Wide Area Network (WAN) Sustainment Network Engineer - Associate

Empower AI is AI for government. Empower AI gives federal agency leaders the tools to elevate the potential of their workforce with a direct path for meaningful transformation. Headquartered in Reston, Va., Empower AI leverages three decades of experience solving complex challenges in Health, Defense, and Civilian missions. Our proven Empower AI Platform® provides a practical, sustainable path for clients to achieve transformation that is true to who they are, what they do, how they work, with the resources they have. The result is a government workforce that is exponentially more creative and productive. For more information, visit www.Empower.ai.

Empower AI is proud to be recognized as a 2024 Military Friendly Employer by Viqtory, the publisher of G.I. Jobs. This designation reflects the company’s commitment to hiring and supporting active-duty and veteran employees.

Empower AI: As a Wide Area Network (WAN) Sustainment Network Engineer, you will provide services in support of the Army Network Enterprise Technology Command (NETCOM) on the Army Department of Defense Information Network (DoDIN-A) Cybersecurity and Network Operations Mission Support (ADCNOMS) contract. Wide-Area Networks (WAN) are physical or logical networks that provide data communications to multiple locations and usually span a large geographic area. WAN infrastructure consists of long-haul transport equipment such as inter-site outside plant, optical and radio frequency transmission systems (SATCOM, Line of Site, Beyond Line of Site, etc.), Network multiplexing devices at Layers 1-3 (TDM/FDM), MPLS, Metro Ethernet, traditional routed WAN, and Software Defined WANs.

Highlights of Responsibilities:

• Perform detailed sample analysis of DoDIN-A WAN performance and capacity and document findings in monthly Proactive WAN Analysis Reports.
• Recommend network modifications including areas such as routing, switching, firewall configurations, as well as circuit transport modifications needed for optimal performance.
• Draft and maintain enterprise system documentation.
• Conduct Change, Configuration, Release Management (CCRM) activities on a recurring basis.
• Draft emerging technology or new capability fielding documentation.
• Complete and upload into eMASS vulnerability scans using ACAS, and compliance scans (SCAP) to support RMF.
• Develop artifacts including items such as documentation of system functionality, connectivity, data flows, PPSs, management concepts, security plan, and hardware/software configurations in support of system ATOs.
• Update the eMASS POA&M for each capability.
• Manage applicable system changes using both approved NETCOM document templates and the Configuration Management Data Base (CMDB).
• Maintain standard baseline configuration within the ITEF.
• Participate in technical information exchanges in various technical forums
• Provide enterprise compliance analysis.
• Provide and support data mining and data visualizations, including items such as dashboards, business intelligence, workflow diagrams, SharePoint Services sites, and customized queries and reports.
• Test and identify system limitations and make recommended system improvements to optimize and enhance system functionality and performance
• Support automated software delivery and configuration management of the computing environment.
• Develop and release Cyber Tasking Order (CTO) POA&M mitigations that delineate the defense in depth measures taken to reduce the risk to the DoDIN-A infrastructure, data, and customers.
• Develop system-specific technical key performance indicators (KPI) and analysis reports.
• Draft enterprise system architectural diagrams.
• Develop and maintain system diagrams, to include High Level Operational Concept Graphic (OV-1), Operational Resource Flow Description (OV-2), System Interface Description (SV-1), Systems Resource Flow Description (SV-2), or other required system interface diagrams.
• As required support fielding activities.
• Monitor capability incident queues, respond to > 95% of new incidents in accordance with minimum response times.
• Generate monthly standardized reports of incident and problem management KPIs by capability.
• Provide weekly in-depth discussions by capability on incident management performance utilizing Government provided dashboards
• Provide Tier III support (break/fix) during normal duty hours and during call-back hours.
• Coordinate and interface with the Global Cyber Center (GCC), Regional Cyber Centers (RCCs), Network Enterprise Centers (NECs), all echelons of the DoDIN-A and the Joint NetOps community, and product specialists to resolve incidents and problems.
• Document all known errors, problems, and solutions discovered in the process of executing Tier-III break/fix operations.
• Request and receive Government approval before escalating Tier-III incidents or problems to Tier-IV vendor support.
• Draft technical guidance outlining step-by-step remediation procedures, targeted to a Tier-I/Tier-II user audience.

Minimum Requirements:

• Secret Security Clearance
• CCNA certification
• JNCIA-Junos certification
• Bachelor’s degree
• 0 – 5 years of experience
• Basic sustaining engineering in (W) JRSS/TLA/SDN architectures
• Basic sustaining engineering in (L/W) IP data networking and network equipment including CISCO and Juniper.
• Basic sustaining engineering in (L/W) All aspects of network security
• Basic sustaining engineering in (L/W) Operating systems, including Linux, Windows, Cisco Internetwork Operating System (IOS), Juniper Operating System (JUNOS), and Screen OS.
• Basic sustaining engineering in (W) Data packet routing, proxy services, and engineering for SD-WAN and MPLS/IP data networks.
• Basic sustaining engineering in (W) Virtual Private Network (VPN), IP Security, Generic Routing Encapsulation, and encryption, including items such as Tactical FASTLAN (TACLANE).
• Basic sustaining engineering in (W) Virtual Routing and Forwarding (VRF)/VPN
• Basic sustaining engineering in (W) MPLS
• Basic sustaining engineering in (W) Routing Protocols, such as Border Gateway Protocol, Open Shortest Path First
• Basic engineering experience in Quality of Service, NAC/C2C, 802.1x
• Basic engineering experience in Network Proxy Services
• Basic engineering experience in WAN optimizers
• Basic engineering experience in Remote access
• Basic engineering experience in Load Balancers
• Basic engineering experience in Software Defined Networking scripting including languages such as Python
• Basic engineering experience in Firewalls: Juniper/Cisco/PaloAlto and Crypto experience
• Basic engineering experience in Domain Name Service (DNS), DNS Security (DNSSEC), Trinsic DHCP, and Infoblox.
• Basic knowledge of networking concepts, including common infrastructure, technologies, security, troubleshooting, and tools.
• Basic knowledge of common operating systems, including Windows Desktop, Windows Server, or RedHat Linux.
• Basic knowledge of virtualization technologies and software, such as VMWare or Hyper-V.
• Basic knowledge of cloud technologies, such as Intune, Azure, and Amazon Cloud Services.
• Intermediate knowledge in Microsoft Office tools, including Word, Excel, Outlook, Teams, and PowerPoint.
• Intermediate knowledge in latest version of ITIL processes, with particular emphasis on Change, Release, and Configuration Management for enterprise systems.
• Intermediate knowledge in latest version of ITIL processes, with particular emphasis on Incident and Problem Management for enterprise systems.
• Intermediate experience providing direct technical support and troubleshooting to customers for complex IT-related issues.

Preferred Qualifications:

• CCNP certification
• JNCIP-Junos certification
• DoD Cyber Workforce Framework (DCWF 441) Network Operations Specialist Basic qualified (BS degree in Information Technology, Cybersecurity, Data Science, Information Systems, or Computer Science or CND or Network+) or equivalent certification
• ITIL v4 Foundations certification

Physical Requirements:

• Sitting for long periods
• Standing for long periods
• Ambulate throughout an office
• Ambulate between several buildings
• Stoop, kneel, crouch, or crawl as required
• Travel by land or air transportation 10% or less

All hiring and promotion decisions at Empower AI are based on merit to bring the best talent available to contribute to our firm’s overall success. It is the policy of Empower AI not to discriminate against any applicant for employment, or employee because of age, color, sex, disability, national origin, race, religion, or veteran status. Empower AI is a VEVRAA Federal Contractor.