Network Security Engineer

Responsibilities

We are looking for highly technical professionals with a strong foundation in network architecture, design, and security — individuals who are ready to step up from traditional network engineering roles to take ownership of strategic, architecture-level responsibilities. Ideal candidates will have deep understanding of networking, security architecture and design, and experience applying Federal security guidelines (e.g, NIST 800-53, FISMA, etc.) to harden and secure systems.

These are the types of professionals who understand both the big-picture architecture and the hands-on technical details, and who are prepared to make security-focused architectural recommendations in complex environments.

The TIS Security Engineer will support the FAA Telecommunications and Integrated Services (TIS) Group and provide expert-level security engineering across the FAA’s FTI environment. This includes:

• Analyzing and guiding network architecture to ensure cybersecurity is built-in from the ground up.
• Performing hands‑on reviews of system configurations, firewall rules, and network paths to align with FAA Orders, NIST 800‑53, and federal cybersecurity standards.
• Leading efforts in transitioning technologies (e.g., IPv4 to IPv6, microwave radio refreshes) from a cybersecurity and network architecture perspective.
• Supporting the integration of Zero Trust, Software‑Defined Networking (SDN), and defense‑in‑depth strategies into enterprise‑level solutions.
• Acting as a technical bridge between FAA cyber stakeholders and infrastructure providers (network, security, cloud).
• Evaluating vendor‑proposed architectures and making expert‑level recommendations based on federal policy, security principles, and industry best practices.

• Experience supporting federal government programs, ideally within the FAA or transportation sector.
• Proven experience with hands‑on network engineer or architecture and understands network design, configurations, firewalls, VPNs, IDS/IPS, and load balancing.
• Knowledge of telecommunications infrastructure, including IPv4/IPv6, and WAN/LAN environments.
• Understand federal cybersecurity frameworks (NIST RMF, FISMA, NIST SP 800‑53 rev
  5).
• Can evaluate network and system security concepts for large‑scale, safety‑critical systems like those in the National Airspace System (NAS).
• Comfortable advising on defense‑in‑depth architectures, Zero Trust CONOPS, SD‑WANs, and emerging tech.
• Have experience collaborating with engineers, PMs, and cybersecurity stakeholders to support ATO packages and continuous monitoring.
• Ability to develop system security plans, risk assessments, and related security documentation.
• U.S. Citizenship or Permanent Residency with 3+ years U.S. residency.
• Bachelor’s degree in Cybersecurity, Information Technology, Telecommunications, or a related field.
• 12+ years of experience in cybersecurity or network security roles.
• Substitutions:
  For anything requiring a substitution, the governemnt customer is subject to further review and either approve or deny the request.
• A High School degree with a total of 18 years of experience in cybersecurity or network security roles.
• Masters degree with a total of 9 years of experience in cybersecurity or network security roles.

• CISSP, Security+, CCNA, or similar certification.
• FAA or transportation sector experience preferred.
• Familiarity with Zero Trust Architecture, Security Orchestration, and network virtualization (e.g., NFV).
• Strong written, verbal, and interpersonal skills.

For D.C., NJ, Remote: $105,100 - $164,125.

USD $ - USD $ /Yr.

All qualified applicants will receive consideration for employment without regard to race, color, ethnicity, sex, age, national origin, religion, physical or mental disability, pregnancy/childbirth and related medical conditions, veteran or military status, or any other characteristics protected by applicable federal, state, or local law.

EEO is the Law | E-Verify | Right to Work