Network Administrator Lead - By Light Professional IT Services LLC
Wharton, NJ 07885
About the Job
By Light Professional IT Services LLC readies warfighters and federal agencies with technology and systems engineered to connect, protect, and prepare individuals and teams for whatever comes next. Headquartered in McLean, VA, By Light supports defense, civilian, and commercial IT customers worldwide.
Position Overview:Full Spectrum Operations LLC (FSO) is a SDVOSB JV between American Communication Solutions LLC, an SBA VetCert verified SDVOSB, and By Light Professional IT Services LLC (By Light). FSO is looking for personnel to support the Network Enterprise Center Picatinny Arsenal New Jersey (NEC PANJ) with classified and unclassified communication systems support. Personnel will provide Site Management, Infrastructure Operation and Maintenance (O&M) – Unified Communications, Inside Plant (ISP), Customer Service Telephone, and Outside Plant (Cable) (OSP); Information Technology (IT) Systems Support - Network Maintenance, Help Desk Assistance, Voice over Internet Protocol/Voice over Secure Internet Protocol (VoIP/VoSIP), Network Engineering, and Cybersecurity; Telecommunication Support; Radio Systems Operation; Tower and Antenna Support; and Configuration Management.
Work is on site and core duty hours are 0700 – 1700, Monday through Friday, excluding Federal holidays. All personnel will work an 8-hour workday.
Responsibilities:- Apply technical standards and security policy for LAN topologies and components; identify and remediate security vulnerabilities.
- Install, configure, troubleshoot, and support enterprise network devices (i.e. layer 2 & 3 switches and routers).
- Implement, troubleshoot, and support VoIP solution; manage Cisco Call Manager and Unity devices.
- Install, troubleshoot, move, and remove VoIP telephones for customers as required.
- Provide local common-user LAN and CAN touch labor or remote (troubleshooting, repairing, etc.).
- Install, configure, support, and troubleshoot VPN for remote connections, support VPN appliances and wireless technologies.
- Monitor the limited geographic CAN and LAN by utilizing enterprise management software to monitor network performance, analyze network activity, and maintain a high level of network availability.
- Perform network discovery and conduct fault analysis.
- Provide network utilization reports to the Customer.
- Manage network equipment/software to include configuration management and capacity management.
- Draft and maintain SOP documents for the functional category.
- Manage and maintain approved connections to external networks, to include NIPRNET, SIPRNET (to include Commercial Solutions for Classified (CSfC) connection when connected to the Information Campus Area Network (ICAN)), Defense Switched Network (DSN), Public Switched Telephone Network (PSTN), Army Reserve Network (ARNET), Army National Guard Network (DoDIN-A (NG)), Defense Research Engineering Network (DREN), Simulations Network (SIMNET), and Army intranets within existing capability.
- Operate and maintain SIPRNET LAN and CAN connectivity (down to the battalion) between computers and associated devices.
- Operate and maintain NIPRNET connectivity and operate ICAN between LANs and computer resources.
- Manage CAN and LAN classified user expansion.
- Provide local common-user NIPRNET LAN and ICAN touch labor (troubleshooting, repairing, etc.).
- Provide mission-specific LAN touch labor (troubleshooting, repairing, etc.).
- Manage dynamic allocation of unclassified internet protocol (IP) address space.
- Assign and maintain unclassified IP address database using DHCP or Static IP Addressing.
- Develop and modify unclassified IP Assignment Schema.
- Monitor the ICAN and LAN by utilizing enterprise management software to monitor network performance, analyze network activity, and maintain network availability.
- Conduct event management on network infrastructure and monitor services.
- Manage Common User network equipment/software to include configuration management and capacity management for NEC/RCC managed infrastructure.
- Perform undisclosed classified incident recovery across network.
- Operate and maintain common core (backbone) network infrastructure equipment.
- Provide port authentication (ex.: 802.1x).
- Coordinate Incident Management actions with affected organizations to ensure timely recovery and minimal operational impact when responding to Common User network outages.
- Report Common User network circuit outage as required by theater CCIR Matrix.
- Provide local common-user LAN and ICAN touch labor (troubleshooting, repairing, etc.).
- Provide local touch labor (troubleshooting, repairing, etc.) for Cyber Center assets within a NEC controlled facility.
- Monitor IP address utilization.
- Implement Ports, Protocols, Services (PPS) change requests for Army organizations.
- Manage IP address blocks to tenant organizations and accomplish administrative registrations.
- Operate and maintain Wireless Network Infrastructure as part of the existing installation infrastructure.
- Provide local common-user Wireless LAN and ICAN touch labor (troubleshooting, repairing, etc.).
- Provide cross domain solutions local touch labor (troubleshooting, repairing, etc.).
- Provide Wide Area Network local touch labor for Cyber Center assets located in the NEC Controlled facility.
- Monitor the ICAN and LAN by utilizing enterprise management software to monitor network performance, analyze network activity, and maintain network availability.
- Conduct event management on network infrastructure and monitor services.
- Provide Common User network utilization reports.
- Manage Common User network equipment/software to include configuration management and capacity management for NEC/RCC managed infrastructure.
- Operate and maintain common core (backbone infrastructure) network infrastructure equipment.
- Provide port authentication (ex. 802.1x).
- Coordinate Incident Management actions with effected organizations to ensure timely recovery and minimal operational impact when responding to Common User network outages.
- Report Common User network circuit outage as required by theater CCIR Matrix.
- Provide local common-user LAN and ICAN touch labor (troubleshooting, repairing, etc.).
- Provide local touch labor (troubleshooting, repairing, etc.) for Cyber Center assets.
- Allocate IP address blocks to Army organizations.
- Implement Ports, Protocols, and Services (PPS) change requests for Army organizations.
- Support after duty hour emergency maintenance requirements that include the restoral and/or other actions that cannot wait until normal duty hours.
- Perform other duties as required.
- Education: A Bachelor of Science (BS) degree in Information Technology, Cybersecurity, Data Science, Information Systems, or Computer Science, from an ABET accredited or CAE designated institution.
- Experience with Cisco Works, Net View, Wireless protocols (802.11b/g/n), Wireless Authentication Protocols (EAP, PEAP, EAP-TLS and EAP-TTLS, etc.) and SolarWinds Orion software (NPM, net flow, and virtualization, etc.) on a heterogeneous network; thorough understanding of network protocols and services (TCP, UDP, IP, STP, CDP, HSRP, DNS, DHCP, VTP, VPN, FTP, TFTP, IAS, VoIP, NAT and Dot1.x).
- Experience configuring and troubleshooting network components (ASA 5500 Series Adaptive Security Appliances, 3000/4000/5000/6000 series multilayer switches and routers, Cisco Unified IP Phones, etc.).
- Knowledge and experience communicating networking concepts to technical and non-technical personnel; ability to develop technical documents and produce system design documentation.
- Excellent customer service skills: ability to work within the confines of a set time schedule
- Minimum of eight years’ experience in managing large-scale, complex information technology service delivery for a diverse customer population.
- Foundational Personnel Certification: Possess an Advanced certification identified for the DoD Cyber Workforce Framework (DCWF) workforce role Network Operations Specialist – Work Role ID: 441. CISCO Certified Network Associate (CCNA), or CompTIA Advanced Security Practitioner plus (CASP+), or CISCO Certified Network Professional – Security (CCNP Security), or Certified Cloud Security Professional (CCSP), or GIAC Certified Enterprise Defender (GCED), or GIAC Certified Intrusion Analyst (GCIA), or GIAC Certified Incident Handler (GCIH), or GIAC Cloud Security Essentials Certification (GCLD), or GIAC Defensible Security Architect Certification (GDSA), or Certified Intrusion Analyst (GCIA) Foundational Cybersecurity Technologies (GFACT), or GIAC Security Essentials Certification (GSEC).
- Foundational Qualification (Experience) - Possess an Advanced Proficiency level with 70% of the Knowledge, Skills, and Abilities (KSAs) associated with the DoD Cyber Workforce Framework (DCWF) workforce role Network Operations Specialist – Work Role ID: 441.
- Residential Qualification (Certifications) – CCNA, MS Azure Network Engineer.
- Residential Qualification (On-the-Job) – Information Technology Infrastructure Library (ITIL) processes and procedures; Information Technology Service Management (ITSM); Army IT Metrics program; and the Army AITP Service catalog.
- Has the ability to interface with management and brief senior leadership on status of program status and risks (both technical and programmatic).
- Has an in-depth understanding of Command, Control, Communications, Computers, and Information Management (C4IM) in support of the Department of Defense.
- Supported the U.S. Army or other DoD Agency.
- Has the communication skills to effectively interface with senior military officials, managers, and subordinates.
- Security Clearance: Secret.