Computer Network Defense Architect/Engineer

Tampa, Florida
07 Oct 2016
27 Jan 2017
Contract Type
Full Time
Computer Network Defense Architect/Engineer Job Description:

This senior cybersecurity technical architect/engineer position will require someone who has the ability to identify security solutions and implement a multi-layered defense-in-depth network security architecture to protect the Special Operations Forces Information Environment (SIE). This engineer will perform analyses to validate established security requirements and recommend additional security measures to ensure compliance with applicable DOD cybersecurity requirements and baseline controls. The contractor will assess the adequacy of the protective measures to protect against cyber threats and assess residual risk and weaknesses. As a Subject Matter Expert (SME) for cybersecurity architecture activities, the contractor will provide written and verbal guidance to the Enterprise Architect and/or Program Manager on current and emerging cybersecurity standards, processes, and best practices. He/she should be able to conduct network audits, read and understand audit logs, and determine actions to be taken when discrepancies are detected. This person would look at the SIE CND architecture and determine if network security devices are properly sized to handle the network traffic. The contractor will also support the CND specific planning for integrating USSOCOM networks into the Joint Information Environment (JIE). He/she will architect a solution for the SIE to meet the Joint Regional Security Stack (JRSS) requirements or fall behind a DOD provided JRSS. He/she would develop a Single Security Architecture document for the SIE. He/she will be familiar with the Host Based Security System (HBSS) and ensure ePO servers are configured correctly and able to handle the number of end point devices being managed. He/she will assist in the development of USSOCOM guidance on the use of each HBSS module. The contractor will ensure both internal and external Sourcefire Intrusion Detection System (IDS) sensors are properly sized and will develop a plan to ensure these devices are upgraded as necessary when network architecture changes are made. He/she will review Bluecoat appliance and Splunk SIEM configurations to ensure they provide required cyber incident detection to support the enterprise.

This engineer will assist with the coordination of Authorized Service Interruptions (ASI) for CND tools and ensure the impact of these ASIs are understood by the customer. He/she will assist with the testing of new or upgraded hardware and software security solutions. This support will also include reviewing and determining the effectiveness of command information technology security policies and procedures ensuring adequacy and consistency with industry cybersecurity best practices. Must be familiar with DISA Security Technical Implementation Guides (STIG) and ensure compliance with these standards.

Will oversee testing and assist with the integration of new IA solutions into the enterprise infrastructure. Additional duties include: Work with the SOF Integration Facility (SIF) to ensure new applications and systems meet cybersecurity standards.
Minimum Education/Experience Requirements: Bachelor's degree in computer/systems science or engineering discipline and fourteen (14) years of progressive, relevant experience. Four (4) years of additional experience may be considered in lieu of a bachelor's degree.

Required skills include:
  • DOD Information Assurance Technical (IAT) Level 3 certification required.
  • ITIL V3 Foundations certification preferred.
  • Must have excellent communications skill (written and oral) and interpersonal skills.
  • Experience with the US Combatant Commands (USCENTCOM/USSOCOM) is desired.
  • Knowledge and experience with DOD IA processes and policies.

Active TS/SCI clearance required.

Essential Functions

Work Environment

Work will be performed inside a large facility. Work assignments vary based on client requirements. Position may require some night and weekend work. Some travel may be required based upon customer requirements.

Physical Requirements

Sitting at desk. Phone use and PC or laptop. Filing required. May require lifting and carrying boxes of supplies or files up to 25 lbs. Extended periods of sitting while on PC/laptop or phone.

Equipment and Machines

General office equipment, which includes: telephone, fax machine, copier, PC/laptop, and other miscellaneous office equipment.


Work assignments dependent on requirements by the client. It is important to be able to work at least 8 hours a day for 5 days per week (Monday through Friday).

Other Essential Functions

Candidate must exhibit a professional behavior that promotes teamwork, fosters cooperation, and enhances productivity in the workplace. Must be well organized with the ability to coordinate, prioritize and execute multiple tasks simultaneously in a high-pressure environment. Ability to communicate verbally and in writing to work effectively with a variety of government, military and contractor personnel at all levels. Must be able to interface effectively with individuals at all levels of the organization. Grooming and dress usually business casual, but dependent on client's standards. Must not pose a safety hazard to employees working in the same general area.
The position for which you are applying for requires a US government security clearance. This is to advise you, that should you be extended an offer, if you possess a dual citizenship (i.e., citizen of the US and another country), in order to be granted a clearance you will be required to relinquish your citizenship in the foreign country.