Network Engineer IV

Prism Maritime•Chesapeake, VA

About The Position

The Network Engineer IV serves as a senior technical resource and subject matter expert within Prism Cyber’s Managed Security Services division, responsible for architecting, implementing, and maintaining secure hybrid and cloud environments for DoD contractor clients. This position bridges compliance and cloud/network engineering, ensuring technical alignment with CMMC 2.0 and NIST SP 800-171 standards while leading deployments and readiness engagements. Specific description of duties – Lead the design and deployment of Microsoft GCC High and Azure Government environments, including Entra ID (Azure AD), Intune, Purview, and Defender. Architect and manage secure network configurations—firewalls, VPN/SD-WAN, segmentation, and zero-trust architectures. Conduct CMMC 2.0 and NIST 800-171 gap assessments and readiness reviews. Develop and maintain System Security Plans (SSPs), POA&Ms, and compliance documentation. Integrate compliance and security controls into managed services (SIEM, Sentinel, MDR, incident response). Lead complex client migrations and remediations, ensuring alignment with DoD and DFARS cybersecurity requirements. Develop and refine technical processes, service templates, and documentation for the MSSP service line. Mentor junior engineers and assist with internal technical training. Participate in proposal development, scoping, and client presentations as a technical SME. May need to be thoroughly familiar with hybrid cloud architecture, identity management, and secure enclave design. Ability to work overtime and travel routinely. Ability to work with minimal supervision and perform duties independently. Perform other assignments or tasks as directed by management in support of organizational goals.

Requirements

Bachelor’s Degree in Computer Science, Cybersecurity, or related field preferred. Equivalent experience considered.
7–10 years of experience in network, cloud, or security engineering.
Deep knowledge of CMMC 2.0, NIST 800-171, and DFARS compliance frameworks.
Strong background in Microsoft cloud engineering (Azure, GCC High, Intune, Defender, Entra ID).
Certifications such as Microsoft Certified: Azure Solutions Architect, Microsoft 365 Security Administrator, CISSP, or CISM may be mandatory depending on company or contract requirements.
Must be US Citizen.
Ability to access Government facilities by vehicle.
Active clearance or ability to obtain a clearance.
Lifting/moving up to and including 35 pounds.
Ability to work overtime and travel routinely.
Ability to work with minimal supervision and perform duties independently.

Nice To Haves

Proven experience working within an MSSP or defense contractor environment preferred.
May need to be thoroughly familiar with hybrid cloud architecture, identity management, and secure enclave design.

Responsibilities

Lead the design and deployment of Microsoft GCC High and Azure Government environments, including Entra ID (Azure AD), Intune, Purview, and Defender.
Architect and manage secure network configurations—firewalls, VPN/SD-WAN, segmentation, and zero-trust architectures.
Conduct CMMC 2.0 and NIST 800-171 gap assessments and readiness reviews.
Develop and maintain System Security Plans (SSPs), POA&Ms, and compliance documentation.
Integrate compliance and security controls into managed services (SIEM, Sentinel, MDR, incident response).
Lead complex client migrations and remediations, ensuring alignment with DoD and DFARS cybersecurity requirements.
Develop and refine technical processes, service templates, and documentation for the MSSP service line.
Mentor junior engineers and assist with internal technical training.
Participate in proposal development, scoping, and client presentations as a technical SME.
Perform other assignments or tasks as directed by management in support of organizational goals.