Network Security Engineer

QED National•Richmond, VA

43d•Hybrid

About The Position

Our government client in Richmond, VA is seeking an experienced and proactive Network Security Engineer to enhance and maintain the security posture of its enterprise IT infrastructure. This hands-on role is vital to safeguarding systems through continuous monitoring, incident response, and the implementation of cybersecurity best practices. The ideal candidate brings strong technical expertise across network and endpoint security, a working understanding of Zero Trust architecture, and proven experience using tools such as Qualys, Splunk, Cisco Secure Access, DUO, ThousandEyes, and Cloudflare. You'll collaborate with IT teams to ensure network integrity, manage security incidents, and help drive continuous improvement in cyber resilience. This position offers an excellent opportunity to work in a mission-driven, collaborative environment that protects critical infrastructure and supports secure digital operations.

Requirements

3+ years of experience in cybersecurity or IT operations.
Strong knowledge of IAM principles, MFA implementation, and endpoint protection.
Hands-on experience with Qualys, DUO, SolarWinds, Splunk, Cloudflare, and EDR solutions.
Familiarity with Cisco Secure Access, Umbrella, AnyConnect, ThousandEyes, and Secure Network Analytics.
Working knowledge of Active Directory, Azure AD (Entra), and ticketing systems (ServiceNow, Jira).
Solid understanding of network protocols and traffic analysis.
Certification: CompTIA Security+ or equivalent required.

Nice To Haves

5+ years of experience in cybersecurity or network operations.
Bachelor's degree in Cybersecurity, Information Technology, or a related discipline.
Experience with cloud platforms (Azure, AWS, GCP) and their native security tools.
Familiarity with Microsoft Sentinel, Entra ID, Defender for Identity, and Zero Trust frameworks.
Experience with NAC platforms such as Cisco ISE or Aruba ClearPass.
Advanced certifications preferred: CISSP, CISM, CEH
Microsoft SC-200 / SC-300
Cisco CyberOps Associate
GIAC Security Essentials (GSEC)

Responsibilities

Detect, analyze, and respond to security incidents across networks, endpoints, and cloud environments.
Investigate alerts using Splunk, SolarWinds, Cisco Secure Endpoint, and Secure Network Analytics.
Log and manage incidents using ServiceNow and Jira.
Administer and maintain IAM systems, role-based access controls, and MFA tools (DUO, Microsoft Authenticator).
Manage Active Directory and Azure AD user provisioning.
Support Network Access Control (NAC) enforcement and policy configuration.
Conduct regular vulnerability assessments using Qualys.
Collaborate with internal teams to remediate vulnerabilities and strengthen defenses.
Monitor and analyze network protocols (TCP/IP, DNS, HTTP/S) for threats.
Support cloud security initiatives using Cloudflare and Cisco Secure Access Suite.
Configure and maintain Cisco ThousandEyes for network visibility and performance optimization.
Maintain accurate documentation of incidents, investigations, and remediation actions.
Contribute to security awareness and cross-functional security initiatives.