Sr. Network Engineer – Security Modernization (NGFW, Zero Trust, Segmentation, Cisco ISE) | Active TS | Security+ | CCIE preferred

Location: Fully onsite at a secure federal installation in the Washington, DC metro area. Relocation and travel assistance available. For teams of two or more in the same region, alternate accredited SCIF work locations may be supported. Referrals: Have a colleague you'd like to work with? Referrals are encouraged and eligible for bonuses. For candidates interested in working outside the DC area, team-based placements (2+ hires at the same location) help enable alternate SCIF site options. We're hiring 8 engineers across 3 skill sets for the same client:This role - Sr. Network Engineer III - Security (2 openings)Sr. Network Engineer III - Wireless (1 opening)Sr. Network Engineers III - Unified Communications (5 openings)KORE1, a nationwide provider of staffing and recruiting solutions, has an immediate opening for a Sr. Network Engineer - Security Modernization (NGFW, Zero Trust, Segmentation, Cisco ISE) | Active TS | Security+ | CCIE Preferred As a Sr. Network Security Engineer III, you'll provide hands-on expertise in securing mission-critical networks for a high-visibility customer to make an impact across the federal government. Our team is responsible for designing, operating, and hardening complex security environments, and you'll play a critical role in strengthening, scaling, and protecting these environments while enabling secure mission delivery across the organization.What you'll do:Design, implement, and manage next-generation firewalls, VPN solutions, intrusion prevention systems (IPS), IDS, and network access control (NAC) platforms in mission-critical environmentsSecure network perimeters and internal network segments, including policy design, segmentation, and threat mitigation using defense-in-depth strategiesDeploy and manage firewall rule sets, VPN tunnels, and security policies across enterprise environmentsAdminister and support enterprise security platforms such as Palo Alto Networks, Fortinet, Cisco (including Cisco ISE and Cisco ASA)Implement and support Zero Trust architectures and identity-centric network security modelsPerform endpoint configuration hardening and maintain secure network environmentsRespond rapidly to security incidents, vulnerabilities, and operational needs with urgency and disciplineDrive continuous security hardening and ongoing improvement of network infrastructureParticipate in Agile execution, technical planning, and security risk discussionsCommunicate security impacts, risks, and mitigation strategies to both technical and non-technical stakeholdersRecommend and implement security architecture and operational enhancementsServe as a hands-on technical SME, contributing immediately with minimal ramp-up in a mission-critical environmentBuild and maintain high levels of customer trust through reliable, secure deliveryApply strong engineering judgment and creativity to deliver practical, mission-focused security solutionsWhat you'll need to succeed:Bachelor's degree in a technical field is preferred. Relevant experience may substitute for education requirements. Active U.S. Top Secret clearance required; must be eligible for expedited SCI read-in (recent, in-scope investigation required; prior TS/SCI and polygraph preferred). Security+ (also satisfies DoD 8140 requirements for the 441 Network Operations Specialist work role)At least one platform-specific security certification (e.g., PCNSE, Fortinet NSE, or Cisco security certification)CCIE Security or CCIE Enterprise Infrastructure is preferred10+ years of experience in network engineering with a primary focus on enterprise network security infrastructure.Demonstrated subject matter expertise designing, implementing, and managing next-generation firewalls, VPN solutions, intrusion prevention systems, and network access control platforms.Hands-on experience securing network perimeters and internal network segments, including policy design, segmentation, and threat mitigation.Operational experience deploying and managing firewall rule sets, VPN tunnels, and security policies in mission-critical environments.Hands-on experience with at least one enterprise security platform, such as Palo Alto Networks, Fortinet, or Cisco security technologies.Hands-on experience with Cisco ISE and Cisco ASA environments.Hands-on experience with IDS and IPS solutions and endpoint configuration hardening in secure environments.Experience supporting Zero Trust architectures and identity-centric network security patterns.Ability to contribute immediately with minimal ramp-up in a mission-critical operational environment.This position is designated as essential personnel supporting continuity of operations and may require work during government shutdowns, emergencies, or other critical situations.SALARY RANGE: $230K - $320KThe salary range for this position is determined based on qualifications, skills, and relevant experience. The final salary offered will be determined based on several factors, including:The candidate's professional background and relevant work experienceThe specific responsibilities of the role and organizational needsInternal equity and alignment with current team compensationThis role is also eligible for additional compensation, subject to the terms and policies, which may include:Performance-based bonusesCompany-paid training and/or certifications