NEWPosted 8 hours ago

Job ID: 3187477

Job Overview:

We are seeking a highly skilled and experienced Network Engineer to join our team for an onsite role in Santa Clara, CA. This position requires a deep understanding of network security principles and hands-on experience with Cisco ISE and various firewall technologies. The ideal candidate will be responsible for designing, deploying, configuring, and maintaining network access control solutions and ensuring robust firewall security.

Key Responsibilities:

  • Cisco ISE Management: Design, deploy, configure, and maintain Cisco ISE for network access control (NAC) and identity-based policy enforcement.
  • Network Access Control Implementation: Implement 802.1X authentication, MAB (MAC Authentication Bypass), and posture assessment for both wired and wireless networks.
  • ISE Feature Management: Manage device profiling, guest access portals, BYOD policies, and certificate-based authentication (EAP-TLS/PEAP).
  • System Integration: Integrate Cisco ISE with Active Directory, PKI, and other essential authentication systems.
  • Policy Development: Develop and maintain ISE policies, network device groups, and authorization profiles to align with security requirements.
  • Monitoring and Troubleshooting: Monitor ISE logs, troubleshoot authentication and authorization issues, and ensure system stability.
  • Lifecycle Management: Perform ISE patching, backup, and system upgrades as part of regular lifecycle management.
  • Firewall Administration: Configure, manage, and troubleshoot Cisco ASA, Firepower (FTD), Palo Alto, or Fortinet firewalls.
  • Access Control and VPN: Create and maintain access control policies (ACLs), NAT, VPNs, and security zones.
  • Security Monitoring: Monitor and analyze firewall logs to detect anomalies or potential security breaches.
  • Zero Trust and Micro-segmentation: Collaborate with security teams to enforce Zero Trust and micro-segmentation strategies.
  • Performance and Compliance: Conduct firewall performance tuning and ensure compliance with established security standards.
  • General Network Security: Collaborate with network operations and security teams to ensure consistent policy enforcement across wired, wireless, and VPN environments.
  • Incident Response: Participate in incident response, root cause analysis, and remediation for security events.
  • Documentation: Develop and maintain comprehensive network documentation, diagrams, and standard operating procedures (SOPs).

Required Skills and Qualifications:

  • Bachelors degree in Computer Science, Information Technology, or a related field.
  • Minimum of 5 years of experience in network security engineering.
  • Hands-on experience with Cisco ISE (version 2.x or 3.x) deployment and management.
  • Strong understanding of RADIUS, TACACS+, EAP, 802.1X, VLANs, and network access control concepts.
  • Proven experience with Cisco ASA, Firepower, or other next-generation firewalls (NGFW).
  • Proficiency with Cisco Catalyst switches, wireless controllers, and VPN technologies.
  • Familiarity with network monitoring tools such as SolarWinds, Splunk, and Wireshark.
  • Cisco certifications like CCNP Security, CCIE Security, or Cisco ISE Specialist are highly desirable.

Preferred Qualifications:

  • Experience with multi-vendor firewall platforms (e.g., Palo Alto, Fortinet, Check Point).
  • Understanding of Zero Trust Network Access (ZTNA) and SASE architectures.
  • Familiarity with automation and scripting tools (e.g., Python, Ansible) for network configurations.

Special Requirements

NEED LOCAL ONLY

Compensation & Location

Salary: $60 – $85 per year (Estimated)

Location: Santa Clara, CA

Recruiter / Company – Contact Information

Recruiter / Employer: HMG America LLC

Email: Robert@corevance.com

Interested in this position?
Apply via Email

Recruiter Notice:
To remove this job posting, please send an email from
Robert@corevance.com with the subject:

DELETE_3187477

to delete@join-this.com.