The Senior Security Consultant will provide expert-level support, configuration, and management of Cisco Identity Services Engine (ISE) solutions within a complex enterprise network environment. This role includes ongoing maintenance, troubleshooting, and integration of security services, ensuring smooth and secure network access policies and authentication protocols.
Key Responsibilities:
- Provide expert support, maintenance, and troubleshooting of Cisco ISE environments, including off-shift and weekend coverage when necessary.
- Take ownership of the design, deployment, and ongoing management of the ISE solution.
- Deliver day-to-day operational support and handle Level 2/3 escalations related to Cisco ISE, including dependencies on PKI, Servers, Load Balancers, WAN, Web Acceleration, Security, and VPN (AnyConnect).
- Support Cisco SDA/SD-WAN environments, ensuring policy and access alignment.
- Perform moves, adds, and changes within the ISE solution (e.g., device profiles, new policies).
- Monitor ISE systems and generate reports to ensure compliance and visibility.
- Manage and control administrative access, switch templates, and network device configurations.
- Assist with hardware replacement tasks in line with maintenance schedules or fault incidents.
- Implement and integrate solutions in medium to large-scale enterprise environments.
- Maintain thorough documentation for configurations, changes, and standard procedures.
- Provide support and troubleshooting across network services, including integration with Active Directory and configuration of LANs, VLANs, VPNs, and network firewalls.
- Utilize a strong understanding of protocols such as 802.1x, RADIUS, TACACS+, DHCP, DNS, SNMP, and LDAP.
- Support legacy systems such as Cisco ACS RADIUS and TACACS when required.
Qualifications & Experience:
Required:
- Strong experience in implementing and supporting Cisco ISE in enterprise environments.
- Hands-on experience with network access control, 802.1x, RADIUS, and TACACS+.
- Proficiency in network engineering tasks, including switch configuration, VPN setup, and integration with authentication services.
- Knowledge of Cisco SDA and SD-WAN architectures.
- Familiarity with network services and protocols: DHCP, DNS, SNMP, LDAP.
- Experience with network security best practices and access control policies.
Preferred:
- Previous experience working in resident engineer or customer-facing support roles.
- Cisco certifications such as CCNP Security, CCIE Security, or ISE-specific training.
- Exposure to Cisco ACS (legacy systems) and familiarity with PKI environments.
- Knowledge of Cisco AnyConnect, load balancers, and network acceleration technologies.
Behavioral Competencies:
- Strong analytical and problem-solving skills under pressure.
- Excellent communication and customer engagement capabilities.
- Ability to work independently and collaboratively with cross-functional teams.
- High attention to detail and adherence to documentation standards.
Language Requirements:
- Proficiency in English is expected; additional language skills may be beneficial.
