Description
The primary mission of the United States Mint (Bureau under United States Department of Treasury) is to serve the American people by manufacturing and distributing circulating, precious metal and collectible coins and national medals, and providing security over assets entrusted to us.
Its cyber security program is one of the United States Mint’s critical needs and one of the most pressing priorities for the bureau’s Information Technology Department (ITD). The Information Technology Department is responsible for securing not only standard information technology infrastructure, but also an Industrial Control System (ICS)/Supervisory Control and Data Acquisition (SCADA) infrastructure. ISD is responsible for maintaining regulations and requirements governing federal IT security, addressing the increasing frequency and sophistication of cyber-attacks, and supporting an overarching effort of continuous organizational improvement and maturity. ITD maintains a continuous monitoring policy and a heightened focus on cyber security compliance and operations.
The Leidos USMINT SOC Program has a current need for a Palo Alto/Firewall engineer. This role will serve as the lead engineer to support the bureau’s efforts to deploy, configure, and manage ISD firewalls.
Primary Responsibilities
- Deployment, installation, configuration, and operation of Palo Alto Networks (Firewalls, Panorama, and Wildfires), and Gigamon Network Terminal Access Point (TAP).
- Incident response support including security monitoring, network and endpoint visibility, and threat management.
- Support troubleshooting Local Area Network (LAN)/Wide Area Network (WAN) and other network related problems.
- Provided direct support to a Security Operation Center environment
- Participate in Proof-of-Concept efforts ranging from initial client exploratory meetings, gathering requirements, and structuring solution.
Basic Qualifications
- Palo Alto Certifications – (PCNSA or higher)
- Senior Level Firewall Administration/Engineer with Networking knowledge (Palo Alto, Cisco, etc.)
- Must have firewall and network engineering experience with designing, implementation, and maintaining Next Generation Firewall (NGFW) devices such as Palo Alto and Cisco.
- Network Terminal Access Point (TAP) experience (Gigamon, IXIA)
- Strong knowledge of Cisco Firepower firewalls
- Linux experience and/or system administration
- Trusted Internet Connection (TIC) experience
- Working knowledge of network features and protocols with strong understanding of routing protocols (EIGRP/OSPF), and BGP.
- System/Network Monitoring experience
- Experience with Information Assurance (IA) hardening and compliance (STIG, CIS, documentation, etc.)
- Familiarity with task automation
- Must be able to work collaboratively with other system administrators, system engineers, and network engineers in a team environment
- Self-motivated with strong communication and organizational skills
- Experience working with Security Operations Center
- Knowledge of the Zero Trust model for security
- Experience installing and configuring a virtual environment
- Palo Alto Certifications – PCNSE
- Red Hat certification (Certified System Administrator (RHCSA) or higher)
- Network Certifications, Cisco (CCNA or higher)
- CISSP Certification
- Ability to obtain Public Trust clearance or higher
WORK LOCATION:
Education & Experience: Technical BS degree with 12 years of prior relevant experience.
Original Posting Date:
2024-10-16
While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above.
Pay Range:
Pay Range $122,200.00 - $220,900.00
The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.
#Remote
