ABOUT NDI:

Network Designs, Inc. (NDi) is a leading Federal contractor that specializes in designing, developing, and delivering information technology and network solutions for government customers. Founded in 1985, NDi’s firmly defined core values have driven all aspects of the business, which have been paramount to our company’s success and the establishment of an enjoyable workplace atmosphere. At NDi, we believe that our people are the cornerstone of our success, and we value collaboration, career growth, and winning ideas. Military Veterans Encouraged to Apply.

JOB DESCRIPTION:

We are seeking an experienced Network Security Engineer (SME) to support the implementation, monitoring, and enhancement of secure IT infrastructure across enterprise environments. This role requires a highly skilled engineer with deep expertise in routing protocols, security architecture, vulnerability analysis, and compliance. The ideal candidate will be proficient in both networking and cybersecurity, with hands-on experience in securing globally distributed MPLS infrastructures, administering systems, and integrating tools like Splunk, Ansible, and Riverbed.

REQUIREMENTS:

• U.S. Citizenship is required.
• Active Top-Secret Clearance with the capability of obtaining SCI/CI Poly.
• This role is remote, but you need to be based out of one of the following states: AR, DC, FL, GA, OH, OK, ME, MD, NC, SC, TX, UT, VA, or WA.
• Occasional domestic travel.

QUALIFICATIONS AND EXPERIENCE:

• Bachelor’s degree in Computer Science, Information Systems, Engineering, or a related field preferred.
• 15+ years of computer science experience.
• 5+ years of experience in network security and engineering, with at least 2 years of recent hands-on experience in troubleshooting and supporting a wide range of devices and systems.
• Strong technical foundation with a CompTIA A+ certification preferred.
• Proficiency in cybersecurity and networking tools, technologies, and protocols.
• Experience managing Linux/Unix operating systems.
• Familiarity with Application Layer Gateway (ALG) protocols such as RTP, RTSP, FTP, DNS, HTTP, DHCP.
• CompTIA Security+ certified required. CASP+ or Cisco Certified Cybersecurity Professional (CCCP) preferred.
• Agile experience in environments using Scrum, XP, Kanban, or SAFe frameworks.

• Add and manage monitoring nodes using Splunk and Riverbed.
• Update and maintain monitoring tool configurations using Ansible.
• Interface with program leadership and DOJ partners to ensure timely task execution.
• Manage IT security including backups, firewalls, routers, and system upgrades.
• Design and enforce security policy across distributed MPLS environments.
• Resolve routing and NAT issues using tools such as tcpdump.
• Administer and support Windows and Unix/Linux-based servers.
• Troubleshoot LAN/WAN issues across protocols such as BGP, EIGRP, OSPF, and VPNs.
• Design and implement perimeter security solutions including web proxy and XML gateways.
• Develop and apply cybersecurity standards, policies, and procedures.
• Identify and mitigate security vulnerabilities and risks across the system lifecycle.
• Analyze, design, and integrate security controls into system architectures.
• Perform vulnerability and risk assessments of COTS and custom-built systems.
• Monitor system activity, user accounts, script performance, and software patches.
• Design and conduct tests for new and existing security systems.
• Support all Certification and Accreditation (C&A) activities for systems and services.