Cisco ISE Engineer
GovCIO
- Raleigh, NC
- Permanent
- Full-time
- Administer CISCO ISE
- Configure, administer, document custom policies for Network Access Controls
- High level troubleshooting of network and application issues
- Adhere to strict Information Systems security guidelines in all cases.
- Working as Network Access Controls (NAC) ISE Engineer in managing, planning, and designing a framework for authenticating and authorizing national clients via various methods: to include dot1x and profiling; and to enforce compliance across remote VPN, wireless, and wired networks.
- Manage and build Cisco ISE VMWare servers: to include certificate management, licensing, and Integration with 3rd party application servers.
- Manage Cisco ISE Guest Network environment and users accounts.
- Assist in the onboarding and introduction of new endpoints onto the network via investigative testing and probing of endpoint attributes, protocols and behavior; to culminate in the creation and/or assignment of appropriate policy.
- Utilize Splunk to drive reporting and search for data collected from Cisco ISE.
- Perform packet captures and TCP dumps to analyze application traffic to troubleshoot issues related.
- Provide support for ISE related issues, including off-shift and weekend support functions.
- Utilize ServiceNow application to monitor troubleshoot and track all ISE related tickets.
- 5+ years experience with Cisco ISE, Security device management and Traffic and log analysis
- Strong understanding of TCP/IP, UDP/IP, DNS, DHCP
- Knowledge of TCP, understanding network, protocol and application traffic flows
- Ability to troubleshoot basic network issues including IPv6.
- Proven ability to multi-task
- Knowledge of best practices and IT operations in an always-up, always-available service
- Manages time effectively
- Creative thinking skills
- Detail-oriented personality
- Ability to maintain effective communication and working relationships with co-workers
- 20+ years of experience
- Experience with the following: Firewalls, Proxy, Switches/routers (Juniper Mist/Fortinet/Aruba)
- Cyber Security Skills
- Network and Log Analytics
- Proficient with application layer protocols – HTTP, SSH, SSL, etc
- Active federal experience
- USPS Public Trust or Active DOD Secret clearance