Akima
Provides innovative solutions across various sectors, including government, energy, and infrastructure.
Network Security - Remote
Lead design, implementation, and oversight of network security for USCIS
Job Highlights
About the Role
• Generate network security assessments, risk reports, system design reviews, and documentation; provide regular briefings to USCIS stakeholders and senior leadership. • Participate in incident response: network-focused investigation, containment, remediation, lessons learned. • Provide mentoring, knowledge transfer, and guidance to junior team members and other supporting staff. • Stay up to date with latest threat vectors, network security tools, attack techniques, and ensure continuous improvement of network defenses. • Ensure compliance with applicable frameworks and regulations: DHS, NIST (e.g. 800-53 / RMF), FIPS, HSPD-12, Federal policies, USCIS directives, etc. • Support configuration, deployment, and tuning of security policies on network devices and systems ensuring optimal security without undue operational impact. • Define and help enforce security governance for the network domain: policies, standards, guidelines; review changes through architecture review boards. • Monitor network traffic and logs to detect anomalous or suspicious activity; perform forensic / deep packet or packet capture analysis when necessary. • Collaborate with engineering, operations, and security teams to define secure network architectures, including transition/migration to cloud-based and hybrid platforms. • Lead the evaluation and implementation of network security technologies: firewalls, IDS/IPS, VPNs, NDR (network detection & response), network segmentation, Zero Trust / micro‐segmentation architectures. • Serve as the technical authority and advisor on all network security matters: design, architecture, standards, tools, processes, and best practices. • Assess USCIS network vulnerabilities—both infrastructure (on-prem, WAN/LAN, wireless) and cloud / hybrid environments—and recommend mitigation strategies.
Key Responsibilities
- ▸security assessments
- ▸incident response
- ▸policy configuration
- ▸governance
- ▸network architecture
- ▸technology evaluation
What You Bring
• Cloud networking (AWS, Azure, GCP) or hybrid cloud. • Leadership skills: able to guide teams, provide recommendations, and drive security strategy. • Experience in USCIS / DHS environment or other federal agencies. • Significant experience (typically 10+ years) in network engineering and security in large-scale, enterprise-level environments. • Firewalls, IDS/IPS, VPNs, network segmentation. • Strong analytical and problem-solving skills, with ability to perform risk / threat assessments. • Bachelor’s degree in computer science / information technology / Cybersecurity or related; advanced degree is a plus. • Excellent communication skills: able to translate technical details to non-technical stakeholders; produce reports, proposals, and policy documents. • Understanding or experience with emerging architectures: zero trust, micro‐segmentation, SASE, SD-WAN, etc. • Experience with automation of network security operations (e.g., configuration management, IaC, orchestration). • WAN / LAN / wireless network architectures. • Federal security standards: NIST, FedRAMP, FISMA, DHS policies, etc. • U.S. Citizenship. • Familiarity with DevSecOps practices and integrating security in agile / CI/CD pipelines. • Must pass a Public Trust background check. • Demonstrated experience with: • Network monitoring / SIEM / NDR / tools that analyze traffic and logs. • Certifications such as CISSP, CCNP Security, CCIE (Security), GIAC certifications, etc.
Requirements
- ▸cloud
- ▸firewalls
- ▸zero trust
- ▸automation
- ▸nist
- ▸cissp
Work Environment
Remote