Senior Cyber Security Engineer - Network

Clarity Innovations is a trusted national security partner, dedicated to safeguarding our nation’s interests and delivering innovative solutions that empower the Intelligence Community (IC) and Department of Defense (DoD) to transform data into actionable intelligence, ensuring mission success in an evolving world.

Our mission-first software and data engineering platform modernizes data operations, utilizing advanced workflows, CI/CD, and secure DevSecOps practices. We focus on challenges in Information Warfare, Cyber Operations, Operational Security, and Data Structuring, enabling end-to-end solutions that drive operational impact.

We are committed to delivering cutting-edge tools and capabilities that address the most complex national security challenges, empowering our partners to stay ahead of emerging threats and ensuring the success of their critical missions. At Clarity, we are people-focused and set on being a destination employer for top talent, offering an environment where innovation thrives, careers grow, and individuals are valued. Join us as we continue to lead innovation and tackle the most pressing challenges in national security.

Role

We are seeking an experienced Network-focused CyberSecurity Engineer to design, implement, and maintain secure network infrastructure across our enterprise and cloud environments. In this role, you will protect critical systems from threats, ensure regulatory compliance, and partner with infrastructure, application, and security teams to maintain a resilient, high-performance network. This position requires deep technical expertise, proactive threat mitigation, and the ability to lead incident response efforts.

Responsibilities

Secure Network Architecture & Implementation

- Design and deploy secure network architectures for on-premises, hybrid, and cloud environments.

- Configure and manage firewalls, intrusion detection/prevention systems (IDS/IPS), VPNs, and network access control systems.

- Implement network segmentation, zero-trust models, and microsegmentation strategies to minimize attack surfaces.

Security Operations & Monitoring

- Monitor network traffic for unusual activity, intrusions, and vulnerabilities using SIEM and network monitoring tools.

- Conduct threat hunting, forensic analysis, and deep packet inspection as needed.

- Manage and tune security controls for optimal performance without impacting business operations.

Incident Response & Risk Mitigation

- Lead the network component of incident response, including containment, eradication, and recovery steps.

- Perform root cause analysis and develop mitigation strategies for future prevention.

- Collaborate with SOC teams to align network and endpoint defense strategies.

Compliance & Policy Enforcement

- Ensure adherence to security frameworks (NIST, ISO 27001, CIS, PCI-DSS, etc.).

- Maintain and enforce network security policies, firewall rule standards, and access control guidelines.

- Support security audits, penetration testing, and vulnerability assessments.

Collaboration & Continuous Improvement

- Partner with security engineering, cloud, and application teams to integrate security best practices into projects.

- Stay ahead of evolving cybersecurity threats, technologies, and industry best practices.

 

Requirements

• Bachelor's degree in Network Egineering, Cybersecurity, or equivalent.

• 5+ years of experience in network security engineering or related field.

• Deep understanding of TCP/IP, routing, switching, and network protocols.

• Hands-on experience with next-gen firewalls (Palo Alto, Cisco ASA/Firepower), IDS/IPS, and VPN technologies.

• Proficiency with SIEM platforms (Splunk, QRadar, Sentinel, etc.) and security automation tools.

• Experience with vulnerability scanning and remediation tools (Nessus, Qualys, OpenVAS).

• Strong troubleshooting skills using packet analysis tools (Wireshark, tcpdump).

• Relevant certifications (CCNP, CISSP, ITIL, or equivalent).
• Familiarity with Zero Trust networking and advanced security frameworks.

Preferred Qualifications

- Cloud security expertise (AWS Security Hub, Azure Defender, GCP Security Command Center).

- Scripting and automation skills (Python, Ansible).

- Relevant certifications: CISSP, CCNP Security, CEH, GIAC (GSEC, GCIH, GCIA).

- Knowledge of Zero Trust Networking and SASE frameworks.

We are an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status.