Network Security Engineer (NAC)
We are looking for a Network Security Engineer with deep expertise in Network Access Control (NAC) to lead and support NAC implementations in complex enterprise environments. The ideal candidate will have extensive hands-on experience with Cisco Identity Services Engine (ISE) and a strong understanding of 802.1X, RADIUS, posture assessment, and endpoint profiling. This is a consulting-focused role that requires strong client-facing skills and the ability to design, implement, and troubleshoot NAC solutions in diverse network infrastructures.
Key Responsibilities:
Lead the design, deployment, and operational support of NAC solutions, primarily using Cisco ISE.
Work with clients to develop access control policies, device profiling, posture assessments, and guest/BYOD workflows.
Configure and troubleshoot 802.1X, MAB, RADIUS, TACACS+, and integration with AD, PKI, and other identity stores.
Integrate NAC with other security tools such as firewalls, SIEMs, MDM solutions, and EPP/EDR platforms.
Provide strategic guidance to clients on NAC policy development, user segmentation, and zero trust principles.
Deliver documentation, runbooks, and knowledge transfer for ongoing client operations.
Support NAC assessments, policy refinement, and incident response scenarios where NAC plays a role.
Work in tandem with network, security, and desktop teams to ensure alignment across all access control layers.
Required Qualifications:
3+ years of experience implementing and managing Cisco ISE in enterprise environments.
Strong understanding of network security concepts including 802.1X, RADIUS, EAP-TLS, device profiling, and posture checks.
Experience integrating ISE with Active Directory, certificate authorities, and third-party MDM/SIEM tools.
Solid knowledge of LAN switching, VLANs, and network architecture required to support NAC deployments.
Familiarity with NAC in both wired and wireless environments, including Cisco Catalyst, Cisco WLC, or Meraki infrastructure.
Experience working in a consulting or MSP environment and managing multiple projects or clients.
Excellent communication skills, both written and verbal, for stakeholder engagement and documentation.
Preferred Qualifications:
Experience with other NAC platforms such as Aruba ClearPass, Forescout, or Portnox.
Cisco certifications such as CCNP Security, Cisco ISE Specialist, or relevant NAC vendor certifications.
Understanding of Zero Trust Network Access (ZTNA) and how NAC fits into a modern segmentation and access strategy.
Experience with guest access portals, self-registration, and contractor device onboarding.
Network Security Engineer (NAC)
We are looking for a Network Security Engineer with deep expertise in Network Access Control (NAC) to lead and support NAC implementations in complex enterprise environments. The ideal candidate will have extensive hands-on experience with Cisco Identity Services Engine (ISE) and a strong understanding of 802.1X, RADIUS, posture assessment, and endpoint profiling. This is a consulting-focused role that requires strong client-facing skills and the ability to design, implement, and troubleshoot NAC solutions in diverse network infrastructures.
Key Responsibilities:
Lead the design, deployment, and operational support of NAC solutions, primarily using Cisco ISE.
Work with clients to develop access control policies, device profiling, posture assessments, and guest/BYOD workflows.
Configure and troubleshoot 802.1X, MAB, RADIUS, TACACS+, and integration with AD, PKI, and other identity stores.
Integrate NAC with other security tools such as firewalls, SIEMs, MDM solutions, and EPP/EDR platforms.
Provide strategic guidance to clients on NAC policy development, user segmentation, and zero trust principles.
Deliver documentation, runbooks, and knowledge transfer for ongoing client operations.
Support NAC assessments, policy refinement, and incident response scenarios where NAC plays a role.
Work in tandem with network, security, and desktop teams to ensure alignment across all access control layers.
Required Qualifications:
3+ years of experience implementing and managing Cisco ISE in enterprise environments.
Strong understanding of network security concepts including 802.1X, RADIUS, EAP-TLS, device profiling, and posture checks.
Experience integrating ISE with Active Directory, certificate authorities, and third-party MDM/SIEM tools.
Solid knowledge of LAN switching, VLANs, and network architecture required to support NAC deployments.
Familiarity with NAC in both wired and wireless environments, including Cisco Catalyst, Cisco WLC, or Meraki infrastructure.
Experience working in a consulting or MSP environment and managing multiple projects or clients.
Excellent communication skills, both written and verbal, for stakeholder engagement and documentation.
Preferred Qualifications:
Experience with other NAC platforms such as Aruba ClearPass, Forescout, or Portnox.
Cisco certifications such as CCNP Security, Cisco ISE Specialist, or relevant NAC vendor certifications.
Understanding of Zero Trust Network Access (ZTNA) and how NAC fits into a modern segmentation and access strategy.
Experience with guest access portals, self-registration, and contractor device onboarding.