Network Security Engineer, SME

Job Locations US-VA-Herndon
Job ID
Information Technology


ASEC2 is seeking a Network Security Engineer who will be responsible for the technical leadership,  execution and delivery of next generation software defined infrastructure;  firewall technologies, intrusion detection/prevention technologies,  micro-segmentation, SD-WAN, VPN, other data center technologies and continuous process improvements. 


Candidates must already possess a current and active TS/SCI with Poly clearance to be considered for this position


The right Candidate will have experience with migrations of Cisco firewalls to Palo Alto using Expedition, as well as experience:

  • Installing and configuring B2b tunnels on Palo Alto firewalls for site-to-site VPN
  • Installing and configuring ISE for wireless authentication
  • Install, configure, and manage Palo Alto Firewalls, DSM host-based firewalls
  • Leverage and enable automation, orchestration, continuous integration, and continuous delivery (CI/CD)
  • Creating and implementing workflows and blueprints
  • Building site to site VPN tunnels for both Cisco and Palo Alto’s platform.
  • Serve as an advocate for business stakeholders into IT and helps evangelize the role of network engineering technology back to the business
  • Provide well-considered counsel to leadership and other business service leaders on the strategic two to three-year technology roadmap for all  software defined technologies.
  • Presents innovate forward thinking concepts and technology to improve  business processes



  • Bachelor's Degree
  • 16+ years of experience in a Network Security environment working with firewalls, VPN, IDS/IPS
  • 5+ years of experience in delivering Software Defined Infrastructure, leveraging automation, orchestration, scripting technologies
  • Senior Level experience with Data Center infrastructure solutions: VPN,  Cisco (Route and Switch), Palo Alto (FW + IDS/IPS functions), Trend Micro DSM   (Micro-segmentation) – host-based firewall
  • Working with Palo Alto Wildfire and Threat prevention for Intrusion and Detection.
  • Working with Palo Alto Global Protect.
  • Programming/scripting languages and frameworks knowledge and experience, in support of automation (Python, Ansible, etc...)
  • Palo Alto’s Rest API
  • Experience in providing security consulting services to IT organizations and confirm adherence to Company's security policy and regulatory requirements   such as PCI, PII, HIPAA, and SOX
  • CCNP – Security, DC, Routing, Switching, PCNSE (Palo Alto) VMWare Certified Professional Standard
  • Experience working with Agile project management methodologies and tools
  • Experience with Cisco, Arista, and Palo Alto Firewalls
  • Ability to perform routine upgrades, setup VPN tunnels, implement network changes for integration work
  • Strong Palo Alto firewall skills and experience with Panorama


  • Python or Java experience is preferred
  • Cisco routers and switches.

By submitting your resume for this position, you understand and agree that ASEC may share your resume, as well as any other related personal information or documentation you provide, with its subsidiaries and affiliated companies for the purpose of considering you for other available positions.


ASEC is an Equal Opportunity/Affirmative Action Employer. We consider applicants without regard to race, color, religion, age, national origin, ancestry, ethnicity, gender, gender identity, gender expression, sexual orientation, marital status, veteran status, disability, genetic information, citizenship status, or membership in any other group protected by federal, state or local law. Equal Opportunity Employer Minorities/Women/Vets/Disabled.


Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
Share on your newsfeed