NIH - Network Engineer
cFocus Software seeks a Network Engineer to join our program supporting the National Institutes of Health (NIH). This position is fully remote. This position requires a Public Trust or the ability to obtain a public trust clearance. Qualifications:Public Trust Clearance B.S. Computer Science, Information Technology, or a related field 5+ years of experience designing, implementing, and supporting enterprise network infrastructure. Experience supporting Federal Government or large enterprise environments. Experience administering enterprise routing and switching platforms. Experience configuring and managing enterprise firewalls. Experience supporting IDS/IPS technologies. Experience supporting secure cloud networking. Experience implementing network security controls aligned with NIST Cybersecurity Framework and NIST SP 800-53. Experience with network monitoring and troubleshooting tools. Strong understanding of TCP/IP, BGP, OSPF, VLANs, VPNs, DNS, DHCP, and secure network protocols. Preferred certifications include: Cisco CCNP Enterprise, Cisco CCNP Security, Cisco CCIE Enterprise Infrastructure, Cisco CCIE Security Duties:Design, implement, configure, operate, and maintain secure enterprise network infrastructure supporting NIH/OD systems. Engineer highly available network architectures supporting mission-critical cybersecurity operations. Design secure routing, switching, wireless, VPN, and remote access solutions. Implement secure network segmentation to reduce attack surfaces and improve network resilience. Engineer resilient network connectivity across on-premises, cloud, and hybrid environments. Install, configure, administer, and optimize enterprise-class Next Generation Firewalls (NGFW). Configure and maintain Intrusion Detection and Prevention Systems (IDS/IPS). Support Web Application Firewalls (WAFs) and secure application delivery. Integrate network security technologies with SIEM, EDR, PAM, DLP, and threat intelligence platforms. Maintain network access control (NAC) technologies. Configure secure VPN technologies supporting remote workforce requirements. Support the design, implementation, and maturation of NIH Zero Trust Architecture initiatives. Implement network micro-segmentation and least privilege network access controls. Assist with evaluation and deployment of emerging security technologies. Provide engineering recommendations to improve enterprise security architecture. Participate in technology refreshes and infrastructure modernization efforts.