​This is a Senior-level, Remote-friendly role based out of McLean, VA, focused on securing Booz Allen Hamilton’s internal enterprise infrastructure. The position is highly specialized in Network Security, specifically emphasizing firewall administration and the management of DNS, DHCP, and IP Address Management (DDI). You will be a lead technical resource responsible for consolidating disparate systems into a unified security posture.

• ​Requisition ID: R0230774
• ​Location: Remote (McLean, VA HQ)
• ​Core Tech Stack: Check Point Firewalls, Infoblox (DDI), Cloudflare, and WAF.
• ​Key Focus: Policy maintenance, lifecycle management, and Zero Trust implementation.
• ​Schedule: Includes a weekly rotating on-call schedule.

​Key Responsibilities: Firewall Mastery and DNS Consolidation

​In this role, you act as the architect and administrator for the “perimeter” and internal controls that keep an enterprise-level business operational.

​Firewall and WAF Administration

​You will manage the full lifecycle of infrastructure firewalls, specifically using Check Point. This includes day-to-day policy maintenance (rulesets), tuning Web Application Firewalls (WAF) to prevent injections and cross-site scripting, and implementing cybersecurity controls for improved event correlation.

​Advanced DDI Management (Infoblox)

​A primary objective for this role is the management of DNS and IPAM using Infoblox. You will lead the effort to consolidate alternate or disparate DNS solutions into a single, go-forward Infoblox environment. This ensures centralized visibility and security for every IP address and domain request within the enterprise.

​Security Strategy and Zero Trust

​You will identify requirements for vulnerability assessments and recommend long-term security strategies. This includes evolving the environment toward a Zero Trust framework, where “never trust, always verify” is applied to every network connection. You will also work with cloud-native security tools within Azure and AWS to protect hybrid-cloud workloads.

​Required Qualifications and Skills

​Booz Allen is looking for a self-directed engineer capable of solving complex problems without “considerable direction.”

• ​Experience: 3+ years in information system security with a heavy focus on firewall design and implementation.
• ​Network Foundations: Proven experience with DNS/IPAM and a solid understanding of network protocols.
• ​Autonomy: Demonstrated ability to work in a fast-paced enterprise environment without strict oversight.
• ​Incident Management: Knowledge of ticketing systems and the ability to handle high-pressure on-call rotations.
• ​Education: High School Diploma/GED required (Bachelor’s preferred).

​Preferred Experience (Nice to Have)

• ​Specific Platforms: Hands-on experience with Check Point firewalls and Cloudflare.
• ​Cloud Security: Practical knowledge of AWS and Azure security controls.
• ​Certifications: Professional credentials such as the CISSP.

​Summary of Role Impact

​Booz Allen Hamilton is a major federal contractor and consulting firm. As a Senior Information Security Engineer, your work directly protects the sensitive data and infrastructure used by thousands of consultants and their government clients. By consolidating DNS and tuning WAF policies, you reduce the attack surface of the firm and ensure that “peak operations” are maintained against evolving global threats.