RemoteLeaf Logo
Log in Sign up

Senior Technical Consultant – Cisco Security

1 month, 3 weeks ago
India
Full-time
Senior
Penetration Tester
DevOps and Infrastructure
Active Directory Ansible Fortinet Git Juniper Python REST API SIEM
Apply Now
AHEAD

AHEAD

AHEAD accelerates the impact of technology on clients by engineering customized data, developer, and infrastructure platforms that improve IT operations. By weaving together cloud infrastructure, intelligent operations, and modern applications, we help...

IT Services
1K-5K
$43M raised
View All Jobs 55

Description

  • Lead end-to-end delivery of Cisco ISE and FTD/FMC projects including discovery, HLD/LLD, build, cutover, validation, documentation, and knowledge transfer.
  • Facilitate workshops to gather requirements, assess current state, and map outcomes to security frameworks (e.g., Zero Trust, NIST).
  • Create SOW inputs and delivery artifacts such as migration plans, rollback plans, test plans, runbooks, and project milestones.
  • Architect and deploy Cisco ISE in standalone and distributed personas (PAN/MnT/PSN) with HA and scaling considerations; design 802.1X/MAB, RADIUS/TACACS+, device profiling, posture assessment, and guest/BYOD onboarding flows.
  • Build authorization policies using SGT/TrustSec, dACLs, and dynamic VLANs; integrate ISE with AD/LDAP, PKI, Duo, AnyConnect posture, and pxGrid-enabled ecosystem tools.
  • Design and implement FTD (physical/virtual) managed by FMC with HA/clustering where applicable; build and tune access control, SSL decryption, intrusion, malware, URL filtering, and NAT policies.
  • Plan and execute ASA-to-FTD migrations including policy rationalization, NAT redesign, cutover/runbook planning, and integration with SIEM/EDR.
  • Collaborate with switching/routing, wireless (WLC/Catalyst), SD‑WAN/VPN teams and integrate other Cisco security solutions (AnyConnect, Duo, Secure Endpoint, Umbrella, SecureX).
  • Produce high-quality HLD/LLD/as-built documents and operational runbooks; conduct formal knowledge transfer and admin training; provide hypercare, root cause analysis, and optimization recommendations post-deployment.

Requirements

  • 7+ years in network/security engineering with 3–5+ years delivering Cisco ISE and Cisco FTD/FMC in enterprise environments.
  • Proven delivery of multi-site ISE and FTD projects from design through cutover, including HA, scale, and production operations.
  • Hands-on experience with ISE features: 802.1X/MAB, RADIUS, TACACS+, guest/BYOD, posture, profiling, SGT/TrustSec, dACLs, AD/LDAP integration, certificates/PKI, pxGrid, and AnyConnect posture.
  • Hands-on experience with FTD/FMC features: access control policies, SSL decryption, intrusion policies (Snort 3), malware, NAT, VPNs (IPsec IKEv1/IKEv2 and SSLVPN), HA/clustering, policy tuning, and logging/SIEM integration.
  • Solid L2/L3 networking fundamentals (VLANs, STP, routing protocols, VRF, QoS) and Wi‑Fi 802.1X concepts.
  • Strong consulting skills including discovery, requirements mapping, documentation, risk management, customer communication, workshop facilitation, and executive updates.
  • Experience with change management (ITIL), production cutovers, rollback planning, and delivering on SOWs.
  • Preferred certifications: CCNP Security, Cisco Certified Specialist – ISE/Firepower, CCIE Security (written or lab), CISSP, GIAC (GPCS, GCIA, GSEC).
  • Preferred experience with Duo, Secure Client/AnyConnect posture, Secure Endpoint (AMP), Umbrella, SecureX, and ISE SGT integration with FMC; cross‑vendor firewall/NAC migration experience (Palo Alto, Fortinet, Aruba ClearPass, Check Point, Juniper).
  • Scripting/automation experience (Python, Ansible, REST APIs for FMC/ISE), Git basics, and exposure to Zero Trust, NIST/CIS/ISO frameworks and SIEM/EDR/SOAR integrations.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Coinbase

Senior Offensive Security Engineer (IOT / Network Pentesting)

Coinbase 1K-5K Capital Markets

Coinbase is hiring a Senior Offensive Security Engineer to assess and strengthen the digital security of physical spaces and connected systems as part of its Application Security team.

United States Full-time Senior Embedded Systems Engineer Penetration Tester
$186k-$219k
IoT LLM Machine Learning Network Security Penetration Testing
59 minutes ago
Twilio

Staff Engineer, Offensive Security

Twilio 5K-10K Diversified Telecommunication Services

Twilio is hiring a remote Staff Engineer, Offensive Security in Ireland to lead advanced offensive security work that identifies systemic risk across applications, networks, cloud environments, and AI systems.

Ireland Full-time Lead Penetration Tester
Android AWS Azure Bash Burp Suite C++ iOS Kubernetes Metasploit Network Security Nmap Penetration Testing Python SIEM TensorFlow Wireshark
1 hour, 59 minutes ago
GitLab

Principal Cybersecurity Incident Manager (USA)

GitLab 1K-5K Internet Software & Services

GitLab is hiring a Cybersecurity Incident Manager to lead security incident response across its SaaS, dedicated, and corporate environments while building and maturing the company’s incident command function.

United States Full-time Lead Penetration Tester
$168k-$270k
AWS DevSecOps GCP GitLab Kubernetes SIEM
3 hours, 59 minutes ago
Magnet Forensics

Vulnerability Researcher

Magnet Forensics 251-1K Internet Software & Services

Magnet Forensics is hiring a Vulnerability Researcher to support its remote research and development team in advancing digital investigative software used by customers worldwide.

Canada United Kingdom France Germany Spain Sweden Full-time Mid Level Penetration Tester
8 hours, 59 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers