Burlington, Vermont

Where applicable, confirmation that you meet customer requirements for facility access which may include proof of vaccination and/or attestation and testing, unless an accommodation has been approved.

Secure our Nation, Ignite your Future

  • Use Agile engineering approach to DevSecOps and solutioning with Access Identity and Directory Services to architect, engineer, and implement network security control methods in cloud, on-premise and virtual environments to support DHS directive 4300A, NIST 800-53, and industry best practices

  • Extend into secure cloud solutions and next generation firewall and intrusion protection devices to scale against all IoT connected devices.

  • Continually improve DDI and network access control reporting. 

  • Knowledge and understanding to keep the network up to date (and ready to scale for the future) through compliance with all federal requirements such as DHS 4300A, NIST 800-53, and other industry best practices.

  • Perform as Level 3 network architecture and engineering escalation point for network security to effectively support security processes and procedures. 

  • Enhance the security posture to scale upward without impeding performance.

  • Audit firmware versions and configuration settings for the USCIS cloud and infrastructure platforms/devices to eliminate vulnerabilities and ensure USCIS deploys and operates in accordance with vendor recommendations, industry best-practices, DoD STIGs, and DHS configuration guidance.

  • Evaluate current and future network designs to ensure that network security is incorporated as an integral consideration in these designs.

  • Configure and implement Next Generation Firewall systems and Next Generation Intrusion Protection Systems.

  • Review existing configuration settings to identify potential security vulnerabilities and propose/implement setting or architectural changes to address these vulnerabilities.

  • Perform securing, hardening, and rule creation for new firewalls, switches, routers, and other network equipment. This includes reviewing and re-evaluating existing configuration settings and rules to verify USCIS’ security posture and eliminate unnecessary risk.

  • Architect and engineering a Network Access Control (NAC) solution.

  • Develop new efficient and effective processes to streamline the ports and protocols form request form.

Basic Qualifications:

  • A minimum of ten (10) years of experience as an Enterprise Architect Specializing in Active Directory services.

  • Certifications: CCIE or CCNP Security

  • A minimum of four (4) years of experience in cloud technologies such as but not limited to Azure and AWS.

  • Extensive experience designing mission critical infrastructure in enterprise environments.

  • Experience designing and implementing enterprise solutions that increase the availability and security of the enterprise.

  • Extensive experience with on premise physical infrastructure and Virtualization technologies including Hyper-V, VMWare, SAN, FCoe, NFS, SMB3 etc

  • Deep experience with networking and security methods and tools.

  • Strong troubleshooting and analytical skills required.

  • Must have strong critical thinking, complex problem solving, appropriate judgment, and decision-making skills

  • Experience with major cloud providers preferred.

  • Possess superior technical aptitude and effective written and verbal communications skills.

  • Proven experience with managing and using Dev Ops concepts.

  • Capable of supporting tools such as, or similar to:

NetCollector Steel Central ARX Steel Central Controller AlgoSec Amazon Cisco ACI/SDN Platform Cisco Cloud Center Cisco Firepower Cisco Identity Services Engine Cisco Meraki Cisco Prime Cisco Security Manager (CSM) ForeScout Cisco Routing platforms Cisco Security Manager Cisco Switching platform Google Infoblox IWAN Meraki Cloud Portal and devices MS Azure NetProfiler QOS Quality of Service Riverbed SD-WAN Riverbed Steelhead family suite Solarwinds Stealthwatch Steel Central Mobile Controller VipTella VMWare  NSX

For all positions requiring access to technology/software source code that is subject to export control laws, employment with the company is contingent on either verifying U.S.-person status or obtaining any necessary license. The applicant will be required to answer certain questions for export control purposes, and that information will be reviewed by compliance personnel to ensure compliance with federal law. ManTech may choose not to apply for a license for such individuals whose access to export-controlled technology or software source code may require authorization and may decline to proceed with an applicant on that basis alone.

ManTech International Corporation, as well as its subsidiaries proactively fulfills its role as an equal opportunity employer. We do not discriminate against any employee or applicant for employment because of race, color, sex, religion, age, sexual orientation, gender identity and expression, national origin, marital status, physical or mental disability, status as a Disabled Veteran, Recently Separated Veteran, Active Duty Wartime or Campaign Badge Veteran, Armed Forces Services Medal, or any other characteristic protected by law.

If you require a reasonable accommodation to apply for a position with ManTech through its online applicant system, please contact ManTech's Corporate EEO Department at (703) 218-6000. ManTech is an affirmative action/equal opportunity employer - minorities, females, disabled and protected veterans are urged to apply. ManTech's utilization of any external recruitment or job placement agency is predicated upon its full compliance with our equal opportunity/affirmative action policies. ManTech does not accept resumes from unsolicited recruiting firms. We pay no fees for unsolicited services.

If you are a qualified individual with a disability or a disabled veteran, you have the right to request an accommodation if you are unable or limited in your ability to use or access http://www.mantech.com/careers/Pages/careers.aspx as a result of your disability. To request an accommodation please click careers@mantech.com and provide your name and contact information.

Burlington, Vermont

ManTech was founded in 1968 to provide advanced technological services to the United States government. We began with a single contract with the U.S. Navy to develop war-gaming models for the submarine community. Over the years, our government's technology needs have increased dramatically in scope and sophistication, and we have grown to meet that challenge.


For more than 4 decades, we kept a careful eye on where emerging technologies were taking the government, and we developed the resources to master those technologies—by staying close to our customers and anticipating their needs, hiring talented professionals to propel us into the future, and acquiring companies with proven capabilities.


Today, we are a multi-billion-dollar public company that provides the innovation, adaptability, and critical thinking our government needs for success in defense, intelligence, law enforcement, science, administration, health, and other fields—throughout the nation and in many countries throughout the world. We are now applying the lessons learned in the unforgiving arena of national security to help the private sector protect networks and critical information.

Similar jobs