Required Security Clearance: Top Secret/SCI
City: Washington
State/Territory: District of Columbia
Travel: None
Potential for Teleworking: No
Schedule: Full Time DoD 8570 IAT Requirement: IAT II (Security+, CySA+, CCNA Security, GICSP, GSEC, SSCP) DoD 8570 IAM Requirement: None DoD 8570 IASAE Requirement: None DoD CSSP Requirement: None
Job Description
⦁ Design, prototype, and test a Wide Area Network architecture for a global and highly complex environment.
⦁ Architect WAN solutions based on requirements involving advanced/complex global networks, hybrid data centers, security, and virtualization technologies; as well as
development of fault and performance management policies and automation rules; deliver formal presentations when necessary
⦁ Program and configure a full stack of network equipment including routers, switches, firewall, load balancers, wireless, and timing equipment.
⦁ Plan the design, implementation, and migration of the future architecture.
⦁ Take the charge in translating project requirements into standard or custom technical solutions for a service provider wide area network and cloud environment.
⦁ Lead the design, build and test of Cloud Networking and Security services such as edge and core firewalls, proxies and load balancers, direct network connections with
public cloud providers such as express route, direct connect, etc.
⦁ Proactively seek opportunities to drive efficiency, automation, and cost reduction by automating manual and repetitive tasks, and actively document requirements for
evolution of existing standard solutions, patterns, and features.
⦁ Develop features and codified networking artefacts for platform improvements leveraging automation and infrastructure and network policies as code
⦁ Document and deliver presentations to customerrequirements/interest in newtechnologies/products and in support of the development for a future architecture
⦁ Develop documentation, design, and detail plans for network improvements, optimization, and deployment.
⦁ Install and support network equipment, network systems, global WAN, & SD-WAN systems
⦁ Administer and support Server, VMware, and Nimble storage systems
⦁ Configure and install software, servers, routers and other network devices
⦁ Monitor network performance and integrity: Develop improvements to network performance, capacity and scalability
⦁ Automate tasks and monitor their effectiveness
⦁ Create, oversee, and test security measures (e.g. access authentication and disaster recovery)
⦁ Excellent written and verbal communication skills
⦁ Ability to work independently and manage multiple project and priorities
Qualifications
⦁ Master’s degree in Electrical Engineering or Computer Science
⦁ Strong Technical Design / Architecture expertise in Enterprise Networking, SDN, SD-WAN, SDA etc.
⦁ Experience in Cisco, Arista, Checkpoint, Ciena, Juniper, Palo Alto, and F5 platforms
⦁ Understanding of networking protocols (e.g. BGP4, OSPF, IPSEC, HSRP, 802.11, QoS)
⦁ 10+ years’ experience managing large, globally distributed network architecture, engineering and leveraging next-generation network designs and technologies to
support large-scale deployments
⦁ Proven track record of driving transformation in network technologies, tools, and processes through a data-driven continuous improvement methodology
⦁ Demonstrated experience in improving security, stability, reliability, performance, and agility of complex enterprise networks
⦁ Strong technical knowledge of foundational networking technologies and solid understanding of the software-defined networking (SDN) ecosystem
⦁ Strong understanding of network infrastructure automation, instrumentation, and monitoring platforms and the emerging technologies in this area
⦁ Experience in setting up virtual private clouds in public cloud infrastructure such as Amazon Web Services, Microsoft Azure, Alibaba Cloud, or Google Cloud Platform
⦁ Experience with designing and engineering connectivity to public cloud providers utilizing technologies such as AWS Direct Connect, Azure ExpressRoute, Google
Dedicated Interconnect, or Oracle FastConnect
⦁ Proven experience leading highly effective technical teams through major technology and organizational change
⦁ Experience re-engineering complex Internet-based network designs to optimize for services and applications that are sensitive to network turbulence (e.g., latency, jitter,
loss)
⦁ Experience driving operational performance through defining and enforcing Recovery Time Objective (RTO) and Recovery Point Objective (RPO) Service Level Agreements
(SLAs)
⦁ Experience driving and/or significantly participating in vendor RFPs for network products (e.g., hardware, software, tools, telco, services)
⦁ Certification in network and/or security technologies (e.g., CCIE, etc.)
⦁ Experience in researching emerging technologies and trends, standards, and products and synthesizing into clear technology roadmaps and strategies
DESIRED QUALIFICATIONS: BA/BS (or equivalent experience), 20+ years of experience
Desired Skills
⦁ Virtualization technologies
⦁ Expert knowledge of networking and network-based software applications.
⦁ Expert knowledge of performance, modeling, and system/network simulation analysis tools.
⦁ Open Standard routing and switching protocols (i.e., BGP, MP-BGP, OSFP, VRRP, MLAG, STP)
⦁ Network segmentation,encapsulation/encryption technologies (i.e., VRF, MPLS, EVPN, VXLAN, L2VPN, L3VPN, Pseudowire, GRE, IPsec, MACSEC)
⦁ High Availability (HA), Active-Active resilient architectures
⦁ Campus Area Network technologies (Wi-Fi, PoE, NAC/802.1x, QoS, A/V)
⦁ Current networking trends, including commercial implementations of Software Defined Networks (SDN) for Campus, Data Center, and/or WAN environments
⦁ DNS, DHCP, IPAM
⦁ ZTP
⦁ Load balancing and Application Delivery Controller technologies and implementations
⦁ Network Boundary (Next Generation Firewalls, IPSEC/SSL VPN Concentrators)
⦁ NetworkManagement/Troubleshooting tools (i.e., NetFlow Tracker, Cisco LMS, Cisco Call Manager, Arista CloudVision Portal, SolarWinds, tcpdump, Wireshark, Elastic,
and Splunk)
⦁ Dev/Ops Knowledge: can demonstrate knowledge and varying levels of experiences with one or more of the following: Ansible, JSON and Rest API, Infrastructure as
Code, Linux shell, Python, TCL, Go Language, Kafka, Grafana, Jenkins / Git, Machine Learning (e.g. TensorFlow), Hadoop and clustered big data, Kubernetes, VMware,
Docker, Virtual Box, Data Visualization
⦁ Technical certifications preferred (e.g., CCNA, CCNP, CCIE, ACE-A, ACE-P)
⦁ In-depth understanding of switching ASICs from multiple providers
⦁ Understanding of network operating system architecture and design
⦁ Experience with network tuning and optimization (DCTCP, ECN, QoS)
⦁ Advanced knowledge of TCP/IP (IPv4 & IPv6) and related large scale network features
⦁ Strong background in all multi-vendor routing, switching, and security platforms
⦁ In-depth understanding BGP, OSPF, and Ethernet
⦁ Experience with writing Python applications to support network automation and knowledge/ability to code in Ruby and Python
⦁ Technical knowledge common routing protocols (e.g., OSPF, BGP), IPv6, VPN, etc. across a global distributed network hands-on experience with the datacenter fabric
platforms (Cisco, Arista, or equivalent) hands-on experience with common routing and switching platforms (Cisco, Juniper, HP/Aruba etc.)
⦁ Deep experience in WAN and campus LAN design and implementation; WAN architectures (i.e., Carrier Ethernet, Optical Fabrics (OTN), SONET, DWDM)
⦁ Experience with automating network functions and experience with configuration management platform through tools such as Chef, Puppet, Ansible, Salt, or Terraform
⦁ Experience with network load balancers, WAN optimizers, and Network virtualization.
⦁ Design and implementation experience with CLOS networking and SDN
⦁ Familiarity of data center structured cabling, fiber plant, power, and cooling
Standard Characteristics
• Expert in particular discipline/domain. Can perform tasks of senior level technicians, specialists, and/or managers not performed at Level 5 due to the size or complexity of the tasks.
Skills and Task
• Can perform tasks of senior level technicians, specialists, and/or managers not performed at Level 5 due to the size and/or complexity of the tasks.
Leadership / Management
• May work individually or as a key member of a senior technical team. Leads resolution of complex technical issues and/or performs research of high-end technical solutions
Training and Certifications
• DoD 8570 IAT II compliance or information assurance certification commensurate with technical objectives and services required within the task order.
• Applicable software or hardware training and certifications commensurate with the technical objectives, services required and IT environment specified within the task order.
Capabilities and Additional Requirements
• Apply Standard Characteristics of Labor Category Capability Level.
Education and Experience
• High School Diploma + 16 years
• Associate's Degree + 14 years
• Bachelor's Degree + 12 years
• Master's Degree + 10 years
• PhD + 8 years
Computer Sciences
Technical Support
Testing
Infrastructure
Information Technology
City: Washington
State/Territory: District of Columbia
Travel: None
Potential for Teleworking: No
Schedule: Full Time DoD 8570 IAT Requirement: IAT II (Security+, CySA+, CCNA Security, GICSP, GSEC, SSCP) DoD 8570 IAM Requirement: None DoD 8570 IASAE Requirement: None DoD CSSP Requirement: None
Job Description
⦁ Design, prototype, and test a Wide Area Network architecture for a global and highly complex environment.
⦁ Architect WAN solutions based on requirements involving advanced/complex global networks, hybrid data centers, security, and virtualization technologies; as well as
development of fault and performance management policies and automation rules; deliver formal presentations when necessary
⦁ Program and configure a full stack of network equipment including routers, switches, firewall, load balancers, wireless, and timing equipment.
⦁ Plan the design, implementation, and migration of the future architecture.
⦁ Take the charge in translating project requirements into standard or custom technical solutions for a service provider wide area network and cloud environment.
⦁ Lead the design, build and test of Cloud Networking and Security services such as edge and core firewalls, proxies and load balancers, direct network connections with
public cloud providers such as express route, direct connect, etc.
⦁ Proactively seek opportunities to drive efficiency, automation, and cost reduction by automating manual and repetitive tasks, and actively document requirements for
evolution of existing standard solutions, patterns, and features.
⦁ Develop features and codified networking artefacts for platform improvements leveraging automation and infrastructure and network policies as code
⦁ Document and deliver presentations to customerrequirements/interest in newtechnologies/products and in support of the development for a future architecture
⦁ Develop documentation, design, and detail plans for network improvements, optimization, and deployment.
⦁ Install and support network equipment, network systems, global WAN, & SD-WAN systems
⦁ Administer and support Server, VMware, and Nimble storage systems
⦁ Configure and install software, servers, routers and other network devices
⦁ Monitor network performance and integrity: Develop improvements to network performance, capacity and scalability
⦁ Automate tasks and monitor their effectiveness
⦁ Create, oversee, and test security measures (e.g. access authentication and disaster recovery)
⦁ Excellent written and verbal communication skills
⦁ Ability to work independently and manage multiple project and priorities
Qualifications
⦁ Master’s degree in Electrical Engineering or Computer Science
⦁ Strong Technical Design / Architecture expertise in Enterprise Networking, SDN, SD-WAN, SDA etc.
⦁ Experience in Cisco, Arista, Checkpoint, Ciena, Juniper, Palo Alto, and F5 platforms
⦁ Understanding of networking protocols (e.g. BGP4, OSPF, IPSEC, HSRP, 802.11, QoS)
⦁ 10+ years’ experience managing large, globally distributed network architecture, engineering and leveraging next-generation network designs and technologies to
support large-scale deployments
⦁ Proven track record of driving transformation in network technologies, tools, and processes through a data-driven continuous improvement methodology
⦁ Demonstrated experience in improving security, stability, reliability, performance, and agility of complex enterprise networks
⦁ Strong technical knowledge of foundational networking technologies and solid understanding of the software-defined networking (SDN) ecosystem
⦁ Strong understanding of network infrastructure automation, instrumentation, and monitoring platforms and the emerging technologies in this area
⦁ Experience in setting up virtual private clouds in public cloud infrastructure such as Amazon Web Services, Microsoft Azure, Alibaba Cloud, or Google Cloud Platform
⦁ Experience with designing and engineering connectivity to public cloud providers utilizing technologies such as AWS Direct Connect, Azure ExpressRoute, Google
Dedicated Interconnect, or Oracle FastConnect
⦁ Proven experience leading highly effective technical teams through major technology and organizational change
⦁ Experience re-engineering complex Internet-based network designs to optimize for services and applications that are sensitive to network turbulence (e.g., latency, jitter,
loss)
⦁ Experience driving operational performance through defining and enforcing Recovery Time Objective (RTO) and Recovery Point Objective (RPO) Service Level Agreements
(SLAs)
⦁ Experience driving and/or significantly participating in vendor RFPs for network products (e.g., hardware, software, tools, telco, services)
⦁ Certification in network and/or security technologies (e.g., CCIE, etc.)
⦁ Experience in researching emerging technologies and trends, standards, and products and synthesizing into clear technology roadmaps and strategies
DESIRED QUALIFICATIONS: BA/BS (or equivalent experience), 20+ years of experience
Desired Skills
⦁ Virtualization technologies
⦁ Expert knowledge of networking and network-based software applications.
⦁ Expert knowledge of performance, modeling, and system/network simulation analysis tools.
⦁ Open Standard routing and switching protocols (i.e., BGP, MP-BGP, OSFP, VRRP, MLAG, STP)
⦁ Network segmentation,encapsulation/encryption technologies (i.e., VRF, MPLS, EVPN, VXLAN, L2VPN, L3VPN, Pseudowire, GRE, IPsec, MACSEC)
⦁ High Availability (HA), Active-Active resilient architectures
⦁ Campus Area Network technologies (Wi-Fi, PoE, NAC/802.1x, QoS, A/V)
⦁ Current networking trends, including commercial implementations of Software Defined Networks (SDN) for Campus, Data Center, and/or WAN environments
⦁ DNS, DHCP, IPAM
⦁ ZTP
⦁ Load balancing and Application Delivery Controller technologies and implementations
⦁ Network Boundary (Next Generation Firewalls, IPSEC/SSL VPN Concentrators)
⦁ NetworkManagement/Troubleshooting tools (i.e., NetFlow Tracker, Cisco LMS, Cisco Call Manager, Arista CloudVision Portal, SolarWinds, tcpdump, Wireshark, Elastic,
and Splunk)
⦁ Dev/Ops Knowledge: can demonstrate knowledge and varying levels of experiences with one or more of the following: Ansible, JSON and Rest API, Infrastructure as
Code, Linux shell, Python, TCL, Go Language, Kafka, Grafana, Jenkins / Git, Machine Learning (e.g. TensorFlow), Hadoop and clustered big data, Kubernetes, VMware,
Docker, Virtual Box, Data Visualization
⦁ Technical certifications preferred (e.g., CCNA, CCNP, CCIE, ACE-A, ACE-P)
⦁ In-depth understanding of switching ASICs from multiple providers
⦁ Understanding of network operating system architecture and design
⦁ Experience with network tuning and optimization (DCTCP, ECN, QoS)
⦁ Advanced knowledge of TCP/IP (IPv4 & IPv6) and related large scale network features
⦁ Strong background in all multi-vendor routing, switching, and security platforms
⦁ In-depth understanding BGP, OSPF, and Ethernet
⦁ Experience with writing Python applications to support network automation and knowledge/ability to code in Ruby and Python
⦁ Technical knowledge common routing protocols (e.g., OSPF, BGP), IPv6, VPN, etc. across a global distributed network hands-on experience with the datacenter fabric
platforms (Cisco, Arista, or equivalent) hands-on experience with common routing and switching platforms (Cisco, Juniper, HP/Aruba etc.)
⦁ Deep experience in WAN and campus LAN design and implementation; WAN architectures (i.e., Carrier Ethernet, Optical Fabrics (OTN), SONET, DWDM)
⦁ Experience with automating network functions and experience with configuration management platform through tools such as Chef, Puppet, Ansible, Salt, or Terraform
⦁ Experience with network load balancers, WAN optimizers, and Network virtualization.
⦁ Design and implementation experience with CLOS networking and SDN
⦁ Familiarity of data center structured cabling, fiber plant, power, and cooling
Standard Characteristics
• Expert in particular discipline/domain. Can perform tasks of senior level technicians, specialists, and/or managers not performed at Level 5 due to the size or complexity of the tasks.
Skills and Task
• Can perform tasks of senior level technicians, specialists, and/or managers not performed at Level 5 due to the size and/or complexity of the tasks.
Leadership / Management
• May work individually or as a key member of a senior technical team. Leads resolution of complex technical issues and/or performs research of high-end technical solutions
Training and Certifications
• DoD 8570 IAT II compliance or information assurance certification commensurate with technical objectives and services required within the task order.
• Applicable software or hardware training and certifications commensurate with the technical objectives, services required and IT environment specified within the task order.
Capabilities and Additional Requirements
• Apply Standard Characteristics of Labor Category Capability Level.
Education and Experience
• High School Diploma + 16 years
• Associate's Degree + 14 years
• Bachelor's Degree + 12 years
• Master's Degree + 10 years
• PhD + 8 years
Recommended Skills
EngineeringComputer Sciences
Technical Support
Testing
Infrastructure
Information Technology