Network Engineer, Principal Security Clearance

Position: Network Engineer, Principal with Security Clearance
Join a dynamic and consistently expanding program at GDIT! The US Battlefield Information Collection and Exploitation System eXtended (US BICES-X) program is the cutting edge of secure intelligence sharing, by addressing current and emerging global threats to mission partners, coalition forces, and developing nations. With a globally distributed team aligned with each combatant command, US BICES-X plays a vital role in supporting the warfighter and their missions.

We are seeking a creative and highly motivated professional eager to tackle real-world challenges within a collaborative and fast-paced environment. Responsibilities:
* Lead the end-to-end lifecycle of a complex network solution, ensuring strict compliance with NSA Commercial Solutions for Classified (CSfC) guidelines, leveraging multi-layered encryption and NSA-approved component solutions.

* Ensure continuous operation, availability, and security of the "Enterprise Gray" infrastructure, driving integration and compliance with CSfC principles for secure classified data handling.

* Expertly configure and manage diverse network devices (e.g., routers, switches, firewalls, IDPS, VPN concentrators), validating that all configurations meet CSfC and DoW security standards.

* Rapidly diagnose and resolve complex network issues, including those related to encryption, routing, and access control within the CSfC architecture.

* Establish and enforce stringent security policies; perform regular security audits, vulnerability assessments, and penetration testing to proactively identify and mitigate risks within the accredited CSfC environment.

* Maintain comprehensive documentation for network configurations and security procedures, ensuring audit readiness against NSA, DoW, and other regulatory standards.

* Collaborate with Information System Security Managers (ISSMs), cybersecurity teams, and system administrators to seamlessly integrate security controls and best practices.

* Mentor and cross-train junior network administrators on CSfC principles, secure network operations, and advanced troubleshooting techniques.

* Develop and implement CSfC compliant disaster recovery and business continuity plans to guarantee rapid incident recovery and resilience.

* Monitor network performance, identify bottlenecks, and implement optimizations to ensure efficient and reliable data flow within the secure CSfC environment.

* Provide on-call support for critical network issues, ensuring swift resolution during off-hours.

Required Qualifications:

* Active TS/SCI security clearance.

* 10+ years of direct experience implementing, maintaining, and securing complex enterprise networks.

* Current industry-recognized professional networking and security certifications (e.g., CCNA, Security+ CE, or equivalent).

* Expert-level knowledge of networking and security principles, including routing protocols (OSPF, BGP), encryption protocols (IPSec, SSL/TLS, VPNs), and best practices.

* Demonstrated proficiency with HAIPE encryption devices, network security policy implementation, and security device configuration.

* Proficiency in administering and securing various operating systems and virtualized environments that support network services.

* Strong understanding of DoW and other government security regulations, compliance frameworks, and IT service management methodologies.

* Exceptional verbal and written communication skills with the ability to articulate complex technical concepts to technical and non-technical audiences.

Preferred Qualifications:

* BA/BS in Computer Science, Information Technology, or a related field (or equivalent experience).

* Relevant professional-level networking certifications (e.g., Cisco CCNP, Juniper JNCIP).

* Experience with firewall management, rule sets, and access control systems.

* Knowledge of virtualization technologies (VMware, Citrix, Microsoft).

* Experience with network operations. Work Requirements