Network Security Engineer
Lockheed Martin Corporation - Portland, OR

This job posting is no longer available on Lockheed Martin Corporation. Find similar jobs:Network Security Engineer jobs - Lockheed Martin Corporation jobs

The successful candidate will have the choice of working in Vicksburg, MS or Portland, OR

Lockheed Martin IS&GS-Defense provides a full spectrum of defense services and solutions for the U.S. military and international customers. The product line has more than 11,000 people and 200 operating locations worldwide. IS&GS-Defense provides full-service mission information technology solutions to defense and other agencies of the U.S. government. Enterprise-level network and data-centric programs include managing and operating the Pentagon’s network backbone infrastructure, provisioning U.S. Air Force communications and data needs in the National Capital Region, and supporting the IT needs of the U.S. Army Corps of Engineers

The primary goal of the Army Corps of Engineers - IT (ACE-IT) Security Operations Team is to identify and prevent unauthorized intrusions and malicious software from entering the USACE IT infrastructure.

*Identification and prevention of security related events come from the use of monitoring tools, IPS/IDS (Intrusion Prevention Systems/Intrusion Detection System), Firewalls and application intelligent security devices.
*Experience in a layered security approach utilizing multiple vendors for both IDS/IPS and firewall infrastructure give the engineers multiple approaches to different area's within the infrastructure.
*Engineers within the Security Operations Team implement approved firewall rule changes, and approved exceptions to the base security infrastructure, including IPS exceptions and web/internet blocks.
*The engineer will also implement and modify current IDS signatures across all IDS capable devices.

The Network Operations Team supports all network devices that interconnect USACE and connects USACE to the internet. This includes all routing, switching and security devices across LAN/WAN/MAN topologies. Engineers within the Network Operations Team activate new data circuits to remote field sites, which may connect to the USACE infrastructure via MPLS or DMVPN. Engineers will also implement new devices within the Corps field offices. Each site and device connecting to the Corps network will maintain an approved configuration and IOS image.

Network Engineers will work with different groups within ACE-IT and USACE to maintain an accredited and available network infrastructure. This will include communicating to all internal teams (CIRT, IA, SOC, VoIP, System Administration and Senior Management) about changes to the network infrastructure and logical (IP and VLAN) modifications. The Network Operations Team will act as a main point of contact for all network related issues within ACE-IT and USACE daily operations.

Monitoring the network infrastructure is crucial to maintain network availability within USACE. Monitoring tools are used to observe up/down notifications for devices and remote site connectivity. In the event a device fails, it is under the responsibility of the Network engineer to configure and replace the failed device. The engineer will work through the RMA process and guidelines based on contract with our vendor.

Bandwidth utilization and resource identification is a key function of the Network Operations Team. When data circuits are over utilized, the Corps mission is at steak for multiple areas. It is crucial that the Network Engineer utilizes tools available to them for identifying the resource responsible for over utilizing the network resources.

Basic Qualifications
Network Security experience
Firewall Infrastructure
Implementation of Firewall Rules

- DoD 8570 IAT Level III CISSP Certification and Cisco Computing Environment Certification required within 6 months of employment. If candidate does not currently hold a CISSP, an IAT Level II Security+ Continuing Education Certification is required prior to start.

Desired skills
Intrusion Detection System
Intrusion Prevention Systems
Multi-Vendor IDS/IPS
Multi-Vendor firewalls
Cisco IOS
Cisco (Nexus, 7600, 7200, 6500, 3800, 3700, 3750, 3560, ASA, ACS)
Foundry (BigIron)
Multi-Vendor log aggregation tools
Log aggregation tools
Network Compliance Manager
IOS Version management and IOS upgrades
Remedy ticketing system

Security Clearance

LMCareers Business Unit

Business Area
Info Systems & Global Sol


7260024:US ACE Managed Services

Job Class
Information Technology

Job Category
Experienced Professional




Relocation Available

Work Schedule
STANDARD-Mon-Fri/8 hours a day

Req Type
Task Order/IDIQ



About this company
2,373 reviews
As a leading technology innovation company, Lockheed Martin’s team of people works with partners around the world to bring proven...