Security Engineer (Network Architecture) - Multiple levels!

Tis Security Engineer

Responsibilities We are looking for highly technical, hands-on professionals with a strong foundation in network architecture, design, and security individuals who are ready to step up from traditional network engineering roles to take ownership of strategic, architecture-level responsibilities. Ideal candidates will have deep experience with configurations, firewall rules, network path analysis, and transitioning efforts such as IPv4 to IPv6. These are the types of professionals who understand both the big-picture architecture and the hands-on technical details, and who are prepared to make security-focused architectural recommendations in complex environments. The TIS Security Engineer will support the FAA Telecommunications and Integrated Services (TIS) Group and provide expert-level security engineering across the FAA's FTI environment. This includes : analyzing and guiding network architecture to ensure cybersecurity is built-in from the ground up, performing hands-on reviews of system configurations, firewall rules, and network paths to align with FAA Orders, NIST 800-53, and federal cybersecurity standards, leading efforts in transitioning technologies (e.g., IPv4 to IPv6, microwave radio refreshes) from a cybersecurity and network architecture perspective, supporting the integration of Zero Trust, Software-Defined Networking (SDN), and defense-in-depth strategies into enterprise-level solutions, acting as a technical bridge between FAA cyber stakeholders and infrastructure providers (network, security, cloud), and evaluating vendor-proposed architectures and making expert-level recommendations based on federal policy, security principles, and industry best practices.

Required Qualifications

Required Qualifications : experience supporting federal government programs, ideally within the FAA or transportation sector, proven experience with hands-on network engineer or architecture and understands network design, configurations, firewalls, VPNs, IDS / IPS, and load balancing, knowledge of telecommunications infrastructure, including IPv4 / IPv6, and WAN / LAN environments, understand federal cybersecurity frameworks (NIST RMF, FISMA, NIST SP 800-53 rev 5), can evaluate network and system security concepts for large-scale, safety-critical systems like those in the National Airspace System (NAS), comfortable advising on defense-in-depth architectures, Zero Trust CONOPS, SD-WANs, and emerging tech, have experience collaborating with engineers, PMs, and cybersecurity stakeholders to support ATO packages and continuous monitoring, ability to develop system security plans, risk assessments, and related security documentation, U.S. Citizenship or Permanent Residency with 3+ years U.S. residency.

Compensation Ranges

Compensation Ranges : for D.C., NJ, Remote : $84,700 - $193,750.

Desired Qualifications

Desired Skills & Experience : CISSP, Security+, CCNA, or similar certification, FAA or transportation sector experience preferred, familiarity with Zero Trust Architecture, Security Orchestration, and network virtualization (e.g., NFV), strong written, verbal, and interpersonal skills.