect web applications against the OWASP Top 10, zero-day attacks and other vulnerabilities (WAF)
Secure Access Management: Engineer and maintain secure remote and internal access solutions using F5 Big-IP Access Policy Manager (APM), integrating with Two-Factor (2FA) and Multi-Factor Authentication (MFA) services to enforce strong authentication
Global and DNS Services: Configure and administer F5 Big-IP DNS (formerly GTM) for intelligent DNS resolution and global server load balancing (GSLB) across multiple data centers
Infrastructure Integration: Serve as the primary point of contact for integrating the F5 Big-IP platform with other critical infrastructure, including NGFWs (Palo Alto, Cisco Firepower), DDI solutions (Infoblox) and enterprise monitoring tools
SSL/TLS Management: Manage the SSL/TLS traffic lifecycle, including certificate management, implementing Break and Inspect policies and offloading SSL processing from backend servers
Troubleshooting and Performance Tuning: Lead advanced troubleshooting efforts for application availability and performance issues, utilizing tools like Wireshark and F5-specific diagnostics to isolate and resolve problems
Collaborate with network and security teams to design and enforce Zero Trust security models and the principle of least privilege access
Assist in implementing and troubleshooting certificate-based authentication (TLS/SSL, OpenSSL operations and PKI infrastructure)
Conduct deep-dive traffic analysis using tools like Riverbed, Wireshark, TCPDump and SolarWinds to diagnose authentication issues and identify network anomalies
Qualifications: High School with 9+ years (or commensurate experience) Required Skills and Experience Clearance Required:Active Secret Expert-level, hands-on experience with the F5 Big-IP platform and its core modules: LTM, ASM, APM and DNS (GTM) Proficiency in iRules development and scripting to customize traffic handling and implement business logic In-depth knowledge of core application protocols ( DNS, SSL/TLS, TCP/IP) and the ability to perform deep-dive packet analysis Demonstrable experience integrating F5 solutions with external authentication services (e.g., RADIUS, SAML, LDAP) for 2FA/MFA Strong understanding of security infrastructure integration, including experience working with Palo Alto NGFWs, Cisco Firepower and Infoblox DDI Experience managing Load Balancing, WAF, Reverse Proxy and Forward Proxy functions within an enterprise DMZ Must meet or exceed DoD 8140 IAT Level II minimum Security+ certification A minimum of 3 years of dedicated experience in application delivery and network security, with a primary focus on the F5 Big-IP platform
Preferred Skills and Experience
F5 Certified Administrator (F5-CA) or F5 Certified Technology Specialist (F5-CTS) certifications.
Experience with F5 automation using AS3, Declarative Onboarding and BIG-IP's iControl REST API
Familiarity with F5 BIG-IQ for centralized management, monitoring, and analytics.
Hands-on experience with secure remote access solutions like Palo Alto Networks Global Protect
Knowledge of adjacent technologies, including VERSA (SD-WAN), FortiGate firewalls, Riverbed (WAN Optimization) and NetBrain (Network Automation)
Experience working in large government or enterprise environments with strict change control and compliance frameworks
Company Overview:
GovCIO is a team of transformers--people who are passionate about transforming government IT. Every day, we make a positive impact by delivering innovative IT services and solutions that improve how government agencies operate and serve our citizens.
But we can't do it alone. We need great people to help us do great things - for our customers, our culture, and our ability to attract other great people. We are changing the face of government IT and building a workforce that fuels this mission. Are you ready to be a transformer?
What You Can Expect
Interview & Hiring Process
If you are selected to move forward through the process, here’s what you can expect:
During the Interview Process
Virtual video interview conducted via video with the hiring manager and/or team
Camera must be on A valid photo ID must be presented during each interview
During the Hiring Process
Enhanced Biometrics ID verification screening
Background check, to include:
Criminal history (past 7 years)
Verification of your highest level of education Verification of your employment history (past 7 years), based on information provided in your application
Employee Perks
At GovCIO, we consistently hear that meaningful work and a collaborative team environment are two of the top reasons our employees enjoy working here. In addition, our employees have access to a range of perks and benefits to support their personal and professional well-being, beyond the standard company offered health benefits, including:
Employee Assistance Program (EAP) Corporate Discounts Learning & Development platform, to include certification preparation content Training, Education and Certification Assistance* Referral Bonus Program Internal Mobility Program Pet Insurance Flexible Work Environment
*Available to full-time employees
Our employees’ unique talents and contributions are the driving force behind our success in supporting our customers, which ultimately fuels the success of our company. Join us and be a part of a culture that invests in its people and prioritizes continuous enhancement of the employee experience.
We are an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender, gender identity or expression, sexual orientation, national origin, disability, or status as a protected veteran. EOE, including disability/vets.
Posted Pay Range The posted pay range, if referenced, reflects the range expected for this position at the commencement of employment, however, base pay offered may vary depending on multiple individualized factors, including market location, job-related knowledge, skills, education, experience, and internal equity. The total compensation package for this position may also include other compensation elements, to be discussed during the hiring process. If hired, employee will be in an “at-will position” and the GovCIO reserves the right to modify base salary (as well as any other discretionary payment or compensation program) at any time, including for reasons related to individual performance, GovCIO or individual department/team performance, and market factors. Posted Salary Range: USD $125,000.00 - USD $155,000.00 /Yr.
Apply
Location:
Fairfax County, Va
Salary:
$125,000,000,155,000,000

We found some similar jobs based on your search