Sr. Enterprise Network Engineer

Senior Enterprise Network Engineer

LOCATION: Columbia, MD (Onsite)

JOB STATUS:Full-time

CLEARANCE: Active Top Secret (TS/SCI Preferred)

TRAVEL:As Needed

Astrion has an exciting opportunity for a highly experiencedSenior Network Engineer to design, implement, secure, and maintain mission-critical network infrastructures supporting Department of Defense/Department of War (DoD/DoW) environments. The ideal candidate brings deep expertise in Cisco and Fortinet technologies, extensive experience operating withinclassified networks, and a proven track record of implementing and maintaining systems in compliance withRisk Management Framework (RMF), DoD STIGandCross Domain / Comply-to-Connect (C2C)requirements.

REQUIRED QUALIFICATIONS / SKILLS

• Active TS/TSCI security clearance (required)
• Bachelor's degree in Network Engineering, Computer Science, or related field (or equivalent experience)
• 8+ years of experience in network engineering within Department of Defense/Department of War (DoD/DoW) or classified environments
• Deep expertise in:
  • Cisco routing & switching (BGP, OSPF, EIGRP, VLANs, MPLS)
  • Fortinet solutions (FortiGate, FortiOS, VPNs, security fabric)
• Demonstrated experience implementing and maintainingDISA STIG compliance
• Hands-on experience withC2C / Cross Domain architecturesand security controls
• Strong understanding of:
  • RMF (Risk Management Framework)
  • DISA security requirements and accreditation processes
  • DCSA Accreditation Standards
• Active DoD 8140 (formerly DoD 8570) compliant industry certification (e.g., Security+ CE, CISSP, etc.)
• Active DoD 8140 (formerly DoD 8570) compliant environment certification (e.g., minimum Cisco CCNP)
• Experience with C2C Requirements:
  • Network automation (Python, Ansible)
  • Zero Trust architectures
  • SIEM integration and log analysis
  • NetFlow monitoring

KEY COMPETENCIES

• Advanced network design and troubleshooting
• Security hardening and compliance enforcement
• Strong analytical and problem-solving abilities
• Excellent communication and documentation skills
• Ability to operate in high-security, mission-critical environments

PREFERRED QUALIFICATIONS / SKILLS

• CCIE (Enterprise or Security)
• Fortinet NSE 4-7 certifications
• Project Management Experience
• Experience briefing Executive Leadership
• Prior experience supportingCross Domain Solutions (CDS)programs
• Experience with cloud-based DoD environments (e.g., Azure Government, Azure Secret)

RESPONSIBILITIES

• Design, implement, and maintain secure network architectures usingCisco (routing/switching, ISE) andFortinet (FortiGate)solutions
• Design, implement, and maintain 802.1x compliance platform
• Engineer and supportclassified and unclassified network environments(e.g., MDA CNET, NIPR, SIPR, JWICS as applicable)
• Ensure compliance withDoD Security Technical Implementation Guides (STIGs)and cybersecurity policies
• Implement and maintainCross Domain Solutions (CDS)andComply-to-Connect (C2C)architectures
• Perform network hardening, vulnerability remediation, and continuous monitoring in accordance with RMF controls
• Develop and maintainnetwork documentation, diagrams, SOPs, and security artifacts
• SupportAuthority to Operate (ATO)processes, including STIG checklists, POA&Ms, and risk assessments
• Troubleshoot complex network and security issues across multi-vendor environments
• Collaborate with cybersecurity, systems engineering, and mission stakeholders to ensure secure, reliable operations
• Support audits, inspections, and compliance validation activities