CommIT Enterprises is seeking a highly skilled and experienced Senior Firewall Engineer to join our Network Security team. The ideal candidate will have expertise in managing and securing complex enterprise firewall environments, with a deep understanding of firewall technologies, network security protocols, and risk management. This role involves working with cutting-edge security solutions to protect our organization’s network infrastructure from internal and external threats.

Established in 2001, CommIT is a Certified Veteran-Owned Small Business (CVOSB) providing innovative technical engineering and data science services. Our enterprise systems support includes the Department of Defense’s (DoD) GCSS-MC, CAC2S, TBMCS-MC, and the Department of Veteran’s Affairs’ (VA) telehealth communications. We offer acquisition management, systems engineering, Agile software development, cloud management, IT modernization, data analytics, cybersecurity, and training, including leading-edge DevSecOps, automated testing, and mobile application development.

Your essential job functions will include but may not be limited to-

• Firewall Configuration and Management:
  • Design, implement, and maintain firewall infrastructure to secure internal networks.
  • Configure and optimize firewall policies, rules, and VPNs (Virtual Private Networks) to ensure compliance with security standards.
  • Monitor firewall performance and ensure that they are operating at optimal capacity.
• Security Incident Response:
  • Respond to and mitigate security incidents, including reviewing firewall logs, alerts, and analyzing network traffic for abnormal activity.
  • Work with the security team to investigate potential breaches and provide root cause analysis.
• Network Security Strategy:
  • Develop and maintain network security strategies, ensuring that firewall policies are consistent with the organization’s overall security goals.
  • Stay up-to-date on industry trends and emerging threats, advising management on proactive measures.
• Documentation and Compliance:
  • Maintain detailed records of firewall configurations, incidents, and policy changes.
  • Ensure compliance with industry regulations, including GDPR, HIPAA, PCI DSS, and others as relevant.
• Collaboration and Training:
  • Collaborate with other IT and security teams to ensure that firewall policies integrate with broader security architecture.
  • Provide guidance and training to junior security staff, helping to develop team skills and capabilities.
• Vulnerability Management:
  • Perform regular vulnerability assessments and risk assessments related to firewall and network security.
  • Apply patches, updates, and configuration changes as necessary to maintain a secure environment.
• Third-Party Vendor Management:
  • Work closely with firewall solution vendors to stay ahead of updates, patches, and product enhancements.
  • Lead evaluations of third-party security products, recommending solutions to enhance the organization's security posture.
• Firewall Optimization and Tuning:
  • Continuously assess firewall performance, identifying opportunities for optimization and tuning.
  • Ensure low latency, high availability, and efficient routing of traffic through firewalls. 

Required Experience and Education: 

• Bachelor’s degree in Computer Science, Information Technology, or a related field (or equivalent work experience).
• Experience:
  • 5+ years of experience working with enterprise-level firewalls in a security-focused role.
• Technical Expertise:
  • Proficient in managing firewall technologies such as Palo Alto, Cisco ASA, Check Point, Fortinet, Juniper SRX, or other enterprise-grade solutions.
  • Deep knowledge of VPN, NAT, IPsec, SSL, and other security protocols.
  • Hands-on experience with security monitoring tools, SIEM systems, and log analysis.
  • Knowledge of IDS/IPS systems and intrusion prevention technologies.
• Certifications:
  • Relevant certifications such as:
    • Palo Alto Networks Certified Network Security Engineer (PCNSE)
    • Cisco Certified Network Associate (CCNA) or Cisco Certified Network Professional (CCNP) Security
    • Certified Information Systems Security Professional (CISSP)
    • Certified Ethical Hacker (CEH) or similar
• Analytical Skills:
  • Ability to analyze network traffic, logs, and security incidents to identify and resolve potential threats.
• Problem-Solving:
  • Strong troubleshooting skills, particularly in complex network and security issues.
• Communication Skills:
  • Excellent verbal and written communication skills to collaborate effectively with cross-functional teams and senior leadership. 

Preferred Skills: 

• Experience with cloud security tools and managing firewalls in a cloud environment (AWS, Azure, GCP).
• Familiarity with automation and orchestration tools for network security management (Ansible, Terraform, etc.).
• Understanding of modern software-defined networking (SDN) and microsegmentation.
• Experience with advanced threat detection systems and zero-trust network architectures. 

Security Requirements:

• Secret Clearance

Equal Opportunity Employer:

CommIT Enterprises, Inc. is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, national origin, gender, sexual orientation, gender identity, age, physical or mental disability, genetic factors, military/veteran status or other characteristics protected by law.