{"id":904,"date":"2025-12-24T08:52:22","date_gmt":"2025-12-24T08:52:22","guid":{"rendered":"https:\/\/skillbasedmatching.com\/jobs\/?post_type=jobpost&#038;p=904"},"modified":"2025-12-24T08:52:34","modified_gmt":"2025-12-24T08:52:34","slug":"senior-information-security-engineer-infrastructure-protection","status":"publish","type":"jobpost","link":"https:\/\/skillbasedmatching.com\/jobs\/current-jobs\/senior-information-security-engineer-infrastructure-protection\/","title":{"rendered":"Senior Information Security Engineer \u2013 Infrastructure Protection"},"content":{"rendered":"\n<p>\u200bThis is a <strong>Senior-level, Remote-friendly<\/strong> role based out of <strong>McLean, VA<\/strong>, focused on securing Booz Allen Hamilton\u2019s internal enterprise infrastructure. The position is highly specialized in <strong>Network Security<\/strong>, specifically emphasizing firewall administration and the management of <strong>DNS, DHCP, and IP Address Management (DDI)<\/strong>. You will be a lead technical resource responsible for consolidating disparate systems into a unified security posture.<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>\u200b<strong>Requisition ID:<\/strong> R0230774<\/li>\n\n\n\n<li>\u200b<strong>Location:<\/strong> Remote (McLean, VA HQ)<\/li>\n\n\n\n<li>\u200b<strong>Core Tech Stack:<\/strong> Check Point Firewalls, Infoblox (DDI), Cloudflare, and WAF.<\/li>\n\n\n\n<li>\u200b<strong>Key Focus:<\/strong> Policy maintenance, lifecycle management, and Zero Trust implementation.<\/li>\n\n\n\n<li>\u200b<strong>Schedule:<\/strong> Includes a weekly rotating on-call schedule.<\/li>\n<\/ul>\n\n\n\n<h2 class=\"wp-block-heading\">\u200bKey Responsibilities: Firewall Mastery and DNS Consolidation<\/h2>\n\n\n\n<p>\u200bIn this role, you act as the architect and administrator for the &#8220;perimeter&#8221; and internal controls that keep an enterprise-level business operational.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">\u200bFirewall and WAF Administration<\/h3>\n\n\n\n<p>\u200bYou will manage the full lifecycle of infrastructure firewalls, specifically using <strong>Check Point<\/strong>. This includes day-to-day policy maintenance (rulesets), tuning <strong>Web Application Firewalls (WAF)<\/strong> to prevent injections and cross-site scripting, and implementing cybersecurity controls for improved event correlation.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">\u200bAdvanced DDI Management (Infoblox)<\/h3>\n\n\n\n<p>\u200bA primary objective for this role is the management of <strong>DNS and IPAM<\/strong> using <strong>Infoblox<\/strong>. You will lead the effort to consolidate alternate or disparate DNS solutions into a single, go-forward Infoblox environment. This ensures centralized visibility and security for every IP address and domain request within the enterprise.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">\u200bSecurity Strategy and Zero Trust<\/h3>\n\n\n\n<p>\u200bYou will identify requirements for vulnerability assessments and recommend long-term security strategies. This includes evolving the environment toward a <strong>Zero Trust framework<\/strong>, where &#8220;never trust, always verify&#8221; is applied to every network connection. You will also work with cloud-native security tools within <strong>Azure and AWS<\/strong> to protect hybrid-cloud workloads.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">\u200bRequired Qualifications and Skills<\/h2>\n\n\n\n<p>\u200bBooz Allen is looking for a self-directed engineer capable of solving complex problems without &#8220;considerable direction.&#8221;<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>\u200b<strong>Experience:<\/strong> 3+ years in information system security with a heavy focus on firewall design and implementation.<\/li>\n\n\n\n<li>\u200b<strong>Network Foundations:<\/strong> Proven experience with <strong>DNS\/IPAM<\/strong> and a solid understanding of network protocols.<\/li>\n\n\n\n<li>\u200b<strong>Autonomy:<\/strong> Demonstrated ability to work in a fast-paced enterprise environment without strict oversight.<\/li>\n\n\n\n<li>\u200b<strong>Incident Management:<\/strong> Knowledge of ticketing systems and the ability to handle high-pressure on-call rotations.<\/li>\n\n\n\n<li>\u200b<strong>Education:<\/strong> High School Diploma\/GED required (Bachelor&#8217;s preferred).<\/li>\n<\/ul>\n\n\n\n<h3 class=\"wp-block-heading\">\u200bPreferred Experience (Nice to Have)<\/h3>\n\n\n\n<ul class=\"wp-block-list\">\n<li>\u200b<strong>Specific Platforms:<\/strong> Hands-on experience with <strong>Check Point firewalls<\/strong> and <strong>Cloudflare<\/strong>.<\/li>\n\n\n\n<li>\u200b<strong>Cloud Security:<\/strong> Practical knowledge of <strong>AWS and Azure<\/strong> security controls.<\/li>\n\n\n\n<li>\u200b<strong>Certifications:<\/strong> Professional credentials such as the <strong>CISSP<\/strong>.<\/li>\n<\/ul>\n\n\n\n<h2 class=\"wp-block-heading\">\u200bSummary of Role Impact<\/h2>\n\n\n\n<p>\u200bBooz Allen Hamilton is a major federal contractor and consulting firm. As a Senior Information Security Engineer, your work directly protects the sensitive data and infrastructure used by thousands of consultants and their government clients. By consolidating DNS and tuning WAF policies, you reduce the attack surface of the firm and ensure that &#8220;peak operations&#8221; are maintained against evolving global threats.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>\u200bThis is a Senior-level, Remote-friendly role based out of McLean, VA, focused on securing Booz Allen Hamilton\u2019s internal enterprise infrastructure. The position is highly specialized in Network Security, specifically emphasizing firewall administration and the management of DNS, DHCP, and IP Address Management (DDI). You will be a lead technical resource responsible for consolidating disparate systems [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"menu_order":0,"template":"","jobpost_category":[648,44,1098],"jobpost_job_type":[39],"jobpost_location":[],"jobpost_tag":[4106,3406,4107,4108,3180,804,81,1251,1940],"class_list":["post-904","jobpost","type-jobpost","status-publish","hentry","jobpost_category-information-technology","jobpost_category-security","jobpost_category-technical-services","jobpost_job_type-remote","jobpost_tag-booz-allen-hamilton","jobpost_tag-check-point","jobpost_tag-dns-ipam","jobpost_tag-infoblox","jobpost_tag-information-security-engineer","jobpost_tag-network-security","jobpost_tag-remote","jobpost_tag-waf","jobpost_tag-zero-trust"],"_links":{"self":[{"href":"https:\/\/skillbasedmatching.com\/jobs\/wp-json\/wp\/v2\/jobpost\/904","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/skillbasedmatching.com\/jobs\/wp-json\/wp\/v2\/jobpost"}],"about":[{"href":"https:\/\/skillbasedmatching.com\/jobs\/wp-json\/wp\/v2\/types\/jobpost"}],"author":[{"embeddable":true,"href":"https:\/\/skillbasedmatching.com\/jobs\/wp-json\/wp\/v2\/users\/1"}],"wp:attachment":[{"href":"https:\/\/skillbasedmatching.com\/jobs\/wp-json\/wp\/v2\/media?parent=904"}],"wp:term":[{"taxonomy":"jobpost_category","embeddable":true,"href":"https:\/\/skillbasedmatching.com\/jobs\/wp-json\/wp\/v2\/jobpost_category?post=904"},{"taxonomy":"jobpost_job_type","embeddable":true,"href":"https:\/\/skillbasedmatching.com\/jobs\/wp-json\/wp\/v2\/jobpost_job_type?post=904"},{"taxonomy":"jobpost_location","embeddable":true,"href":"https:\/\/skillbasedmatching.com\/jobs\/wp-json\/wp\/v2\/jobpost_location?post=904"},{"taxonomy":"jobpost_tag","embeddable":true,"href":"https:\/\/skillbasedmatching.com\/jobs\/wp-json\/wp\/v2\/jobpost_tag?post=904"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}