VPN - DMZ and WAN Network Engineer jobs in United States
cer-icon
Apply on Employer Site
company-logo

Leidos · 1 day ago

VPN - DMZ and WAN Network Engineer

positionNorfolk, VA
timeFull-time
remoteOnsite
seniorityMid, Senior Level
money$108K/yr - $195K/yr
date4+ years exp

Leidos is an industry and technology leader serving government and commercial customers with smarter, more efficient digital and mission innovations. They are seeking a VPN, WAN & DMZ Network Engineer to support the largest IT services program for the United States Navy, responsible for designing, implementing, and maintaining global network security solutions.

ComputerGovernmentInformation ServicesInformation TechnologyNational SecuritySoftware
badNo H1BnoteSecurity Clearance RequirednoteU.S. Citizen Onlynote

Responsibilities

Support Current Operations for the United States Navy by providing VPN, WAN, DMZ, Firewall, and Cisco Network Engineering Subject Matter Expertise (SME) for the largest Intranet in the world. A qualified candidate for this position would be responsible for network modification, operation, integration, maintenance, security, and implementation of services for the as-fielded NMCI network
Collaborates with the Network Operations Center, Network Administrators, and the Network Engineering Team to define and/or continuously improve:
Network Security Appliances (i.e., DMZ, VPN, Firewalls, WAN, Cisco ASA/Firepower solutions)
Test and Validate Automation and best practice insertion opportunities
Leads development of Network SOPs/TTPs
Continuous Service Improvements (CSI)
System performance tuning and enhancements
Create and maintain Engineering Implementation Plans (EIP)
Plans and executes network upgrades and maintenance activities with the NMCI Operations Manager, NOC Lead, Release Management team, and other key stakeholders
Tier III escalation support and vendor engagement supporting Incident Management activities
Active participation in Root Cause Analysis for Problem Management activities
Ensure compliance with Security Technical Implementation Guides (STIGs) and pre-STIGs to maintain secure and compliant network configurations
Develop and maintain Enterprise Infrastructure Planning (EIP) documentation to support network design, implementation, and lifecycle management
Support the Contract Data Requirements List (CDRL) processes by preparing and delivering required documentation, reports, and deliverables in accordance with contract requirements
Conduct pre-STIG assessments and remediation to ensure systems meet Department of Defense (DoD) security standards prior to formal STIG implementation
Collaborate with stakeholders to align network engineering efforts with enterprise-level infrastructure planning and ensure adherence to established processes and standards

Qualification

VPN engineeringWAN infrastructureDMZ managementCisco network appliancesJuniper firewallsNetwork security solutionsRouting protocolsNetwork architectureIncident managementProblem managementTeam collaborationDocumentation skills

Required

Requires B.S. Degree and 4-8 years of prior relevant experience. Work experience may be substituted for degree at Hiring Manager's discretion
U.S. Citizen with an active DoD Secret security clearance
Must currently possess an active DoD 8570.01 IAT Level II Certification i.e., CCNP Security, CISSP, or CASP+
Must currently possess an active Associate-level Network Vendor Certification (from one of the following Vendors): Cisco, Juniper, F5 Networks
Ability to work or be called in to work during off-hours to meet customer mission support requirements
Participate in on-call rotation for Incident Management responsibilities among the Transport Operations team
Network Subject Matter Expert for operations providing Tier-III support to the NOC watch staff
Perform highly technical maintenance and configuration to firewalls, VPNs, DMZ appliances, WAN infrastructure, and Cisco network devices
Extensive experience engineering and troubleshooting networks, including routing, switching, MPLS, VPNs, WAN technologies, routing protocols (i.e., BGP, OSPF, IS-IS), switching protocols (i.e., Spanning Tree Protocol, VLANs, LLDP, VoIP), Multicast protocols, and emerging network technologies
Strong understanding and in-depth knowledge of IP network/subnet addressing
Extensive knowledge of defense-in-depth principles, Network architecture, Modern Network Topologies, Network appliance integrity, and common networking security elements

Preferred

Experience with Cisco network appliances, including Cisco ASA, Cisco Firepower, Cisco ISR/ASR routers, and Cisco Catalyst switches
Proficiency in configuring and troubleshooting Cisco VPN solutions, including AnyConnect and site-to-site VPNs
Familiarity with Cisco SD-WAN technologies and Cisco DNA Center for network automation and management
Ansible, Python, IaC network automation experience
Palo Alto, Juniper, Cisco, Arista experience
IPS (Intrusion Prevention Systems) Trellix Juniper experience

Benefits

Competitive compensation
Health and Wellness programs
Income Protection
Paid Leave
Retirement

Company

Leidos

twittertwittertwitter
Glassdoor3.9
company-logo
Leidos is a Fortune 500® innovation company rapidly addressing the world’s most vexing challenges in national security and health.
dateFounded in 1969
location
Reston, Virginia, USA
people-size10001+ employees
web-link
https://www.leidos.com/

Funding

Current Stage
Public Company
Total Funding
unknown
2025-02-20Post Ipo Debt
2013-09-17IPO

Leadership Team

leader-logo
James Carlini
Chief Technology Officer
linkedin
leader-logo
Amy Smith
Senior Vice President, Government Affairs
linkedin

Recent News

Fortune
Fortune 500 Power Moves: Which executives gained and lost power this week
2025-12-20
MarketScreener
Leidos Names Theodore Tanner Chief Technology Officer
2025-12-16
Benzinga.com
Citigroup, Leidos Holdings And More On CNBC's 'Final Trades'
2025-12-16
Company data provided by crunchbase