Principal Network Security Systems Engineer (TS/SCI #25-058)
Apply NowCompany: Strategic Analysis, Inc
Location: Arlington, VA 22204
Description:
Responsibilities:
Provide expert technical guidance in the architecture, implementation, and security assessment of secure networks
Guide comprehensive security audits, penetration testing, and risk assessments, proactively identifying vulnerabilities and developing sophisticated mitigation strategies
Shape the design and implementation of cutting-edge security solutions, including multi-layered network segmentation and granular access controls, Zero Trust network architecture and micro-segmentation strategies, and robust cryptographic solutions for data protection
Contribute to the development of technical requirements and specifications for secure network design in alignment with industry best practices, government regulations, and certification standards
Collaborate with engineers and stakeholders to transition prototype security solutions into operational systems
Proactively research and analyze emerging threats and vulnerabilities, staying ahead of adversaries to maintain a proactive security posture
Requirements:
Demonstrated expertise designing, implementing, and securing networks in a DoD or similar high-security environment
Demonstrated experience in DoD network protocols and architectures, including relevant encryption standards and protocols (Type 1 devices, Suite A/B algorithms, FIPS 140-2 validation)
Extensive knowledge of network encryption devices, key management concepts, and VPN technologies
Strong foundation in core network security principles, routing protocols, and switching technologies
Experience implementing and managing COMSEC solutions and cross-domain security controls
Hands-on experience with intrusion detection/prevention systems (IDS/IPS), SIEMs, and other network monitoring tools
Experience conducting security audits or developing assessments for compliance with DoD policies and regulations
Proven ability to think critically, operate independently, and communicate effectively with both technical and non-technical stakeholders
Preferred Qualifications:
Extensive experience supporting DoD research and development programs
Experience with cross-domain solutions, data diode technologies, and secure enclaves
Advanced troubleshooting skills to diagnose and resolve complex network and encryption-related issues
Experience with systems programming languages, particularly C, C++, and Rust, and their application in network security
Familiarity with cloud-based encryption solutions and their integration with DoD networks
Industry-recognized cybersecurity certification (e.g., Security+, CISSP, CEH, CASP+) or a relevant networking certification (e.g., CCNA Security, CCNP Security) is desired
Education:
Bachelor's degree in cybersecurity, computer science, electrical engineering, or related field; or equivalent experience
Clearance:
Active TS/SCI clearance SA is an equal opportunity/Affirmative Action Plan employer that is committed to diversity and inclusion in the workplace. We prohibit discrimination and harassment of any kind based on race, color, sex, religion, sexual orientation, national origin, disability, genetic information, pregnancy, or any other protected characteristic as outlined by federal, state, or local laws. This applies to all employment practices within our organization, including hiring, recruiting, promotion, termination, layoff, recall, leave of absence, compensation, benefits, training, and apprenticeship makes hiring decisions based solely on qualifications, merit, and business needs at the time.
Provide expert technical guidance in the architecture, implementation, and security assessment of secure networks
Guide comprehensive security audits, penetration testing, and risk assessments, proactively identifying vulnerabilities and developing sophisticated mitigation strategies
Shape the design and implementation of cutting-edge security solutions, including multi-layered network segmentation and granular access controls, Zero Trust network architecture and micro-segmentation strategies, and robust cryptographic solutions for data protection
Contribute to the development of technical requirements and specifications for secure network design in alignment with industry best practices, government regulations, and certification standards
Collaborate with engineers and stakeholders to transition prototype security solutions into operational systems
Proactively research and analyze emerging threats and vulnerabilities, staying ahead of adversaries to maintain a proactive security posture
Requirements:
Demonstrated expertise designing, implementing, and securing networks in a DoD or similar high-security environment
Demonstrated experience in DoD network protocols and architectures, including relevant encryption standards and protocols (Type 1 devices, Suite A/B algorithms, FIPS 140-2 validation)
Extensive knowledge of network encryption devices, key management concepts, and VPN technologies
Strong foundation in core network security principles, routing protocols, and switching technologies
Experience implementing and managing COMSEC solutions and cross-domain security controls
Hands-on experience with intrusion detection/prevention systems (IDS/IPS), SIEMs, and other network monitoring tools
Experience conducting security audits or developing assessments for compliance with DoD policies and regulations
Proven ability to think critically, operate independently, and communicate effectively with both technical and non-technical stakeholders
Preferred Qualifications:
Extensive experience supporting DoD research and development programs
Experience with cross-domain solutions, data diode technologies, and secure enclaves
Advanced troubleshooting skills to diagnose and resolve complex network and encryption-related issues
Experience with systems programming languages, particularly C, C++, and Rust, and their application in network security
Familiarity with cloud-based encryption solutions and their integration with DoD networks
Industry-recognized cybersecurity certification (e.g., Security+, CISSP, CEH, CASP+) or a relevant networking certification (e.g., CCNA Security, CCNP Security) is desired
Education:
Bachelor's degree in cybersecurity, computer science, electrical engineering, or related field; or equivalent experience
Clearance:
Active TS/SCI clearance SA is an equal opportunity/Affirmative Action Plan employer that is committed to diversity and inclusion in the workplace. We prohibit discrimination and harassment of any kind based on race, color, sex, religion, sexual orientation, national origin, disability, genetic information, pregnancy, or any other protected characteristic as outlined by federal, state, or local laws. This applies to all employment practices within our organization, including hiring, recruiting, promotion, termination, layoff, recall, leave of absence, compensation, benefits, training, and apprenticeship makes hiring decisions based solely on qualifications, merit, and business needs at the time.