IAP Worldwide Services Network Defense Engineer and Firewall Bluecoat Administration in Classified Location, Afghanistan


Network Defense Engineer and Firewall Bluecoat Administration

Tracking Code


Job Description

As a leading international services company for more than 65 years, IAP provides a broad spectrum of services and solutions to U.S. and international government agencies, and organizations. A world-class leader in providing seasoned program management, IAP leverages and integrates its capabilities – IT & Communications, Aviation & Engineering Solutions, Power Solutions, Infrastructure & Logistics - to provide safe, innovative, and reliable solutions to meet customers' diverse and complex challenges. With 2,500 team members, IAP operates in more than 110 locations in 27 countries worldwide and maintains offices in the Washington D.C. area, Florida, Maryland, Oklahoma, the United Kingdom, and the Middle East. Learn moreatwww.iapws.com.

This is a proposal position (contingent upon contract award).


The Network Defense Engineer and Firewall Bluecoat Administration provides engineering and management of strategic network boundary protection security devices utilizing defense in depth across all network tiers. The Network Defense Engineer and Firewall Bluecoat Administration provides technical support regarding the design, configuration, implementation, operational management, and troubleshooting of boundary protection devices including Bluecoat Web Proxy filters, IPS/IDS, Syslog, and Cisco switches and routers. In addition, he/she Implements network policies and exemptions in accordance with published standards and regulations.

Job Duties & Responsibilities:

  • Provides engineering network defense engineering support involving the design, configuration, implementation, and operational management of network defense systems and management of network boundary security devices.

  • Troubleshoots network defense devices such as proxy filters, traffic accelerators, firewalls, VPNs and IPS/IDS.

  • Configures and manage ACS and Radius servers, TACACS+, 802.1x, AAA, SSH, crypto maps, ACLs and other network security protocols.

  • Creates network accounts, manages account permissions, updates 802.1x with current information systems, completes tickets related to firewall and proxy exemptions, and troubleshoots network security-related issues.

  • Configures, administers, and troubleshoots firewalls and BlueCoat ProxySG appliances and implements at network hardware technology, with particular emphasis on Cisco PIX, Cisco ASA, Cisco Routers, Juniper Netscreen and Bluecoat ProxySG.

  • Assists with the development and documentation of recommendations for theater network operational policies, procedures, technical standards, and guidelines.

  • Maintains compliance of network device software versions and configuration in accordance with DISA STIG policy. Devices must be compliant within 30 days of policy updates.

  • Implements approved network policies within two hours of receipt. Begins troubleshooting security device problems within one hour. Resolves problems within six hours.


  • Must have at least 3-5 years’ experience in the Computer Network Defense field.

  • Must have strong interpersonal, written, and oral communication skills.

  • Must maintain DoD 8570.01-M compliance for IAT Level III.

  • Must have one of the following: CCNP, CCNP Security, CCNP Voice, or CCNP Service Provider.

  • A working knowledge of LAN\WAN network protocols in relation to the network environment is required.

  • Must be able to function independently.

Location: Afghanistan

Travel:20% across various locations in Afghanistan


Job Location

Classified Location, , Afghanistan

Position Type