Omm IT Solutions logo

Senior Network Engineer (Cisco / Zero Trust Architecture Lead)

Omm IT Solutions
2 days ago
Full-time
On-site
Washington, Washington, United States
Networking & Infrastructure
PLEASE NOTE:
  • It is a Hybrid position in Washington, D.C. Metro
  • Clearance Requirement: Public Trust Tier 2 will be required after onboarding
  • Must be a U.S. Citizen or hold Permanent Residence Status.Ҁ‹
SUMMARY:
We are seeking an elite Senior Network Engineer to serve as Key Personnel, providing advanced engineering, operational, and advisory support for the Client Cisco network environment. The primary objective of this role is to strengthen the security, reliability, and resilience of the network infrastructure while actively driving the remediation of identified Incident Response (IR) findings. You will design, implement, and maintain secure network architectures across core, distribution, access, and edge layers.

KEY RESPONSIBILITIES:
  • Enterprise Architecture & Zero Trust: You will design, implement, operate, and optimize the CBO's Cisco-based network infrastructure to ensure high availability and resilience. You must engineer and enforce Zero Trust network architecture principles in accordance with NIST SP 800-207. This includes establishing secure network segmentation and micro-segmentation strategies to limit lateral movement and protect high-value assets.
  • Advisory & Technical Leadership: You will serve as a senior technical advisor to CBO stakeholders, collaborating with cloud, Microsoft engineering, and cybersecurity teams to resolve complex network issues. You will also lead or participate in security assessments, audits, and compliance reviews, providing essential evidence and remediation support.
  • Security Integrations & IR: You will implement network monitoring and alerting capabilities, integrating them with enterprise SIEM and Network Detection and Response (NDR) tools to enhance threat detection. You will actively support incident response activities by providing network-level analysis, containment actions, and forensic data collection.
  • Perimeter & Access Control: You will secure public-facing and perimeter network assets by implementing strict ingress/egress filtering, firewall rule optimization, and multi-factor authentication for administrative access. You will engineer and enforce secure network access controls, integrating 802.1X port-based authentication and role-based access with enterprise identity services.
  • Lifecycle & Vulnerability Management: You will establish and maintain a structured program for network device patching, firmware updates, and lifecycle management. You will continuously conduct vulnerability assessments and coordinate remediation in alignment with the NIST Risk Management Framework (RMF).
  • Advanced Routing & DNS: You will manage routing, switching, and network services (VLANs, DNS, DHCP, VPNs) ensuring optimal performance. You will serve as the primary administrator troubleshooting enterprise DNS services.


Requirements

MANDATORY QUALIFICATIONS:
  • Must be a U.S. Citizen or hold Permanent Residence Status.
  • Must hold active, highly relevant IT networking and security certifications (e.g., CCNP, CCNA, Security+, or equivalent) that have been actively maintained for a minimum of 5 years.
  • Expired certifications or those never used professionally will not be accepted.
  • Proven history operating as a Senior Engineer or Architect designing Cisco network infrastructures and leading audit/compliance reviews (NIST SP 800-53 and SP 800-207).