Network Security Engineer (IAM)

Network Security Engineer

Position Overview

Triumph's client is seeking an experienced Network Security Engineer to support and enhance the cybersecurity posture of its enterprise IT infrastructure.

This consultant role plays a key part in safeguarding the information systems through proactive monitoring, incident response, and the implementation of security best practices across network and endpoint environments.

The ideal candidate will have approximately 3+ years of experience in cybersecurity operations, with strong knowledge of network administration, endpoint protection, and network security tools. This is an excellent opportunity to contribute to the resilience and integrity of critical judicial systems in a mission-driven, collaborative setting.

Position Details

• Job Title: Network Security Engineer (Network Team)
  
• Project: Network/WAN Team Support
  
• Position Type: Consultant (6-month renewable contract)
  
• Work Model: Hybrid Telework - Average 4 days onsite in Richmond, VA.
  
• Travel: Occasional travel to court sites as needed
  

Key Responsibilities

Incident Response & Monitoring

• Detect, analyze, and respond to security incidents across endpoints, networks, and cloud environments.
  
• Investigate alerts and anomalies using tools such as Splunk, SolarWinds, Cisco Secure Endpoint, and Secure Network Analytics.
  
• Document and manage incidents through ServiceNow and Jira ticketing systems.
  

Identity & Access Management (IAM)

• Administer and maintain IAM systems, including role-based access controls and user provisioning.
  
• Manage and troubleshoot MFA solutions such as DUO and Microsoft Authenticator.
  
• Support and maintain directory services (Active Directory, Azure AD/Entra ID) and NAC enforcement policies.
  

Vulnerability & Threat Management

• Conduct regular vulnerability assessments using Qualys or similar tools.
  
• Collaborate with IT teams to remediate findings and strengthen the organization's security posture.
  

Network & Cloud Security

• Monitor network traffic (TCP/IP, DNS, HTTP/S) for anomalies and potential threats.
  
• Support cloud security initiatives utilizing Cloudflare, Cisco Secure Access, and ThousandEyes for visibility and performance.
  
• Maintain Cisco routers, switches, SD-WAN, and Meraki environments.
  

Documentation & Collaboration

• Maintain detailed records of incidents, investigations, and remediation activities.
  
• Participate in security awareness initiatives and cross-departmental collaboration.
  

Minimum Qualifications

• 3+ years of experience in cybersecurity, IT operations, or related field.
  
• Strong understanding of IAM principles and MFA implementation.
  
• Hands-on experience with tools such as Qualys, Nessus, DUO, SolarWinds, Splunk, Cloudflare, and EDR solutions.
  
• Familiarity with Cisco security tools (Secure Access, Umbrella, AnyConnect, ThousandEyes, Secure Network Analytics).
  
• Experience using ticketing systems (ServiceNow, Jira).
  
• Working knowledge of Active Directory and Entra ID.
  
• Solid grasp of network protocols and traffic analysis.
  
• Required Certification: CompTIA Security+ (or equivalent).
  

Preferred Qualifications

• 5+ years of experience in cybersecurity or related IT operations.
  
• Bachelor's degree in Cybersecurity, Information Technology, or a related discipline.
  
• Experience with cloud platforms (Azure, AWS, Google Cloud Platform) and their native security features.
  
• Familiarity with Microsoft Sentinel, Entra ID, and Defender for Identity.
  
• Exposure to Zero Trust frameworks and NAC platforms (e.g., Cisco ISE, Aruba ClearPass).
  
• Advanced certifications (one or more preferred):
  
• CISSP
  
• CISM
  
• CEH
  
• Microsoft SC-200 or SC-300
  
• Cisco CyberOps Associate
  
• GIAC Security Essentials (GSEC)
  

#DICE