Network Security Engineer

Job ID: 2610162

Location: Springfield, VA, US

Date Posted: 2026-03-11

Category: Information Technology

Subcategory: Network Engineer

Schedule: Full-Time

Shift: Day Job

Travel: No

Minimum Clearance Required: Top_Secret

Clearance Level Must Be Able to Obtain: TS/SCI

Potential for Remote Work: ORA_ON_SITE

Description

SAIC currently has an opening for a Network Security Engineer to support the Department of State (DoS) Bureau of Diplomatic Technology (DT). DT provides enterprise architecture design, engineering, operations and maintenance support services for desktops, servers, networks, firewalls, and enterprise applications across the Department.

The network security engineer is a specialized network security professional focused on protecting data as it moves across untrusted or public networks. This role sits at the intersection of high-speed networking and heavy-duty cryptography, ensuring that data is encrypted at the hardware level (Layer 2 or Layer 3) without sacrificing network performance.

Description of Duties:

• Develop next-generation VPN technology focused on identity-centric, high-performance, and quantum-resistant architectures.
• Network Security Deployment: Design, configure, and install next generation network security devices.
• Develop Zero Trust Network Access solutions focusing on granular access, continuous verification, and reduced attack surface.
• Develop network solutions utilizing performance optimized protocols to reduce latency over the wire.
• Develop Post Quantum Cryptography solutions that integrate quantum resistant algorithms.
• Tunnel Management: Designing and maintaining secure site-to-site tunnels using protocols like MACsec (Layer 2) or IPsec (Layer 3) to protect data in transit.
• Latency & Performance Tuning: Monitoring network throughput to ensure that encryption overhead doesn't cause bottlenecks, especially in high-frequency connections.
• Troubleshooting: Diagnosing "silent" failures where encryption synchronization drops, causing packet loss or network outages.

Qualifications

Required Experience/Skills/Attributes:

• Bachelors and nine (9) years or more experience; Masters and seven (7) years or more experience ; may accept additional experience in lieu of degree.
• Networking Fundamentals: Expert-level knowledge of switching and routing (BGP, OSPF) and the OSI model, specifically focused on Layer 2 (Data Link) security.
• Encryption Standards: Deep understanding of AES-256, GCM (Galois/Counter Mode), Post Quantum Encryption and the impact of MTU/MSS fragmentation caused by encryption headers.
• Security Compliance: Familiarity with FIPS 140-2/3 and Common Criteria requirements for government or financial-grade hardware.

Clearance Requirement:

• US Citizenship.
• TOP SECRET (Active) / SCI (Eligibility).

Desired Experience/Skills/Attributes:

• Familiarity with DoS environment (data and voice networks, IT security systems, policies and procedures), Foreign Affairs Handbooks (FAHs), Foreign Affairs Manuals (FAMs) preferred.
• Interpersonal skills include the ability to collaborate effectively, self-awareness, and excellent written and oral communications.
• Previous COMSEC experience.