Location: Washington, DC
Security Clearance - Public Trust (will sponsor) 

Job Description:

Intellect Solutions is seeking a VPN/Firewall Engineer responsible for providing the management and operational support of the Office of the Comptroller of the Currency’s (OCC) Cisco centric remote access and site-to-site Virtual Private Network solutions. The position requires a self-motivated individual possessing excellent people, verbal, and written communications skills.

SPECIFIC DUTIES

• Candidate must be practically familiar or experienced with next-generation network (NGN) technologies. Key technologies to reference: Cisco Secure Firewall Management Center (FMC), Cisco Secure Firewall Threat Defense (FTD), Cisco ASA hardware and software-based firewalls, and zero trust architecture (ZTA)
• Must have experience with managing and operating a Cisco IPSEC VPN remote access solution using Cisco Secure Client or Cisco AnyConnect
• Must have experience with creating, managing, and operating Cisco site-to-site VPN solutions. Candidate must be knowledgeable of hash algorithms, internet key exchange, IPSEC, and other critical security parameters
• Supports compliance to ensure standardized regulations are adhered to, i.e. FedRAMP security assessment, authorization, and continuous monitoring of VPN and firewall products and services
• Experience analyzing, assessing, monitoring, and troubleshooting VPN and firewall services. Must have the ability to provide sound technical recommendations for short and long-term improvements to achieve better resiliency, operational efficiency, and security compliance, e.g. vulnerability remediation, secure configuration baselines
• Provide tier-3 level troubleshooting support with the most complex data, video, or voice network and hardware problems; research and analyze significant, complex network disruptions.
• Communicate effectively with users, providing clear and concise instructions and updates to troubleshoot and resolve common technical problems, often guiding users through solutions

EXPERIENCE AND EDUCATION REQUIREMENTS
Education/Certification:
Bachelor’s degree preferred
CISSP preferred
CompTIA Security+

Minimum Experience:

•  7-10 years of related experience
•  Next-generation network technologies identified above in Specific Duties the first bullet
• Advanced knowledge of TCP/IP Networking (IPv4/IPv6), DNS, DHCP, Routing Protocols (EIGRP/OSPF/BGP/ISIS), Layer 2/3 Switching, Physical and Data Link layer protocols, MPLS, VLANs, VRF, VPN, Firewalls, RADIUS, Network Management SNMP, Wireless Configurations (802.11 b/g, PEAP, WEP, WPA, etc.), TIC (Trusted Internet Connection), 802.1x port based NAC, Network Segmentation, IPv4 and IPv6
• Experience and knowledge of Internet application publishing including advanced troubleshooting skills and the ability to diagnose access issues from the desktop through firewalls, routers, and switches
• Familiarity with government regulations FISMA and FedRAMP

Key Words:

1. VPN administrator or engineer
2. Cisco FMC, FTD, and Secure Client
3. Firewall administrator or engineer
4. Next-generation networks
5. Network segmentation
6. Zero trust architecture
7. Cloud networking: Amazon Web Services (AWS) and Appian
8. Artificial Intelligence and Machine Learning