Network Engineer

Centurion seeks highly qualified and trained Network Engineer with a strong working to provide expert guidance and direction underpinning on-site support to Air Force Life Cycle Management Center/Cyber and Networks Directorate. This position is 100% onsite in San Antonio, TX. This is open to US Citizens that hold an Active Secret or Top Secret Clearance.

The Digital Modernization Sector is focused on delivering performance-based IT services and repeatable solutions to include applying cloud-factory and aaS (as a Service) capabilities and integrating commercial products to provide a comprehensive digital engineering approach to IT transformation.

Primary Responsibilities:

• Assist in implementation, security, and maintenance of our enterprise network infrastructure.

• Apply expertise in network architecture, security, automation, and cloud networking to ensure high availability, performance, and security across our IT environments.

• Engineer, monitor, manage, and troubleshoot internal and external networks to include encryptors, firewalls, routers, and switches.

• Engineer, monitor, manage, and troubleshoot virtual environments to include VMware.

• Engineer, monitor, and manage storage appliances and ability to help troubleshoot issues with vendor support.

• Research, implement, monitor, manage, patch, and troubleshoot various Microsoft and Linux products.

• Research, implement, and troubleshoot active directory, group policy, routing and DNS.

• Deploy, and maintain enterprise-level LAN, WAN, and wireless networks.

• Manage and optimize network hardware, including routers, switches, firewalls, load balancers, and VPNs.

• Experience with wireless networking technologies in the 802.11 protocol suite.

• Perform fault isolation and resolution in a methodical, thorough manner.

• Oversee cloud networking (AWS, Azure, Google Cloud), including hybrid cloud integrations.

• Develop and enforce network segmentation, access control, and zero-trust security models.

• Implement network security best practices, firewall policies, IDS/IPS, and NAC solutions.

• Conduct regular network vulnerability assessments, penetration testing, and risk mitigation.

• Ensure compliance with industry standards (NIST, ISO 27001, PCI-DSS, HIPAA, SOC 2, etc.).

• Collaborate with cybersecurity teams to detect and mitigate network threats.

• Monitor network traffic, bandwidth usage, and performance metrics, identifying and resolving bottlenecks.

• Automate network configurations and management tasks using scripting tools (Python, Ansible, Terraform).

• Experience configuring virtual private networks (VPNs) using one or more of the following technologies: Cisco AnyConnect, Azure VPN Gateway, MPLS, IPsec VPN, or other site-to-site VPN technologies

• Experience with DoD networks, especially classified and operational networks

• Relevant certifications such as CCNP, CCIE, or other specialization certifications (e.g. JNCIA, PCNSA, AZ-700, CISSP, etc).

Basic Qualifications:

• US Citizen with at least a Secret Clearance is required. With the ability to obtain a Top Secret SCI.

• Currently possessing DoD 8140 certification at or above IAT level II, e.g. Security+ CE.

• Bachelor’s degree with 4+ years of experience or a Master’s degree with 2+ years of experience. Additional experience can be considered in lieu of a degree.

• Strong knowledge of protocols, security standards, and design principles for OSI Layers 1-4.

• Experience with installation and configuration of physical networking equipment and Local Area Networks (LANs).

• Experience with the design and deployment of Wide Area Networks (WANs) using Virtual Private Networking (VPN) technologies

• Experience in interpreting and contextualizing network management and troubleshooting tools and technologies, such as ICMP, SNMPv3, and Syslog.

• Excellent problem-solving and analytical skills.

• Expertise in networking topologies, LANs/WANs (Ethernet), TCP/IP protocol (IPv4 / IPv6) and other common network standards.

• Expertise demonstrating the ability to design, implement, and support enterprise network switched and routed architectures.

• Experience designing and operating networks using routing protocols such as BGP, EIGRP, OSPF, and static routing.

• Experience designing new network systems or upgrades to existing network systems.

• Experience developing and presenting complex network diagrams.

• Experience installing, configuring and maintaining Cisco routers and switches.

• Experience with network management applications and related protocols such as SNMP and NetFlow.

Potential for Telework:

No

Clearance Level Required:

Secret (With the ability to obtain a Top Secret SCI)

Travel:

Yes, 10% of the time