Gigamon Network Engineer

GuidePoint Security provides trusted cybersecurity expertise, solutions and services that help organizations make better decisions and minimize risk. By taking a three-tiered, holistic approach for evaluating security posture and ecosystems, GuidePoint enables some of the nation's top organizations, such as Fortune 500 companies and U.S. government agencies, to identify threats, optimize resources and integrate best-fit solutions that mitigate risk.

Gigamon Network Engineer 

An active Top Secret / SCI clearance with the willingness to take and pass a polygraph exam is required for consideration for hire for this role. Work is to be performed 100% onsite with our Government Customer

Locations available: JBAB (Bolling AFB), DC; Maryland Square, MD; Reston, VA; Quantico, VA

What You'll Get To Do:

In this role the Gigamon Engineer is responsible for deploying, operating, and sustaining the Gigamon Deep Observability Pipeline across DIA-managed enclaves and mission networks, enabling full packet-level visibility to support intelligence community (IC) cybersecurity operations. 

This position operates within a classified IC environment and requires close coordination with DIA cybersecurity, network operations, and mission partners. The engineer will support threat detection, anomaly analysis, and sensor grid expansion across high-priority intelligence networks, directly contributing to DIA's ability to identify and respond to advanced persistent threats (APTs) and insider threats targeting national security systems.

With mentoring, challenging hands-on problem-solving, and opportunities to learn new tools and skills, we focus on growing as a team to make the best solutions for our customers.

Roles & Responsibilities

• Deploy, configure, and sustain GigaVUE HC-3, T-10, and HD-Series packet brokers; design TAP/SPAN architectures for full traffic visibility across classified and unclassified DIA network segments
• Administer GigaVUE Fabric Manager (GFM) for policy management, traffic mapping, and tool load balancing; configure GigaSMART features including deduplication, slicing, masking, and application filtering
• Integrate Gigamon outputs with DIA-operated SIEM, IDS/IPS, and full-packet capture platforms; ensure all deployments comply with RMF, ICD 503, and applicable DISA STIGs
• Deliver enriched traffic feeds to DIA analytics platforms supporting threat hunting, anomaly detection, and APT/insider threat identification; assess and remediate sensor coverage gaps
• Support SOC analysts and ISSM/ISSO personnel during incident response with packet-level data and flow analysis across SIPRNET, JWICS, and coalition network segments
• Architect and document Gigamon sensor grid topologies for evolving DIA segments including cross-domain and coalition environments; lead design reviews, ECPs, and as-built documentation
• Develop SOPs and runbooks; brief findings and risk assessments to DIA government leads; mentor junior engineers on platform operations and IC cybersecurity practices

Required Qualifications:

• 5-7 years of hands-on experience in network engineering, network security engineering, or a closely related discipline within a DoD or IC environment

• Demonstrated experience deploying and operating Gigamon appliances (GigaVUE HC, T-Series, HD-Series, or equivalent) in production networks

• Experience designing and troubleshooting IP networks including routing protocols (BGP, OSPF), VLANs, spanning tree, and network segmentation

• Experience supporting or operating within DoD or IC classified computing environments including SIPRNET, JWICS, or equivalent enclaves

• Experience documenting network topologies and maintaining as-built diagrams and configuration baselines

• Proficiency with GigaVUE Fabric Manager (GFM) and Gigamon CLI for appliance configuration and policy management

• Knowledge of packet capture and traffic analysis concepts including TAP/SPAN, deduplication, filtering, and flow metadata

• Understanding of network security principles including firewalls, IDS/IPS, proxies, and zero-trust architecture as applied to classified environments

• Familiarity with SIEM platforms (Splunk, ArcSight, or equivalent) and how network visibility feeds enhance detection fidelity

• Working knowledge of multi-domain architectures: LAN, WAN, data center, and virtualized/SDN environments

• DoD 8570 IAT Level II certification - one or more of the following required: 

• CompTIA Security+ CE

• GIAC Security Essentials (GSEC)

• Cisco CyberOps Associate / CCNA Security

• CySA+, CND, or SSCP

• DoD 8570 CSSP Infrastructure Support certification - must be obtained prior to start date: 

• Certified Ethical Hacker (CEH)

• CompTIA CySA+, CND, or Cloud+

• GIAC GICSP or SSCP

• CHFI or CFR

• Active Top Secret / SCI clearance with a current Counterintelligence (CI) Polygraph - required at time of hire; no exceptions

• HS diploma or GED and 7+ years of experience with supporting IT projects and activities, Associate's degree and 5+ years of experience with supporting IT projects and activities, or Bachelor's degree and 3+ years of experience with supporting IT projects and activities 

Preferred Qualifications:

• Gigamon Certified Engineer (GCE) or equivalent Gigamon product certification
• Experience supporting DIA, NSA, or other IC agency network operations in a contractor or government role
• Experience with DISA STIG implementation and RMF package development for network devices
• Familiarity with full-packet capture platforms (NetScout, Solera, Moloch/Arkime) integrated with Gigamon feeds
• Linux OS administration experience (RHEL, CentOS) in support of network security tooling
• Experience with SolarWinds NPM/IPAM or similar network management and IP address management platforms
• Experience operating within ICD 503, CNSSI 1253, or DIA-specific cybersecurity policy frameworks
• Familiarity with virtualized network environments including VMware NSX, Hyper-V, or cloud-based visibility tools
• Strong written and verbal communication skills with demonstrated ability to brief technical findings to senior government personnel
• Self-directed work ethic with the ability to manage competing priorities in a high-tempo, mission-critical environment

"Applicants selected will be subject to a security investigation and must meet eligibility requirements for access to classified information."

We use Greenhouse Software as our applicant tracking system and Zoom Scheduler for HR screen request scheduling. At times, your email may block our communication with you. Please be sure to check your SPAM folder so that you don't miss updates on your application.

Why GuidePoint?

GuidePoint Security is a rapidly growing, profitable, privately-held value added reseller that focuses exclusively on Information Security. Since its inception in 2011, GuidePoint has grown to over 1,200 employees, established strategic partnerships with leading security vendors, and serves as a trusted advisor to more than 6,200 customers.

Firmly-defined core values drive all aspects of the business, which have been paramount to the company's success and establishment of an enjoyable workplace atmosphere. At GuidePoint, your colleagues are knowledgeable, skilled, and experienced and will seek to collaborate and provide mentorship and guidance at every opportunity.  

This is a unique and rare opportunity to grow your career along with one of the fastest growing companies in the nation.

Some added perks….

• Remote workforce primarily (U.S. based only, some travel may be required for certain positions, working on-site may be required for Federal positions)
• Group Medical Insurance options: Zero Deductible PPO Plan (GuidePoint pays 90% of the premium for employees and 70% for family plans (spouse/children/family) or High Deductible Health Plan with HSA (GuidePoint pays 100% of the employees premiums and 75% for family plans (spouse/children/family). If you choose the High Deductible / HSA plan, GPS will contribute in 4 equal quarterly installments: ($850 per EE annually / $1750 per family annually (includes spouse/children/family options)
• Group Dental Insurance: GuidePoint pays 100% of the premium for employees and 75% of family plans
• 12 corporate holidays and a Flexible Time Off (FTO) program
• Healthy mobile phone and home internet allowance
• Eligibility for retirement plan after 2 months at open enrollment
• Pet Benefit Option