By Light HQ

Sr. Network Engineer

Job Locations US-MD-Fort Meade
Posted Date 2 weeks ago(9/7/2021 2:57 PM)
# of Openings
Tier 3 - Secret/ADP II


By Light Professional IT Services is looking for a Network Engineer to join our Defense Information Systems Agency (DISA) Team. This is an exciting position to help lead DISA’s deployment of the next generation Non Classified Internet Protocol Router Network (NIPRNet) routers as well as help drive the design, test and overall deployment of hundreds of SIPRnet routers throughout the acquisition and engineering lifecycle.  As the lead network engineer dedicated to SIPRnet you will support the technical planning, analysis and testing, assessment and technical recommendations.


Develop and validate system architecture

Develop and support initial implementation

Provide lifecycle engineering of network architecture

Provide technical expertise in design review, lab testing & test report, implementation plan and deployment of new advanced large-scale complex DoD networks.  

Provide emerging insertion technologies (i.e. new features, capabilities, etc.)

Support mission partners to satisfy the interoperability requirements

Provide all required documentation in support of Configuration Control Boards (CCB)

Oversee Tier III support engineers

Conduct market research to find products to meet requirements

Implement MPLS services offering on the DISN network called IP Transport Provider Edge (IPTPE).  MPLS services include L3VPN, L2VPN, VPLS (Virtual Private LAN service) and CsC (Carrier Supporting Carrier).  IPTPE platforms tested include Juniper MX960/MX480 and Cisco ASR9010/ASR9006 routers.

Perform testing and support implementation of the DMZ COI VPN (part of NIPRNet Hardening project), which provides separation of the NIPRNet traffic and Mission Critical Community of Interest (COI) traffic using the MPLS L3VPN service

Provide technical security expertise in design, test, evaluation and deployment of advanced large-scale complex DoD networks. Review security requirements set by DoD agencies for the NIPRNET network protection; Assess and analyze current NIPRNET network architecture; Propose and analyze potential solutions.

Reviews security threats to the current DoD NIPRNet/Internet gateway IA infrastructure, architecture, and technology and determines/implements effective countermeasures IAW established policies/regulations/directives

Deliver Router and Firewall Test Plans and resulting Test Reports. Prepare field recommendations and Configuration Guides

Required Experience/Qualifications

  • BS Degree in Computer Science, Engineering or Information Systems
  • DoD 8570 IAT Level II or higher (any of the following: CCNA Security, CySA+, GICSP, GSEC, Security+, SSCP, CASP, CISSP, GCED, GCIH)
  • Large Enterprise or DoD IP Design Experience running BGP/MP-BGP (multi AS) and MPLS routing protocols
  • Performed extensive router regression testing  Cisco ASR9K (ASR9010/ASR9006) routers
  • Strong routing protocols experience: BGP, MPLS/RSVP, OSPF, IS-IS, , Multicast, Layer-2/Layer-3 Virtual Private Network (VPN), CsC (Carrier servicing Carrier).
  • Candidate should also have excellent verbal and written communication skills

Preferred Experience/Qualifications

  • MS Degree in Computer Science, Engineering or Information Systems a plus
  • Experience with Network test equipment/Traffic Generator such as IXIA, Spirent Test Center, Smartbits and Agilent N2X
  • CCNP or JNCIP or equivalent routing and switching experience
  • Experience configuring Filter Based Forwarding (FBF), Multi-Hop Bidirectional Forwarding Detection (MBFD), HSRP, 802.1Q, SONET and SNMP a plus
  • Working experience with network security products (Firewalls, IDSs, SIEMs) a plus
  • Good system documentation skills and customer service skills
  • DISA experience a plus

Special Requirements/Security Clearance

  • Minimum SECRET Clearance required
  • Travel: Minimal

Physical Demands

  • Ability to type, communicate via telephone and sit for extended periods of time.   


Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
Share on your newsfeed