Security Engineer – ISE Position Available In Durham, North Carolina
Tallo's Job Summary: This job listing in Durham - NC has been recently added. Tallo will add a summary here for this job shortly.
Job Description
Top Skills:
1) Cisco Identity Services Engine (ISE) experience: troubleshooting and configuring as well as ability to utilize ISE to determine where in the chain something is broken. Experience setting up posturing within client provisioning, posture policy, and authorization policy is strongly desired. 2) Network Protocol T/S Experience with 802.1x,
TACACS, and RADIUS:
configuring settings within protocols. 3) Experience with Cisco Wireless LAN Controller (WLC): configuring settings within controllers. 4) CCNP (not required but need CCNP level knowledge)
Job Description:
As part of the team, you will join a team of 30-Tier 4 Customer Support Engineers. These engineers specialize in one or more core technologies while understanding the foundations of network products, protocols, and effective methodologies. As a member of this team, you will be part of a collaborative team to provide support during critical network issues as well as leading a caseload of lower critical issues, specifically with ISE. Day to
Day Responsibilities:
The successful Engineer will effectively assess the customer’s situation and help develop an action plan that will result in a resolution. This is an operations role, not a design/architecture role. This is heavy interaction with their federal customers and troubleshooting the issues, via phone, chat, email. This role is NOT a help desk role. This person will be doing higher level troubleshooting that requires the SME to be very technical, working with multi-vendor, integrated solutions. Engineers can sit anywhere in the US Day to
Day:
– 50% of the day (4 hrs) will be spent taking customer calls for support that fall within the network monitoring space. This will be operational and reactive. As cases come in, this person will work them to resolution according to priority level. – 50% of the day (4 hrs) will be spent working backlogs (cases that have accumulated and need to be resolved). This may involve working with other engineers and/or in the virtual lab to reverse-engineer the customer’s issue to derive troubleshooting steps for resolution. Top Skills’ Details 1) Experience with ISE and the technologies that go with it: a) Protocol Experience with 802.1x,
TACACS, and RADIUS:
configuring settings within protocols. b) Experience with Cisco Wireless LAN Controller (WLC): configuring settings within controllers. c) IOS Switches 2) Extensive experience with firewalls: configure, maintain, and operate the firewall features, connectivity and device management, access control features, network integration features, Virtualization and High Availability Features. 3)
VPN Experience:
site-to-site VPN, remote access VPN, configure and troubleshoot, understand encryption and use within security. 4) CCNP Nice to have: Cisco Secure Network Analytics/Stealthwatch Cisco Certs- CCNP ISE takes care of and supports BYOD. When you bring a new device on, ISE installs everything you need prior to access. This person should be able to set that up and troubleshoot if something is no longer working. The protocols ISE uses (RADIUS), IEEE 802.1x, and TACACS) have to be configured not within ISE but within the actual protocol settings. This is the same with WLC’s. Also helpful to know how to do and interpret packet captures-set up Wireshark on a network and be able to configure 802.1x authentication on the wireless controller.
Example of client issue:
problem is on the client’s computer-engineer needs to know how to go into settings on WLC, determine if there is a firewall blocking traffic, or check the ISE configuration. Due to this, it will be helpful for someone to understand basic networking and routing and switching. Understanding network access devices (switches) will also be helpful. Having CCNA level knowledge with more emphasis on switching side-also helpful. This engineer needs to have experience working with complex networks with complex designs that require Tier 3 configuration and troubleshooting support of ISE, WLC, and 802.1x protocol. Additional Skills & Qualifications This person needs to be a self-starter who does not require hand-holding. They need to be able to figure things out quickly. Great customer service skills, communication, written and verbal, collaboration and work independently. Must be very outgoing and team-oriented. Experience Level Intermediate Level
