Network Security Engineer
Location: Merrifield
Posted on: June 23, 2025
|
|
|
Job Description:
Title: Network Security Engineers (specializing in Palo Alto)
Location: Remote Duration: Initial 6 months contract plus extension
Work Requirements: US Citizen, GC Holders or Authorized to work in
US Job Description Network Security Engineering services to
validate existing firewall rulesets in place and approve new
firewall requests for client's on-premise and cloud firewalls. The
project requires that all firewall rules be reviewed and optimized,
removing legacy rules, and validating business owners for existing
production rules to meet Automated Cybersecurity Evaluation Toolbox
(ACET) evolving private banking audit requirements. Additionally,
the project requires security engineering services support the
integration of FireMon and ServiceNow ticketing to automate the
quarterly and annual firewall rules compliances reviews. Scope of
Work: Network Security Services • Firewall Rule analysis across
various vendor devices (over 30,000 firewall rules & 11,000
servers) • Ensure new firewall rule requests align with client’s
security and compliance policies • Recommendation of Firewall Rule
security and design improvements • Validation of rules to disable •
In depth troubleshooting of infrastructure as applicable •
Establish and maintain system documentation • Integration support
between FireMon and ServiceNow • Integration support between
Firemon and Illumio • Tracking of Firewall Rule status and their
metrics • Ability to provide OnCall coverage and work after-hour
changes as needed to support project/KTLO efforts Firewall Rule
Configuration and Audit Consulting: • Review existing FireMon rule
audit reports and findings with client’s team (hit counts, unused
rules, etc.) • Determine process for rule owner identification and
cleanup • Review of firewall rules – Cisco and Check Point virtual
firewalls • For each rule, determine current asset owner and
document • For each rule, validate if the firewall rule is still
required for all assets covered by rule (consult Navy Federal rule
owners) • For each rule, if rules contain assets that are no longer
in production or policy that is no longer required document finding
and schedule change control to remove/clean up rule from existing
firewall policy. • Leverage existing firewall management tools for
discovery and maintenance/cleanup: • Adaptive Security Device
Manager (ASDM)/Cisco Defense Orchestrator and FireMon Security
Manager • Determine and document process for validating rules with
client's team members • Monitor ServiceNow ticket queue to avoid
SLA delay for client tickets Key Qualifications: • Bachelor's
Degree in Computer or Electrical Engineering, Computer Science or
related field or equivalent work experience • 7 – 10 years advance
hands on experience and knowledge • General understanding of Cisco
CDO for legacy Cisco ASAs • Knowledge of Palo Alto SCM for NGFW
(Next Gen Firewall) migration and level of effort • Checkpoint
experience needed • FireMon experience needed • Azure Cloud
experience a plus • Palo Alto experience a plus • Splunk experience
needed • Cisco CCNA cert OR CompTia Security (Plus) Certification •
Worked in a larger company environment (preferably financial
institution) • Cross functional communication A Cyber Security
Engineer protects the organization's computer systems and networks
for cyber threats by implementing security measures, monitoring
systems, and responding to incidents 1. Expertise in executing
security measures for protection of data, systems, and networks 2.
Proficiency in firewalls, VPNs, IDS/IPS, web proxies, etc. 3.
Strong attention to detail and problem-solving skills? Our benefits
package includes: Comprehensive medical benefits Competitive pay,
401(k) Retirement plan …and much more! About INSPYR Solutions:
Technology is our focus and quality is our commitment. As a
national expert in delivering flexible technology and talent
solutions, we strategically align industry and technical expertise
with our clients’ business objectives and cultural needs. Our
solutions are tailored to each client and include a wide variety of
professional services, project, and talent solutions. By always
striving for excellence and focusing on the human aspect of our
business, we work seamlessly with our talent and clients to match
the right solutions to the right opportunities. Learn more about us
at inspyrsolutions.com. INSPYR Solutions provides Equal Employment
Opportunities (EEO) to all employees and applicants for employment
without regard to race, color, religion, sex, national origin, age,
disability, or genetics. In addition to federal law requirements,
INSPYR Solutions complies with applicable state and local laws
governing nondiscrimination in employment in every location in
which the company has facilities.
Keywords: , Washington DC , Network Security Engineer, IT / Software / Systems , Merrifield, DC
