CMMC Security Engineer (US Hybrid)
Intelligent Technical Solutions
Responsibilities Design and deploy CMMC‑compliant enclave architectures in Azure: cloud‑only (GCC/GCC High), hybrid (on‑prem + GCC), and on‑premises environments. Select and implement the appropriate topology (hub‑spoke, segmented) based on client requirements. Provision and configure Microsoft 365 GCC and GCC High tenants including initial setup, domain verification, licensing assignment, and tenant hardening. Configure Microsoft Entra ID: user provisioning, Security Groups, Administrative Units, Conditional Access policies (MFA, device compliance, location‑based, session controls), Privileged Identity Management (PIM), and Identity Protection risk policies. Deploy and configure Microsoft Intune: device enrollment, compliance policies, configuration profiles, security baselines (CIS/STIG), BitLocker encryption with FIPS 140‑2 compliance, Windows Update for Business rings, and application management via Company Portal. Deploy and configure Microsoft Sentinel: Log Analytics workspace setup, data connector deployment (M365, Entra ID, Defender, Azure Activity, Firewall, NSG flow logs), KQL‑based analytics rules, automation playbooks (Logic Apps), and CMMC compliance workbooks/dashboards. Deploy and configure Microsoft Defender for Endpoint: device onboarding, antivirus policies, Attack Surface Reduction (ASR) rules, endpoint DLP, network protection, web content filtering, and vulnerability management. Configure Microsoft Purview: sensitivity labels (CUI, FCI, Public), auto‑labeling policies, DLP policies across Exchange, SharePoint, Teams, and endpoints, and information barriers where required. Design and implement Azure networking: Virtual Networks, subnets, NSGs, Azure Firewall, Azure Bastion, VPN Gateway (site‑to‑site and point‑to‑site), Private Endpoints, route tables, and DDoS Protection. For hybrid environments: configure Azure AD Connect (or Cloud Sync), hybrid device join, pass‑through authentication or password hash sync, split DNS, and Azure Arc for on‑premises server management. Configure encryption across the environment: BitLocker (XTS‑AES 256), FIPS 140‑2 compliance mode, TLS 1.2+ enforcement, VPN encryption (IKEv2/AES‑256), and Purview encryption for CUI‑labeled content. Execute remediation tasks from the CMMC Remediation Tracker as assigned by the GRC Consultant. Each task maps a specific NIST 800‑171 control objective to an Azure/M365 configuration with step‑by‑step instructions. Capture and organize technical evidence for each implemented control: configuration screenshots, policy exports (JSON), audit log samples, compliance reports, and test results. Support incident response capability deployment: Sentinel playbook creation, automated notification workflows, and incident response procedure testing. Perform client environment migrations to GCC/GCC High (tenant‑to‑tenant migration using BitTitan, ShareGate, or native Microsoft tools). Work across 4‑7 concurrent client environments at various stages of build and remediation. Job Qualifications – Required Technical Experience Willing to work in a hybrid setup—remotely or on‑site at client locations, as required. 3+ years hands‑on experience administering Microsoft Azure and M365 environments in a professional capacity (not lab‑only). Direct experience configuring Conditional Access policies, Entra ID PIM, and identity architecture (cloud‑only and hybrid with Azure AD Connect). Direct experience deploying and managing Microsoft Intune for endpoint compliance, configuration profiles, security baselines, and BitLocker management. Direct experience deploying Microsoft Sentinel including data connectors, KQL query writing, analytics rules, and automation playbooks. Experience configuring Azure networking: VNets, NSGs, Azure Firewall or third‑party NVA, VPN Gateway, and network security architecture. Experience deploying Microsoft Defender for Endpoint including device onboarding, ASR rules, and vulnerability management. Proficiency with PowerShell and Microsoft Graph API for automation and bulk configuration tasks. Understanding of NIST SP 800‑171 controls and how they map to specific Azure/M365 technical implementations. Strongly Preferred Technical Experience Experience with Microsoft 365 GCC or GCC High environments (tenant provisioning, licensing nuances, feature differences from commercial M365). Experience with tenant‑to‑tenant migrations (commercial to GCC/GCC High) using BitTitan MigrationWiz, ShareGate, or native Microsoft tools. Experience configuring Microsoft Purview: sensitivity labels, auto‑labeling, DLP policies across Exchange, SharePoint, Teams, and endpoints. Experience with FIPS 140‑2 configuration and DISA STIG or CIS benchmark implementation via Intune or GPO. Experience supporting defense industrial base (DIB) or federal contractor IT environments. Experience with Azure Arc for hybrid server management and Azure Bastion for secure remote administration. Required Certifications Microsoft Certified: Azure Solutions Architect Expert (AZ‑305) – Architecture design and decision‑making. Microsoft Certified: Security Operations Analyst Associate (SC‑200) – Sentinel, Defender, and security operations. Microsoft Certified: Identity and Access Administrator Associate (SC‑300) – Entra ID, Conditional Access, PIM. Microsoft Certified: Information Protection and Compliance Administrator (SC‑400) – Purview, DLP, sensitivity labels. Microsoft Certified: Endpoint Administrator Associate (MD‑102) – Intune and device management. Preferred Certifications CompTIA Security+ (SY0‑701) CMMC Registered Practitioner (RP) – Understanding of CMMC framework from technical perspective. Microsoft Certified: Cybersecurity Architect Expert (SC‑100) Microsoft 365 Certified: Administrator Expert (MS‑102) Certified Information Systems Security Professional (CISSP) GIAC certifications (GSEC, GCIA, GCIH) – Deep security operations knowledge. Execution‑focused: ability to follow SOPs and runbooks precisely while identifying when something does not match documented steps and escalating appropriately. Multi‑tenant management: comfortable switching between 4‑7 different client Azure/M365 environments daily without cross‑contaminating configurations. Documentation discipline: every configuration change is documented, every evidence artifact is captured, every deviation from the SOP is noted. Troubleshooting: when Conditional Access blocks legitimate users, when Sentinel data connectors go unhealthy, or when WDAC blocks a required application, you can diagnose and resolve without waiting for escalation. Security mindset: you understand why least privilege matters, why default‑deny is the correct network posture, and why FIPS‑validated encryption is required for CUI. Clear written communication: when you find something in the client environment that does not match what the GRC Consultant scoped, you can document it clearly so the team can make decisions. Benefits Medical Insurance Plan Life Insurance Disability Coverage Paid Time Off (starts at 15 days per year) Maternity/Paternity Leave Paid US Holiday Retirement Plan Salary Advancement / Loan Health & Wellness Program Company‑paid training and certification Supplemental Life Insurance (Employee‑paid) #J-18808-Ljbffr Intelligent Technical Solutions
- ...Solutions is hiring for a position focused on designing and deploying CMMC-compliant architectures in Azure and managing M365 environments.... ...configuring Conditional Access policies. This role requires a hybrid work setup, either remotely or on-site as needed. Benefits...SuggestedRemote work
$112k - $134k
...JT4 is seeking a Cyber Security Analyst for an onsite position at Edwards... ...AWS, Azure, Google Cloud) and hybrid environments. Strong... ...(e.g., NIST, ISO 27001, GDPR, CMMC, HIPAA). Experience with scripting... ...security clearance. Must be a US citizen. DESIRED QUALIFICATIONS...SuggestedWork experience placementImmediate start- Zurich North America is searching for a Cyber Security Specialist to join their Security Operations team in Las Vegas, Nevada. This position... ...combination of education and experience. This role is hybrid, offering both in-office and remote work options. #J-18808-Ljbffr...SuggestedRemote jobWork at office
$100k - $160k
If you're a Structural Engineer and want to work in a Hybrid/Remote role for a Top Tier, Multi-Disciplined Engineering Firm apply now! This Jobot Job is... ...Thomas. Salary: $100,000 - $160,000 per year A Bit About Us We are an award winning Engineering Firm with a stellar reputation...SuggestedRemote jobWork at officeLocal areaRelocation packageFlexible hours$104k - $154k
Womble Bond Dickinson (US) LLP is seeking an Information Systems Security Engineer to oversee comprehensive information security operations in Las Vegas. The role involves formulating and implementing security systems, managing projects, and ensuring firm-wide security...Suggested$104k - $154k
Overview Womble Bond Dickinson (US) LLP is seeking an Information Systems Security Engineer (ISSE) for our Phoenix, AZ, Denver, CO, or Las Vegas, NV office. The Information Systems Security Engineer reports to the Information Systems Security Manager (ISSM) and works closely...Work at officeFlexible hours- ...Our mission is simple: deliver seamless, secure, reliable, and resilient AI compute at... ...the CISO and partnering with leads across Engineering, Platform, and the business, you'll be... ...the code that makes it real. This is a hybrid architect-builder role. You'll move...Temporary workWork at officeFlexible hoursShift work
- ...Cloud Network Security Engineer Key Responsibilities: Design and implement AWS network architectures including VPCs, subnets, NAT gateways, and Transit Gateways Manage hybrid network solutions (VPN, AWS Direct Connect, etc.) Configure and monitor...
$105.79k - $141.05k
...network and connected ecosystem. We enable secure, high‑performance connectivity across... ...the future of AI‑ready connectivity, join us today. The Role The Senior Information... ...controls validation and compliance testing of CMMC audits, SSAE 16, AT-101 (SOC 1 / SOC 2),...Full timeTemporary workRemote work$225k - $275k
...hidden fees or compounding interest. Affirm values information security as a critical part of the company’s continued success. Our mission... .... Inclusion & Disability Accommodations We believe it’s on us to provide an inclusive interview experience for all, including...Work at officeRemote workFlexible hours$61.55k - $105.51k
Siemens is seeking an Energy Engineer for a hybrid remote/in-office position in Las Vegas, NV. This role involves analyzing customer facilities, conducting audits, and collaborating on energy efficiency projects. Ideal candidates will have a Bachelor's degree, relevant...Work at officeRemote work- ...Trust LTS is seeking a skilled and mission-focused Cyber Security Engineer to support a major modernization initiative within the... ...experience securing complex federal IT systems, supporting cloud and hybrid environments, and implementing cybersecurity solutions...Remote work
- ...to apply for the Sr. Network Engineer role at Xperi Inc. Join to apply... ...to our team! Position based hybrid for Tulsa office (3 days/week)... ...preferred) Palo Alto Networks Security platform management (Firewalls... ...their families are important to us, and our comprehensive pay,...Full timeWork at officeLocal areaRemote workWork from homeFlexible hours3 days per week
- ...Architect responsible for designing and implementing critical hybrid cloud solutions. The role requires extensive Sitecore development... ...and a proven record in designing cloud solutions, ensuring security protocols are met while collaborating across teams. This position...
$150k
Overview Sales Engineer selling fault monitoring equipment used by electric utilities for locating, predicting, and preventing grid faults... ...and trade shows. Requirements Ideally based in the Western US or willing to travel extensively to the area. 5+ years of experience...- A leading engineering firm in Las Vegas is seeking a Senior Structural Engineer to join their team. This full-time position offers the opportunity... ...and organized professional with strong communication skills is desired for this hybrid role. #J-18808-Ljbffr LVI AssociatesFull time
$119.83k - $209.73k
A leading engineering firm is seeking a Senior Electrical Engineer - Substation Protection & Control in Las Vegas, NV. The role involves... ..., a PE license, and 12 years of experience. The role offers a hybrid work option and a competitive salary range between $119,829 and...- ...Sr Cloud Security Engineer | | Las Vegas, NV Day1 Onsite Position Summary The Cloud Security Engineer supports the AVP of Security Operations in a variety of information technology security functions within the Information Technology Department. Responsibilities...
$70k - $140k
Jacobs is seeking a Life Safety Systems/Fire Alarm Engineer in Las Vegas, NV. This role involves technical design leadership for fire alarm... ...Revit and AutoCAD design experience. The position offers a hybrid work model with generous benefits, including medical, dental, and...- Job Description The Specialist Engineer will have eight or more years of experience designing and deploying enterprise-level Cybersecurity... ...for collaboratively designing and leading implementation for security controls across the Enterprise, in a Cloud First, Mobile First...Work experience placement
- JT4 is looking for a Security Forces Field Engineer II to provide technical support for advanced surveillance systems in Las Vegas, Nevada. You will troubleshoot and configure systems, upgrading critical surveillance technologies. The role requires a Bachelor's in engineering...
- ZRG Careers is looking for a Systems Engineer I in Las Vegas, NV. You will be responsible for deploying, maintaining, and ensuring stable... ...virtualization and systems monitoring tools. This position is hybrid with an office location on S Decatur Blvd, Las Vegas. #J-18808...Work at office
$93k - $139k
...Job Overview Remote/Hybrid. This role will be the lead technical expert and own all... ...related matters. The Senior Financial Systems Engineer will partner closely with various... ...Diverse backgrounds and perspectives make us stronger. Community Impact – Volunteer...Remote workHome office$216.7k - $303.4k
...For more information, visit . The GenAI Security team within Reddit’s Security, Privacy, Assurance, and Corporate Engineering organization protects Reddit’s GenAI usage across... ..., we share base salary ranges for all US-based job postings regardless of state. We set...For contractorsWork experience placementRemote workFlexible hours- ...and Wonder International, Inc. is seeking a Senior Mechanical Engineer in Las Vegas, Nevada. This role requires expertise in electro-mechanical... ...engineering and 5+ years experience are required. This is a hybrid role, requiring 3 days a week on-site work. #J-18808-Ljbffr...3 days per week
- ...Identity & Access Management (IAM) Engineer to design, implement, and... ...Authentication (MFA), while ensuring secure, scalable, and compliant... ...be authorized to work in the US as defined by the Immigration... ...architecture, including cloud and hybrid identity models. Design and...Work at officeLocal areaVisa sponsorshipShift work
$200k - $250k
A financial technology company is looking for a Security Engineer to safeguard its product development process. This remote role focuses on integrating security measures throughout development lifecycles, conducting threat models, and educating teams on emerging vulnerabilities...Remote job- ...operations by ensuring the reliability, security, and performance of classified network infrastructure... ...Technology, Computer Science, Engineering, or related field OR Associate’s degree... ...operations Knowledge of cloud and hybrid environments (AWS, Azure, Google, Oracle...Contract workFor contractorsLocal area
- Aegistech is seeking an experienced AI Engineer for a hybrid position based in Las Vegas, Nevada. This role involves leading AI and data application projects, focusing on improving processes and workflows, mainly for the construction sector. Ideal candidates will have robust...
- ...Mechanical Engineering (MEP) Forensic Expert You are a P.E. with a Mechanical Engineering... ...Dublin, OH, Lancaster, PA, Las Vegas, NV (hybrid) Requirements: Licensure: Active... ...license, and the ability to drive. About Us: Robson Forensic is a national leader...
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to CMMC Security Engineer (US Hybrid). Be the first to apply!
- IT security engineer Las Vegas, NV
- information technology security engineer Las Vegas, NV
- senior application security engineer Las Vegas, NV
- aws cloud security engineer Las Vegas, NV
- security engineer Las Vegas, NV
- senior security operations engineer Las Vegas, NV
- senior cloud security engineer Las Vegas, NV
- sr information security engineer Las Vegas, NV
- azure security engineer
- IT security engineer



