Network Security Engineer/Architect jobs in United States
cer-icon
Apply on Employer Site
company-logo

GovCIO · 2 weeks ago

Network Security Engineer/Architect

positionUS-VA-Alexandria
timeFull-time
remoteHybrid
senioritySenior Level, Lead/Staff
money$125K/yr - $155K/yr
date8+ years exp

GovCIO is seeking a highly specialized F5 Big-IP Network Security Engineer/Architect to serve as the subject matter expert for our application delivery and security infrastructure. This role focuses on designing, implementing, and managing solutions that ensure critical applications are secure and performant.

ConsultingIT InfrastructureIT ManagementManagement Consulting
badNo H1BnoteSecurity Clearance Requirednote

Responsibilities

Design, implement and manage advanced traffic management solutions using F5 Big-IP Local Traffic Manager (LTM). This includes writing and maintaining complex iRules, developing custom health monitors and configuring advanced persistence profiles
Deploy, tune and manage F5 Big-IP Application Security Manager (ASM) policies to protect web applications against the OWASP Top 10, zero-day attacks and other vulnerabilities (WAF)
Engineer and maintain secure remote and internal access solutions using F5 Big-IP Access Policy Manager (APM), integrating with Two-Factor (2FA) and Multi-Factor Authentication (MFA) services to enforce strong authentication
Configure and administer F5 Big-IP DNS (formerly GTM) for intelligent DNS resolution and global server load balancing (GSLB) across multiple data centers
Serve as the primary point of contact for integrating the F5 Big-IP platform with other critical infrastructure, including NGFWs (Palo Alto, Cisco Firepower), DDI solutions (Infoblox) and enterprise monitoring tools
Manage the SSL/TLS traffic lifecycle, including certificate management, implementing Break and Inspect policies and offloading SSL processing from backend servers
Lead advanced troubleshooting efforts for application availability and performance issues, utilizing tools like Wireshark and F5-specific diagnostics to isolate and resolve problems
Collaborate with network and security teams to design and enforce Zero Trust security models and the principle of least privilege access
Assist in implementing and troubleshooting certificate-based authentication (TLS/SSL, OpenSSL operations and PKI infrastructure)
Conduct deep-dive traffic analysis using tools like Riverbed, Wireshark, TCPDump and SolarWinds to diagnose authentication issues and identify network anomalies

Qualification

F5 Big-IPApplication Delivery ControlWeb Application SecuritySecure Access ManagementSSL/TLS ManagementIRules DevelopmentPacket AnalysisSecurity Infrastructure IntegrationLoad BalancingF5 AutomationF5 BIG-IQRemote Access SolutionsNetwork AutomationCollaboration

Required

Bachelor's degree in computer science, cybersecurity, information technology or a related field + 8 years of professional experience; or 12 years equivalent professional experience
Must meet or exceed DoD 8140 IAT Level II minimum Security+ certification
A minimum of 3 years of dedicated experience in application delivery and network security, with a primary focus on the F5 Big-IP platform
Active Secret clearance
Expert-level, hands-on experience with the F5 Big-IP platform and its core modules: LTM, ASM, APM and DNS (GTM)
Proficiency in iRules development and scripting to customize traffic handling and implement business logic
In-depth knowledge of core application protocols (HTTP/S, DNS, SSL/TLS, TCP/IP) and the ability to perform deep-dive packet analysis
Demonstrable experience integrating F5 solutions with external authentication services (e.g., RADIUS, SAML, LDAP) for 2FA/MFA
Strong understanding of security infrastructure integration, including experience working with Palo Alto NGFWs, Cisco Firepower and Infoblox DDI
Experience managing Load Balancing, WAF, Reverse Proxy and Forward Proxy functions within an enterprise DMZ

Preferred

F5 Certified Administrator (F5-CA) or F5 Certified Technology Specialist (F5-CTS) certifications
Experience with F5 automation using AS3, Declarative Onboarding and BIG-IP's iControl REST API
Familiarity with F5 BIG-IQ for centralized management, monitoring, and analytics
Hands-on experience with secure remote access solutions like Palo Alto Networks Global Protect
Knowledge of adjacent technologies, including VERSA (SD-WAN), FortiGate firewalls, Riverbed (WAN Optimization) and NetBrain (Network Automation)
Experience working in large government or enterprise environments with strict change control and compliance frameworks

Benefits

Employee Assistance Program (EAP)
Corporate Discounts
Learning & Development platform, to include certification preparation content
Training, Education and Certification Assistance*
Referral Bonus Program
Internal Mobility Program
Pet Insurance
Flexible Work Environment

Company

GovCIO

twittertwittertwitter
company-logo
GovCIO is a business consulting firm that focuses on cyber security, digital, data, management and mission services, and IT services.
dateFounded in 2010
location
Fairfax, Virginia, USA
people-size1001-5000 employees
web-link
https://govcio.com

Funding

Current Stage
Late Stage

Leadership Team

leader-logo
Lynn Oakes
Sr. Vice President, Contracts at GovCIO
linkedin
leader-logo
Andre Green
Vice President Special Operations Support Solutions (SOSS) GOVCIO
linkedin

Recent News

Washington Technology
Space, tech and growth leadership moves across the market
2025-11-26
Washington Technology
GovCIO wins $865M Air Force communications contract after protracted protest battle
2025-09-20
citybiz
GovCIO Complete Acquisition of SoldierPoint Digital Health
2025-09-12
Company data provided by crunchbase