Network Security Engineer (DevSecOps) with Security Clearance
The world is transforming – and so is Intel. Intel is a company of bold and curious inventors and problem solvers who create some of the most astounding technology advancements and experiences in the world. With a legacy of relentless innovation and a commitment to bring smart, connected devices to every person on Earth, our diverse and brilliant teams are continually searching for tomorrow's technology and revel in the challenge that changing the world for the better brings. We work every single day to design and manufacture silicon products that empower people's digital lives. Come join us and do something wonderful!
Who we Are: Intel's Information Security organization enables Intel to provide secure products, solutions, and services which meet U.S. regulatory requirements. The Information Security organization supports the unique IT information Security and Compliance requirements for Intel federal projects that deliver products and/or services to the US Government (USG). As part of this team, you will help us grow our secure solution suite to meet U.S. Government requirements. The Intel Information Security organization is seeking a Network Security Engineer. The candidate chosen for this role will assist senior engineers with design, architecture, and build of secure classified network products to support USG operations.
PRIMARY DUTIES and RESPONSIBILITIES:
- Assist with architecting network and network security products in secured enclaves, including product testing, validation, and selection.
- Assist with design and long-term roadmap planning for new and future scalability in secure enclaves.
- Play a supporting role with the definition of system security requirements, including but not limited to the authorization boundary, security domains, classification of data, etc.
- Assist with designing the security interfaces, security interconnections, and the trust relationship between system components and external systems.
- Implement system security designs using commercial-off-the-shelf (COTS), government-off-the-shelf (GOTS), and open-source hardware and software.
- Oversee the hardening and configuration systems and system components in accordance with various Federal, Department of Defense (DoD), and Intelligence Community (IC) guidance.
- Coordinate security assessments to identify security control failures and recommend corrective actions.
Qualifications
Minimum qualifications are required to be initially considered for this position. Preferred qualifications are in addition to the minimum requirements and are considered a plus factor in identifying top candidates.
Minimum Required Qualifications:
- This position requires verification of U.S. citizenship due to citizenship-based legal restrictions. Specifically, this position supports United States government customers and is subject to certain citizenship-based restrictions.
- Active US Government Secret clearance.
- Bachelor's degree with 3+ years of information technology experience.
- 3+ years of experience configuring and implementing networks and Network security infrastructure, with network design and troubleshooting, Software Defined Network, and Firewall infrastructure.
- 3+ years of experience as a system administrator working with Data Center migrations, server upgrades, O/S and firmware patching, and system integration.
- 1+ years of experience monitoring security bulletins and alerts from all Partners' network system vendors.
- Experience with DoD security implementation (e.g. STIG) and security tools for managing the environment.
- Experience being part of an Agile development team.
- Business travel is required as needed.
Preferred Qualifications:
- Active US Government Top Secret (TS) Security Clearance with the skill to obtain and maintain SCI access.
- Experience with DEVSECOPS Principles to implement and configure Cross Domain Solutions (CDS).
- 2+ years' experience implementing and configuring Firewall infrastructure in a secured enterprise environment.
- Experience administering servers, backup operations, and systems monitoring in multiple and complex network server environments.
- Experience with business continuity and disaster recovery; install new/rebuild existing servers and configure hardware, peripherals, services, settings, directories, storage, etc.
- Experience with network analysis software such as SD Elements, Splunk, Sniffer, Wireshark, or Microsoft Network Monitor.
- Certifications in cybersecurity to include Certified Cloud Security Professional (CCSP) or Certified Information Systems Security Professional (CISSP).
- Experience with scripting in the UNIX environment.
- Experience utilizing Ansible as a configuration management tool, for system administration of users or devices, or as a security compliance automation tool.