Firewall Engineer

SMS Arlington , VA 22201

Posted 2 months ago


SMS Is Seeking a Firewall Engineer on the DISA GSM-O program supporting the Joint Service Provider (JSP). The Firewall Engineer is a member of the JSP Firewall team that is responsible for managing and administrating multiple levels of firewalls across a variety of security zones throughout JSP networks and enclaves. The Firewall Team is also responsible for creating, deploying, and configuring new firewall contexts or virtual firewalls to support business and operational needs.

As a dynamic systems integrator, SMS offers proven solutions in engineering, operations, cybersecurity, and digital transformation. With expertise in modernizing and optimizing legacy infrastructure and systems, ensuring operational efficiency, and designing, implementing, and managing secure environments, SMS supports business and mission goals with proficiency, quality, and integrity.

SMS has been serving the advanced information technology needs of the federal government since 1976, delivering talented teams and innovative, cost-effective solutions and services to support our customers' missions for more than 40 years. SMS is headquartered in McLean, Virginia, with offices and on-site operations at customer locations throughout the United States. For additional information on SMS, visit

Submit your resume today!


  • Create, deploy, and configure new firewall contexts or virtual firewalls

  • Apply firewall modifications in line with JSP procedures and within established timelines

  • Manage firewalls in accordance with STIG, Ports, Protocols and Services Management (PPSM), DISA, and National Security Agency (NSA) requirements

  • Optimize firewall performance

  • Correct findings or issues identified by the Firewall Assurance Program

  • Oversee the completion of all firewall changes (routine small, medium, large to include expedited and emergency)

  • Provide after-hours support for high-priority firewall issues

  • Potential travel up to 10% of time


  • Bachelor's degree and 8+ years of Firewall experience; additional related years of experience is accepted in lieu of a degree

  • 3+ years of Firewall experience within the DOD environment

  • Must have a certification that satisfies DoD-8570 IAT Level 2 requirements upon start

  • Must have a Juniper, Cisco, Palo Alto certification upon start

  • Demonstrated knowledge of Implementation of Perimeter and Internal Firewalls (both physical and virtual contexts)

  • Demonstrated advanced experience in managing standard baseline configuration across numerous firewalls

  • Demonstrated advanced experience in evaluating rules to ensure maximum security while minimizing redundancy in rules

  • Demonstrated experience with researching and fielding new and innovative firewall technology

  • Must have an active DoD Secret security clearance and be Top Secret - Sensitive Compartmented Information (TS/SCI) Eligible (DIA Adjudicated or capable of reciprocal acceptance by DIA)

SMS is an Equal Opportunity Employer.

icon no score

See how you match
to the job

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Firewall Engineer

General Dynamics

Posted 3 months ago

VIEW JOBS 3/10/2020 12:00:00 AM 2020-06-08T00:00 Location: USA VA Arlington Full Part/Time: Full time Job Req: RQ41640 Type of Requisition: Regular Clearance Level Must Currently Possess: Other Clearance Level Must Be Able to Obtain: None Suitability: Agency Specific Public Trust/Other Required: Job Family: Network Engineering Job Description: We are GDIT. The people supporting and securing some of the most complex government, defense, and intelligence projects across the country. We ensure today is safe and tomorrow is smarter. Our work has meaning and impact on the world around us, but also on us, and that's important. GDIT is your place. You make it your own by embracing autonomy, seizing opportunity, and being trusted to deliver your best every day. We think. We act. We deliver. There is no challenge we can't turn into opportunity. And our work depends on a Firewall Engineerfor theFDICinfrastructure program in Arlington, VA. U.S. Citizenship and background investigation is required; you must have a current clean financial background. Task and responsibilities in this role include, but are not limited to the following: The function of the Firewall Engineer is to implement, support and maintainall aspects related to Palo Alto, Cisco ASA and FirePower firewalls at an enterprise level along with Cisco ESA (email security appliance) on the FDIC Enterprise Network. The candidate should have solid knowledge of best current security practices, firewalls, network administration, application/web fundamentals, IP transit, routing protocols and all aspects of networking needed to support the required SLAs.Network fundamentals and firewall best practices plus troubleshooting are essential. The candidate must possess a networking background with a good understanding of switching, network routing plus skills in managing and supporting firewalls. The candidate must have strong ability to troubleshoot a variety of issues and make recommendations for system changes, as needed, to resolve all technical issues in an efficient and timely manner. (Though the position is 8-5 M-F, the role requires flexibility to support issues or planned activities after hours, weekends and holidays as needed.) To qualify, you must meet these basic qualifications: * MS: 4 years * BS: 6 years * No Degree: 10 years * Minimum of 4 years of enterprise network security experience (firewall, Intrusion Detection and Prevention (IDPs), log management/reporting solutions) * Planning and deployment of new network security systems. * Resolution of tier 2 trouble incidents for firewalls, secure e-mail gateways, email encryption technologies, intrusion prevention systems (IPS), and network forensics tools. * Communicate and support security policy, deployment, and support needs. This role must work in a team environment to manage the security posture of an enterprise network, and enforce policies by updating and configuring security devices. * Communicate the security challenges associated and provide solutions to mitigate them. * Work with other engineers on technical requirements and communicate to management. * Knowledge of routing and switching fundamentals and products is essential. * Practical experience working in complex LAN/WAN environments * Practical experience supporting Palo Alto, Cisco Firepower/Sourcefire, and/or Cisco ASA firewalls * Practical experience with Splunk or comparable logging system for troubleshooting * Ability to work with minimal supervision, set priorities, and give attention to detail and quality, flexible, strong organizational and time management skills, ability to multi-task, ability to work individually and with a team, positive attitude, self-motivated, reliable, trustworthy, strong interpersonal skills, diplomacy, and ability to handle stress in professional manner. * Excellent interpersonal skills and effective in interfacing with internal and external customers fostering collaboration and establishing strong partnerships and relationships It would be great if you also had: * Cisco and Juniper firewalls, routers, switches are a plus. * Practical experience supporting Cisco ESA email security appliance and FireEye is a plus * Knowledge of various operating systems and hardware (Linux, Windows). * Desired Certifications: Palo Alto Certifications, CCNP, CCNA, JNCIS-SEC, JNCIA-Junos, ITILv3, and CISSP. As a trusted systems integrator for more than 50 years, General Dynamics Information Technology provides information technology (IT), systems engineering, professional services, simulation, and training to customers in the defense, federal civilian government, health, homeland security, intelligence, state and local government and commercial sectors. With approximately 32,000 professionals worldwide, the company delivers IT enterprise solutions, manages large-scale, mission-critical IT programs and provides mission support services. GDIT is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class. GDIT CAREERS Opportunity Owned Discover more at Scheduled Weekly Hours: 40 Travel Required: T elecommuting Options: Telecommuting Not Allowed Work Location: USA VA Arlington Additional Work Locations: We are GDIT. The people supporting some of the most complex government, defense, and intelligence projects across the country. We deliver. Bringing the expertise needed to understand and advance critical missions. We transform. Shifting the ways clients invest in, integrate, and innovate technology solutions. We ensure today is safe and tomorrow is smarter. We are there. On the ground, beside our clients, in the lab, and everywhere in between. Offering the technology transformations, strategy, and mission services needed to get the job done. \n\nGDIT is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class. General Dynamics Arlington VA

Firewall Engineer