Network Security (CND) - Firewall Administrator -TS/SCI - Molesworth

6 days left

Molesworth, Cambridgeshire
May 04, 2017
May 31, 2017
Full Time
Designs and defines system architecture for new or existing computer systems.


  1. Performs complex systems development and design work that may include logic design, I/O design, firmware development, model formulation, manufacturing and development cost projections, computer architecture analysis and design, and analog or digital systems engineering
  2. Performs systems modeling, simulation, and analysis
  3. Reviews completion and implementation of system additions and/or enhancements and makes recommendations to management and/or clients
  4. Plans and directs upgrades of operating systems and designs systems enhancements
  5. Develops documentation on new or existing systems
  6. Develops and directs tests to ensure systems meet documented user requirements
  7. Identifies, analyzes, and resolves system problems. 8. Provides system/equipment/specialized training and technical guidance
  8. Determines system specifications, input/output processes, and working parameters for hardware/software compatibility
  9. Provides guidance and work leadership to less-experienced systems engineers and may have supervisory responsibilities
  10. Serves as liaison with clients, participating in meetings to ensure client needs are met
  11. Maintains current knowledge of relevant technology as assigned
  12. Administer computer network defense (CND) test bed(s), and test and evaluate new CND applications, rules/signatures, access controls, and configurations of CND service provider managed platforms
  13. Coordinate with Computer Network Defense (CND) Analysts to manage and administer the updating of rules and signatures (e.g., intrusion detection/protection systems, anti-virus, and content blacklists) for specialized computer network defense (CND) applications
  14. Create, edit, and manage changes to network access control lists on specialized computer network defense (CND) systems (e.g., firewalls and intrusion prevention systems)
  15. Identify potential conflicts with implementation of any computer network defense (CND) tools within the CND service provider area of responsibility (e.g., tool/signature testing and optimization)
  16. Perform system administration on specialized computer network defense (CND) applications and systems (e.g., anti-virus, audit/ remediation) or Virtual Private Network [VPN] devices, to include installation, configuration, maintenance, and backup/restoration
  17. Assist in identifying, prioritizing, and coordinating the protection of critical computer network defense (CND) infrastructure and key resources
  18. Must have a good understanding of networks at the packet level and be able to analyze packet captures at the expert level.
  19. Knowledge of information technology (IT) security principles and methods (e.g., firewalls, demilitarized zones, encryption)
  20. Installs, configures, tests, operates, maintains, and manages network based firewalls
  21. Troubleshooting firewall infrastructure problems
  22. Defining and managing firewall policies.
  23. Must have experience using CND tools such as Enterprise Security Information and Event Management Systems (SIEM), Intrusion Detection and Prevention Systems (IDS, IPS), Web Content Monitoring Systems (Palo Alto), Firewall and Syslog logs.
  24. Firewall experience: Cisco ASA, Cisco IOS FW, Palo Alto
  25. Network TAP/SPAN aggregators: Cisco Nexus with Data Broker, Gigamon, Ixia
  26. Participates in special projects as required

Education Bachelors Degree in Computer Science, Engineering or a related technical discipline, or the equivalent combination of education, technical training, or work/military experience.

  1. 8-10 years of related systems engineering experience
  2. Advanced knowledge of systems engineering principles, methods, and techniques
  3. Knowledge of the associated hardware, software, and equipment
  4. Professional certification in one or more specific technologies may be required, depending on job assignment
  5. Must possess and maintain a US Top Secret/SCI Security Clearance
  6. Must be able to achieve Security+ CE Certification (or equivalent) within 90 days of hire for positions requiring elevated privileges and ITIL V3 Foundation within six months of hire
  7. Additional specific certifications may be required
  8. This position may be required to complete short-term deployments to austere locations worldwide
The work is typically performed in an office environment, which requires normal safety precautions; work may require some physical effort in the handling of light materials, boxes or equipment


The above job description is not intended to be, nor should it be construed as, exhaustive of all responsibilities, skills, efforts, or working conditions associated with this job


Requests for reasonable accommodations will be considered to enable individuals with disabilities to perform the principal (essential) functions of this job

 As a trusted systems integrator for more than 50 years, General Dynamics Information Technology provides information technology (IT), systems engineering, professional services and simulation and training to customers in the defense, federal civilian government, health, homeland security, intelligence, state and local government and commercial sectors.With approximately 32,000 professionals worldwide, the company delivers IT enterprise solutions, manages large-scale, mission-critical IT programs and provides mission support services.GDIT is an Equal Opportunity/Affirmative Action Employer - Minorities/Females/Protected Veterans/Individuals with Disabilities.