"Alerted.org

Job Description

Insight Global is seeking a Cisco Identity Services Engineer (ISE) Administrator to deliver design, engineering, and operational maintenance support for ISE systems across networks. This Administrator must have a Top Secret clearance and will be responsible for identifying endpoint devices and facilitating the development and enforcement of access control and security policies for endpoints connected to routers and switches. This role supports steamlined identity management across applications and devices. This Administrator needs to understand client network security policies to create and assess ISE roles that align. They also need experience developing and implementing policies for unidentified network devices in different environments that include device profiling, configuration of Downloadable Access Control Lists (DACLs), and assignment of Virtual Local Area Networks (VLANS) to endpoint systems. Other experience includes work with Cisco Prime, Network Load-Balancing, MDM, ASA, DNS/DHCP. This Administrator will be using PxGrid, ThreatGrid and Security Group Tags(SGT’s) to produce back-end collaborating among ISE servers and Cisco Firepower. They will also be assisting customers with troubleshooting and infrastructure support, along with deploying 802.1X authentication solutions using AnyConnect software and Network Access Manager (NAM) profiles across supplicant-enabled devices, leveraging EAP_MSCHAPv2 and TLS encryption protocols. Experience creating TACACS+ policies to administrate network devices is important. This Administrator will also be overseeing network and firewall security systems by administering current policies, creating and administering new ISE hardware and software, and helping with the maintenance of Standard Operating Procedures that align with managed systems. The salary for this role ranges from $120,000-$140,000, based on experience.

We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to [email protected] learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/.

Skills and Requirements

• Top Secret Clearance, IAT Level II Certification, Sec+, Bachelor's degree

• 10+ years experience in IT, implementing, networking, configuring and troubleshooting ISE

• Understanding of client network security policies to create and assess ISE roles that align

• Experience developing and implementing policies for unidentified network devices in different environments that include device profiling, configuration of Downloadable Access Control Lists (DACLs), and assignment of Virtual Local Area Networks (VLANS) to endpoint systems

• Experience with Cisco Prime, Network Load-Balancing, MDM, ASA, DNS/DHCP

• Experience monitoring and assessing network performance, deploying patches, managing file systems, and overseeing Cisco ISE systems

• Experience using PxGrid, ThreatGrid and Security Group Tags(SGT’s) to produce back-end collaborating among ISE servers and Cisco Firepower

• Experience assisting customers with troubleshooting and infrastructure support

• Experience deploying 802.1X authentication solutions using AnyConnect software and Network Access Manager (NAM) profiles across supplicant-enabled devices, leveraging EAP_MSCHAPv2 and TLS encryption protocols.

• Experience troubleshooting 802.1X EAP-TLC problems using Public Key Infrastructure (PKI)

• Experience integrating using wired data networks, VPN environments, and wireless infrastructure along with supporting client and posture provisions

• Strong communication, documentation skills for writing reports, and attention to detail

• Strong understanding of Active Directory and Cisco AnyConnect Modules (VPN, Posture, NAM)

• Skilled in MAC Authentication Bypass (MAB)

• Experience creating TACACS+ policies to administrate network devices

• Oversee network and firewall security systems by administering current policies

• Create and administer new ISE hardware and software

• Helping with the maintenance of Standard Operating Procedures that align with managed systems CCNP certification