D2 is actively seeking TS/SCI-cleared Firewall Engineers to join our Network Security Services (NSS) team! We are hiring for multiple openings for this role, at varying experience levels, and with the potential to be based out of either Springfield, VA (or) St. Louis, MO. What You'll Get to Do: As a member of the TCS Network Security Services (NSS) team, you will work with both corporate and customer leadership to research, analyze, and implement enterprise-wide network security solutions/capabilities/enhancements to support customer business/mission goals and objectives. These roles may involve up to 15% travel (CONUS; possibly occasional OCONUS). More About These Roles: * Assist with design, analysis, testing, and implementation of state-of-the-art secure network architectures. * Conduct risk assessment and provide recommendations for design. * Manage WAN, LAN, CAN, and remote network security as well as incident and problem management. * Oversee security infrastructure sustainment, maintenance, and advanced configuration. (firewalls, F5 load balancers, web gateways, mail gateways, IDS, and management tools). * Oversee the reporting, documentation, and investigation of all security-related incidents; lead the development and implementation of corrective measures. * Develop and execute standard operating procedures (SOPs) for security tools. * Evaluate and report on new network Security technologies to enhance the capabilities of the network. * Act as liaison to the contract and customer management, and government Designated Approving Authority (DAA) regarding network security status, policies, and procedures. You'll Bring These Qualifications: * TS/SCI (current) * Must be able to successfully pass/maintain a U.S. Government Polygraph (post-hire) * BA/BS Degree and typically between Two (2) and Eight (8) years of related technical experience in Network Security with large-scale enterprise/global networks in a high-paced, diverse environment. (Additional experience may be considered instead of a degree.) * DoD 8140.01 and DoD 8570.01-M IAT Level II compliant certification (current) * Must be able to successfully obtain/maintain CSSP Infrastructure Support certification within 120 days of start date (post-hire) * Firewalls (e.g. Palo Alto, Juniper, Cisco, etc.) * Routers/Switches (e.g. Juniper, Cisco, etc.) * Intrusion Detection Systems / IDS Products (e.g. FireEye, F5 Load Balancer, Cisco FTD, etc.) * Unix, RHELS OS, Windows Enterprise AD, VMware