Network ISE + NAC

Santa Clarita, CA, US • Posted 1 day ago • Updated 1 day ago
Contract W2
Contract Corp To Corp
Contract Independent
6 Months
Travel Required
On-site
Depends on Experience
Fitment

Dice Job Match Score™

⭐ Evaluating experience...

Job Details

Skills

  • (NETWORK) AND ("CISCO ISE") AND ("CISCO ASA") AND (SOLARWINDS) AND (SPLUNK)

Summary

Network Engineer 

Location- Santa Clara, CA 95054, United States

Face to Face Must

Only locals

Job Description:

• Design, deploy, configure, and maintain Cisco ISE for network access control (NAC) and identity-based policy enforcement.

• Implement 802.1X authentication, MAB (MAC Authentication Bypass), and posture assessment for wired and wireless networks.

• Manage device profiling, guest access portals, BYOD policies, and certificate-based authentication (EAP-TLS/PEAP).

• Integrate ISE with Active Directory, PKI, and other authentication systems.

• Develop and maintain ISE policies, network device groups, and authorization profiles.

• Monitor ISE logs and troubleshoot authentication and authorization issues.

• Perform ISE patching, backup, and system upgrades as part of lifecycle management.

 

Firewall Responsibilities:

• Configure, manage, and troubleshoot Cisco ASA, Firepower (FTD), Palo Alto, or Fortinet firewalls.

• Create and maintain access control policies (ACLs), NAT, VPNs, and security zones.

• Monitor and analyze firewall logs to detect anomalies or potential security breaches.

• Collaborate with security teams to enforce Zero Trust and micro-segmentation strategies.

• Conduct firewall performance tuning and ensure compliance with security standards.

 

Good to have

General Network Security:

• Collaborate with network operations and security teams to ensure consistent policy enforcement across wired, wireless, and VPN environments.

• Participate in incident response, root cause analysis, and remediation for security events.

• Develop and maintain network documentation, diagrams, and standard operating procedures (SOPs).

 

Required Skills & Qualifications:

• Bachelor’s degree in Computer Science, Information Technology, or related field.

• 5+ years of experience in network security engineering.

• Hands-on experience with Cisco ISE (2.x or 3.x) deployment and management.

• Strong understanding of RADIUS, TACACS+, EAP, 802.1X, VLANs, and network access control.

• Experience with Cisco ASA, Firepower, or next-generation firewalls (NGFW).

• Proficiency with Cisco Catalyst switches, wireless controllers, and VPN technologies.

• Familiar with network monitoring tools (SolarWinds, Splunk, Wireshark, etc.).

• Cisco certifications such as CCNP Security, CCIE Security, or Cisco ISE Specialist are highly desirable.

 

Preferred Qualifications:

Experience with multi-vendor firewall platforms (Palo Alto, Fortinet, Check Point).

• Understanding of Zero Trust Network Access (ZTNA) and SASE architectures.

• Familiarity with automation and scripting (Python, Ansible) for network configurations.

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.
  • Dice Id: 10113809
  • Position Id: 105747-1090-147781
  • Posted 1 day ago
Create job alert
Set job alertNever miss an opportunity! Create an alert based on the job you applied for.

Similar Jobs

Remote

Today

Easy Apply

Contract, Third Party

Depends on Experience

Remote

Today

Easy Apply

Contract, Third Party

Depends on Experience

Florida

Today

Full-time

Florida

Today

Full-time

Search all similar jobs