CISCO ISE- L2 Engineer

Roles and Responsibilities:

Design and Implementation: Participate in the design and architecture of Cisco ISE deployments based on business requirements. Implement and configure Cisco ISE components, including policy sets, network access policies, and integration with other systems. Advanced Troubleshooting and Support: Serve as an escalation point for L1 Operations Engineers to troubleshoot complex issues related to Cisco ISE. Analyze logs, packet captures, and system behavior to identify root causes of problems and implement solutions. Performance Optimization: Monitor and optimize the performance of Cisco ISE infrastructure to ensure scalability and reliability. Implement performance tuning and capacity planning activities for Cisco ISE deployments. Security and Compliance: Implement and enforce security policies and controls within Cisco ISE to meet compliance requirements (e.g., PCI DSS, GDPR). Conduct security assessments and audits on Cisco ISE configurations. Integration and Automation: Integrate Cisco ISE with other security and network infrastructure components (e.g., firewalls, SIEMs) for comprehensive security posture. Develop automation scripts and workflows to streamline Cisco ISE operations and maintenance tasks. Change Management and Upgrades: Plan and execute changes, upgrades, and migrations for Cisco ISE deployments in coordination with change management processes. Apply patches and updates to Cisco ISE software and related components. Documentation and Training: Maintain detailed documentation of Cisco ISE configurations, procedures, and troubleshooting steps. Provide training and mentorship to junior team members on Cisco ISE technologies and best practices. Incident Response and Root Cause Analysis: Lead incident response efforts for critical issues impacting Cisco ISE operations. Conduct root cause analysis (RCA) for major incidents and implement corrective actions to prevent recurrence. Collaboration and Stakeholder Management: Collaborate with cross-functional teams including network engineers, security analysts, and system administrators. Communicate effectively with stakeholders to gather requirements, provide updates, and address concerns. Skills and Qualifications: Bachelor's degree in Computer Science, Information Technology, or related field (or equivalent experience). Extensive hands-on experience with Cisco Identity Services Engine (ISE) administration, including policy configuration and troubleshooting. Strong understanding of network protocols (TCP/IP, DHCP, DNS) and network security principles. In-depth knowledge of AAA (Authentication, Authorization, and Accounting) methodologies and RADIUS/TACACS+ protocols. Proficiency in scripting languages (e.g., Python, PowerShell) for automation and orchestration. Experience with network access control (NAC) solutions and integration with identity management systems (e.g., Active Directory). Strong analytical and problem-solving skills with the ability to troubleshoot complex issues. Excellent communication and interpersonal skills, with the ability to collaborate effectively in a team environment. Relevant certifications such as Cisco CCNP Security, CISSP, or equivalent are preferred.

Job Type: Full-time

Pay: 700,000.00 - 900,000.00 per year

Work Location: In person