Physical Security Network Engineer - SOUTHCOM J2

Job Requirements Doral, FL Top Secret/SCI Polygraph Unspecified Career Level not specified Salary not specified Join Premium to unlock estimated salaries Job Description Celestar Corporation is seeking a Physical Security Network Engineer to support

USSOUTHCOM J2

Physical Security Services The primary place of performance will be in Doral, FL. If interested and meet the qualifications, we encourage you to apply for this rewarding and impactful opportunity.

ANTICIPATED AWARD

July 2026

ANTICIPATED START:

July 2026 PERIOD

OF PERFORMANCE

1 Base Year + 4 Option Years

LOCATION

Doral, Florida

CLEARANCE REQUIREMENT

Active TS/SCI (within 5 years)

About Us:

Celestar, a B&A Company, offers highly competitive salaries and benefits. Our comprehensive benefits package includes company-paid employee and family dental insurance, employee health insurance, life insurance, and disability coverage. Additionally, we provide a 401(k

• retirement plan with company matching, paid holidays, and personal time off.

Responsibilities include, but are not limited to: Responsible for the

ESS/LENEL

network infrastructure, operation/maintenance (O&M) and lifecycle. Provide IT Tier 3 Service

• Typically the highest level of services in a three-tiered technical service model responsible for handling the most difficult or advanced problems.

The contractor shall be an expert in their fields and are responsible for the research and development of solutions to new or unknown issues. Shall analyze the code, data and in some instances, an issue may be so problematic to the point where the product cannot be salvaged and must be replaced. If it is determined that a problem can be solved, then the contractor is responsible for designing and developing one or more courses of action, evaluating each of these courses in a test-case environment, and implementing the best solution to the problem. Once the solution is verified, it is delivered to the customer and made available for future troubleshooting and analysis with government maintaining final approval authority. Configuring, maintaining, analyzing, and monitoring data output from the ESS network security hardware to accurately detect and respond to threats across the network. The contractor shall operate, monitor, alert, manage, maintain, install, and troubleshoot the ESS network infrastructure devices and services. The contractor shall provide technical recommendations for the development of policies for all aspects of network management and operations. Provide internal and external IPv4 primary and secondary DNS services for

USSOUTHCOM

security ESS network. Monitoring and Management Solutions

• Leverage the Fault, Configuration, Accounting/Administration, Performance, and Security (FCAPS) framework for network management. Shall monitor, alert, and forecast problems before they arise, which is a key component to healthy and self-healing IPv4 networks. The contractor shall alert and consult the Government on any fault, performance, and/or security issues that may arise. Access Control
• Operate and maintain enterprise applications and devices for network Authentication, Authorization, and Accounting (AAA), port authentication, network end-device compliance, device profiling, and policy compliance. Log Management
• Configure and maintain all network equipment for log collection and retention according to applicable policies and regulations.

This includes services to configure, maintain, analyze, and monitor data input and output from the SIEM tools in order to accurately detect and respond to problems, outages, and security threats. Provide intelligent insights that enable quick response measures to reduce the impact of incidents and proactively prevent future incidents. Configure, test, fine-tune, and maintain all rule sets within SIEM, and Contractor shall rule sets exhibit fluidity to adapt to changes within the AO Uniform environment. The contractor shall analyze and investigate all alerts/offences generated within SIEM on a daily basis and resolve offences upon termination of analysis/investigation. Analyze and fine-tune rule sets to reduce false positives within the SIEM. Manage, update, and troubleshoot all Storage Area Network (SAN) and other storage technology devices across the

USSOUTHCOM

Security ESS network. Backups

• USSOUTHCOM

  requires backup services including file-level and system-level recovery services. Develop and implement a successful Backup Plan that supports the traditional IT backup. The Backup Testing Schedule of the Backup Plan shall be completed according to the schedule, and Backup Testing Results. These are recommendations for government approval. Virtualization
• Provide services for virtualized platforms and systems which include, but are not limited to, automated system provisioning, deployment, and servicing of multiple physical and virtual enclaves. Provide all AD management services including, but not limited to, DNS, DHCP, group policy, and certificates. Application Operations

• USSOUTHCOM

  requires services covering engineering, installation, and O&M of various applications and their operating environments. Provide systems operations services including manual and automated processes to perform activities such as imaging, patching, application deployment, system monitoring, application monitoring, and service operations. End User Device Operations

•

USSOUTHCOM

requires engineering, installation, and O&M services for multiple end-user device types. These services include, but are not limited to, manual and automated provisioning/de-provisioning, thin/zero client services, imaging, monitoring, patching, and application virtualization. Engineer, install, operate, and maintain a password management system. These are recommendations for government approval. Provide a Tier 3 IT problem solving solution and have the ability to identify, document, and resolve major problems. Operate, monitor, alert, manage, maintain, install, and troubleshoot

USSOUTHCOM

Security ESS network infrastructure devices and services. Provide services for all aspects of network management and operations, including policies, procedures, implementation, technology integration, and guidance for both scheduled and unscheduled maintenance. These are recommendations for government approval Adhere to incident reporting requirements and handling procedures as required by

USSOUTHCOM

regulations, and CJCSI Cyber Conditions (CYBERCON). Respond to critical ESS failures after duty hours, on holidays, or weekends as needed to maintain the integrity and accreditation/certification of DoD classified information processing areas. Provide and maintain standby roster for after/off duty hours response. Stand by personnel must respond within two (2) hours. Develop and establish a system to track maintenance agreements with Lenel, Quest, Solar Winds, Microsoft, NETAPP, Thales, and all other software/hardware components that support ESS. Update status on Weekly Activity Report (WAR). Research, advise, and provide recommendations/quotes for all ESS and Physical Security enhancements procurements. The items include but are not limited to; all ESS components including IT hardware and software, X-Ray machines, metal detectors, turnstiles, PED storage and other physical security enhancements. The Contractor shall adhere to all federal, local, and

USSOUTHCOM J2

Physical Security policies regarding procurements Provide Physical Security support as assigned by government leadership to include but not limited to customer service, X-Ray machine relocation/maintenance, Autocrib relocation/maintenance, and more. Required qualifications/skills (Must Be Reflected on Your Resume):

• 5 years of related experience.
• Knowledge of the Federal Enterprise Architecture (FEA) and Department of Defense (DoD) Enterprise Architecture framework (e.g., SIPR, NIPR and Joint Worldwide Intelligence Communications Systems (JWICS) networks), and the Information Technology (IT)/Cybersecurity rules and regulatory authorities to develop and implement policies and planning concepts, and project management methods.
• Knowledge of governing laws, regulations, precedents, and directives governing DoD security programs (e.g. information, personnel, physical, industrial, etc.)
• Knowledge and perspective of the operational, procedural, and technical standards that achieve interoperability with other non-DoD Federal Government agencies
• Proficient using basic Microsoft Office software applications (e.g., Word, PowerPoint, Excel, and Access).
• Proficient in using personnel security processing tools, including the DoD personnel security system of record (e.g., DISS, etc.) and National Background Investigation System (NBIS).
• Must possess a current CompTIA Security + (SEC+) or equivalent certification.
• Must possess a current CISCO Certified Network Associate (CCNA) certification or equivalent.
• Active TS/SCI (within 5 years)

Desired Education and Experience:

• Bachelor's degree in a related field, preferred
• Lenel Certified Professional (LGE-Core, LGE-Access, and LGE
• Enterprise), preferred Come on board with a company that Values its Employees!

Celestar Corporation is an Equal Opportunity Employer. The Celestar Corporation prohibits discrimination, harassment, and retaliation in employment based on race; color; religion; genetic information; national origin; sex (including same-sex); sexual orientation; gender identity; pregnancy, childbirth, or related medical conditions; age; disability or handicap; citizenship status; marital status; service member/protected veteran status; or any other category protected by federal, state, or local law.

group id:

10198617 Apply now