IT Security Engineer

Since 1996, NFF has designed, architected, and delivered IT network and security solutions to many state, and local government agencies, K-20 educational institutions, federal agencies, and large enterprise businesses across the mid-Atlantic. NFF is a technology services and solutions provider, specializing in next-generation IT infrastructure including networks, data centers, cloud migrations, IT security, collaboration and mobility, and full/part-time staff augmentation services.   Our solutions, professional services and IT staffing portfolio are centered around building more resilient, secure, adaptive, and intelligent IT infrastructure and include comprehensive assessment, architecture, design, integration and installation services, and ongoing performance management services though our Network Operations Center (NOC).  

NFF is a Cisco Gold Partner with a Customer Experience Specialization and was a “Cisco Top-5 Mid-Atlantic SLED Partner” in 2019, 2020 and 2022. NFF has maintained Cisco Gold Partnership since 2008, is the only Cisco Gold Partner headquartered in the District of Columbia. In addition to Cisco, NFF has key partnerships with many manufacturers and IT solution providers including, Rapid7, Arctic Wolf, VMware, NetApp and Splunk.

NFF is a District of Columbia (DC) Certified Business Enterprise (CBE) and a SBA Certified Small Business with headquarters in downtown Washington, DC. Our dedication to quality is reflected in our accomplishment of being awarded multiple ISO 9001:2015 certifications.

NFF, Inc. is seeking a Network Security Engineer for one of our premier DC customers.  This individual will performan a variety of high level security functions with regards to disaster recovery and maintaining the security of a large scale IT infrastructure. 

Requirements

• Support the IT Service Catalog and automation by being second tier support Strategy and Planning
• Perform security assessments, identify gaps in existing security architecture, and recommend changes or improvements.
• Minimum of 10+ years of experience in Security Architecture & Engineering 
• Design security architecture elements to mitigate threats.
• Create solutions that align enterprise security architecture frameworks and standards (e.g. SABSA, NIST 800-53, ISO 27002) with overall business and security strategy.
• Participate in risk assessments for new technologies and projects.
• Employ secure configuration management processes.
• Assist in developing a disaster recovery and business continuity plan. Identify and prioritize system functions required to promote continuity and availability of critical business processes such that in the circumstance of system failure critical business functions are restored or recovered promptly.
• Document security requirements and controls for protecting information, systems, and technology assets.
• Define and document how the implementation of a new technology impacts the security posture of the current environment.
• Document and update as necessary all definition and architecture activities.
• Provide input on security requirements to be included in request for proposals (RFPs), statements of work (SOWs), and other procurement documents.
• Communicate current and emerging security threats to project team members. 

• Experience in identifying gaps in existing architectures.
• Experience in designing security architectures to mitigate threats.
• Knowledge of computer networking concepts and protocols (e.g. TCP/IP, DNS) and network security ethodologies.
• Knowledge of network access, identity, and access management (e.g. public key infrastructure, Oauth, OpenID, SAML, SPML).
• Knowledge of capabilities and applications of network equipment including routers, switches, servers, transmission media, and related hardware.
• Knowledge of remote access technology concepts.
• Knowledge of application firewall concepts and functions (e.g. single point of authentication enforcement, data anonymization, DLP scanning, SSL security).
• Work experience in cybersecurity designs for systems, networks, and multi-level security requirements or requirements for processing multiple classification levels of data.
• Knowledge of risk management processes and experience in conducting risk assessments. 
• Familiarity with the application of privacy principles to organizational requirements.
• Knowledge of identity and access management methods.
• Experience with Windows, Unix, and Linux operating systems. 
• Knowledge of business continuity and disaster recovery operation plans.
• Strong analytical and problem-solving skills capable of managing projects that drive business objectives.
• Exceptional written, oral, and interpersonal communication skills.
• Ability to work in team environments and to negotiate with multiple stakeholders.
• Ability to meet tight deadlines and to prioritize tasks.
• Innovative thinker who is self-directed and resourceful 

• Bachelor’s or Master’s degree in information technology or computer Science.
• The equivalent combination of education and successful work experience (15 years)

Certifications

• Required - CISSP, CISA, CISM, or other relevant security related designation(s)
• Nice to have - CISSP-ISSAP, TOGAF, or SABSA

NFF offers a competitive salary, comprehensive benefits and flexible paid time off options, for eligible employees:

• Medical, Dental and Vision, Health Savings Account, Flexible Spending Account
• STD, LTD, Supplemental life insurance and ADD&D
• Comprehensive 401k plan
• Paid Time Off

NFF is an Equal Opportunity Employer.

Important Notice: All NFF Inc communications come from @nffinc.com. Emails from other domains claiming to be NFF are likely scams. Be cautious, verify senders, and report suspicious messages immediately.