Morton
Network Security Engineer (8659)
Morton is seeking a Network Security Engineer to strengthen and protect a client's enterprise IT infrastructure. This contract consultant position offers a standard 6‑month renewal cycle.
Key Responsibilities
Incident Response & Monitoring
Detect, analyze, and respond to security incidents across endpoints, networks, and cloud environments.
Investigate alerts and anomalies using Splunk, SolarWinds, Cisco Secure Endpoint, and Secure Network Analytics.
Document and manage incidents and service requests in ServiceNow or Jira.
Identity & Access Management (IAM)
Administer and maintain IAM systems with role‑based access controls and user provisioning.
Manage and troubleshoot MFA platforms such as DUO and Microsoft Authenticator.
Work with Active Directory and Azure AD, supporting NAC policies and enforcement.
Vulnerability & Threat Management
Conduct regular vulnerability scans using Qualys.
Collaborate with IT teams to remediate vulnerabilities and improve overall security posture.
Network & Cloud Security
Monitor and analyze network traffic and protocols (TCP/IP, DNS, HTTP/S) for suspicious activity.
Support cloud security initiatives leveraging Cloudflare and Cisco Secure Access tools.
Configure and maintain Cisco ThousandEyes for network visibility and performance optimization.
Documentation & Collaboration
Maintain detailed documentation of incidents, investigations, and remediation actions.
Contribute to security awareness training and cross‑functional security initiatives.
Minimum Qualifications
3+ years of experience in cybersecurity, IT operations, or a related field.
Strong understanding of IAM principles and MFA implementation.
Hands‑on experience with Qualys, Nessus, DUO, SolarWinds, Splunk, Cloudflare, and EDR solutions.
Familiarity with Cisco Secure Access, Umbrella, AnyConnect, ThousandEyes, and Secure Network Analytics.
Proficiency with Active Directory, Azure/Entra, and ticketing systems such as ServiceNow and Jira.
Solid understanding of network protocols and traffic analysis.
Certification required: CompTIA Security+ (or equivalent).
Preferred Qualifications
5+ years of experience in cybersecurity, IT operations, or a related field.
Bachelor’s degree in Cybersecurity, Information Technology, or a related discipline.
Experience with Azure, AWS, or GCP security tools and environments.
Familiarity with Microsoft Sentinel, Entra ID, and Defender for Identity.
Exposure to Zero Trust and Network Access Control (NAC) solutions (e.g., Cisco ISE, Aruba ClearPass).
Actively pursuing or holding certifications such as:
CISSP
CISM
CEH
Microsoft SC‑200 or SC‑300
Cisco CyberOps Associate
GIAC Security Essentials (GSEC)
About the Role This position offers the opportunity to directly contribute to the security, integrity, and resilience of the Commonwealth’s judicial IT systems. The ideal candidate will thrive in a collaborative, mission‑driven environment and bring both technical expertise and a proactive approach to network security.
Seniority Level Mid‑Senior level
Employment Type Contract
Job Function Information Technology
Industries IT Services and IT Consulting
#J-18808-Ljbffr
Key Responsibilities
Incident Response & Monitoring
Detect, analyze, and respond to security incidents across endpoints, networks, and cloud environments.
Investigate alerts and anomalies using Splunk, SolarWinds, Cisco Secure Endpoint, and Secure Network Analytics.
Document and manage incidents and service requests in ServiceNow or Jira.
Identity & Access Management (IAM)
Administer and maintain IAM systems with role‑based access controls and user provisioning.
Manage and troubleshoot MFA platforms such as DUO and Microsoft Authenticator.
Work with Active Directory and Azure AD, supporting NAC policies and enforcement.
Vulnerability & Threat Management
Conduct regular vulnerability scans using Qualys.
Collaborate with IT teams to remediate vulnerabilities and improve overall security posture.
Network & Cloud Security
Monitor and analyze network traffic and protocols (TCP/IP, DNS, HTTP/S) for suspicious activity.
Support cloud security initiatives leveraging Cloudflare and Cisco Secure Access tools.
Configure and maintain Cisco ThousandEyes for network visibility and performance optimization.
Documentation & Collaboration
Maintain detailed documentation of incidents, investigations, and remediation actions.
Contribute to security awareness training and cross‑functional security initiatives.
Minimum Qualifications
3+ years of experience in cybersecurity, IT operations, or a related field.
Strong understanding of IAM principles and MFA implementation.
Hands‑on experience with Qualys, Nessus, DUO, SolarWinds, Splunk, Cloudflare, and EDR solutions.
Familiarity with Cisco Secure Access, Umbrella, AnyConnect, ThousandEyes, and Secure Network Analytics.
Proficiency with Active Directory, Azure/Entra, and ticketing systems such as ServiceNow and Jira.
Solid understanding of network protocols and traffic analysis.
Certification required: CompTIA Security+ (or equivalent).
Preferred Qualifications
5+ years of experience in cybersecurity, IT operations, or a related field.
Bachelor’s degree in Cybersecurity, Information Technology, or a related discipline.
Experience with Azure, AWS, or GCP security tools and environments.
Familiarity with Microsoft Sentinel, Entra ID, and Defender for Identity.
Exposure to Zero Trust and Network Access Control (NAC) solutions (e.g., Cisco ISE, Aruba ClearPass).
Actively pursuing or holding certifications such as:
CISSP
CISM
CEH
Microsoft SC‑200 or SC‑300
Cisco CyberOps Associate
GIAC Security Essentials (GSEC)
About the Role This position offers the opportunity to directly contribute to the security, integrity, and resilience of the Commonwealth’s judicial IT systems. The ideal candidate will thrive in a collaborative, mission‑driven environment and bring both technical expertise and a proactive approach to network security.
Seniority Level Mid‑Senior level
Employment Type Contract
Job Function Information Technology
Industries IT Services and IT Consulting
#J-18808-Ljbffr