RemoteLeaf Logo
Log in Sign up

Senior Technical Consultant – Cisco Security

1 month ago
India
Full-time
Senior
Penetration Tester
DevOps and Infrastructure
Active Directory Ansible Fortinet Git Juniper Python REST API SIEM
Apply Now
AHEAD

AHEAD

AHEAD accelerates the impact of technology on clients by engineering customized data, developer, and infrastructure platforms that improve IT operations. By weaving together cloud infrastructure, intelligent operations, and modern applications, we help...

IT Services
1K-5K
$43M raised
View All Jobs 10

Description

  • Lead end-to-end delivery of Cisco ISE and FTD/FMC projects including discovery, HLD/LLD, build, cutover, validation, documentation, and knowledge transfer.
  • Facilitate workshops to gather requirements, assess current state, and map outcomes to security frameworks (e.g., Zero Trust, NIST).
  • Create SOW inputs and delivery artifacts such as migration plans, rollback plans, test plans, runbooks, and project milestones.
  • Architect and deploy Cisco ISE in standalone and distributed personas (PAN/MnT/PSN) with HA and scaling considerations; design 802.1X/MAB, RADIUS/TACACS+, device profiling, posture assessment, and guest/BYOD onboarding flows.
  • Build authorization policies using SGT/TrustSec, dACLs, and dynamic VLANs; integrate ISE with AD/LDAP, PKI, Duo, AnyConnect posture, and pxGrid-enabled ecosystem tools.
  • Design and implement FTD (physical/virtual) managed by FMC with HA/clustering where applicable; build and tune access control, SSL decryption, intrusion, malware, URL filtering, and NAT policies.
  • Plan and execute ASA-to-FTD migrations including policy rationalization, NAT redesign, cutover/runbook planning, and integration with SIEM/EDR.
  • Collaborate with switching/routing, wireless (WLC/Catalyst), SD‑WAN/VPN teams and integrate other Cisco security solutions (AnyConnect, Duo, Secure Endpoint, Umbrella, SecureX).
  • Produce high-quality HLD/LLD/as-built documents and operational runbooks; conduct formal knowledge transfer and admin training; provide hypercare, root cause analysis, and optimization recommendations post-deployment.

Requirements

  • 7+ years in network/security engineering with 3–5+ years delivering Cisco ISE and Cisco FTD/FMC in enterprise environments.
  • Proven delivery of multi-site ISE and FTD projects from design through cutover, including HA, scale, and production operations.
  • Hands-on experience with ISE features: 802.1X/MAB, RADIUS, TACACS+, guest/BYOD, posture, profiling, SGT/TrustSec, dACLs, AD/LDAP integration, certificates/PKI, pxGrid, and AnyConnect posture.
  • Hands-on experience with FTD/FMC features: access control policies, SSL decryption, intrusion policies (Snort 3), malware, NAT, VPNs (IPsec IKEv1/IKEv2 and SSLVPN), HA/clustering, policy tuning, and logging/SIEM integration.
  • Solid L2/L3 networking fundamentals (VLANs, STP, routing protocols, VRF, QoS) and Wi‑Fi 802.1X concepts.
  • Strong consulting skills including discovery, requirements mapping, documentation, risk management, customer communication, workshop facilitation, and executive updates.
  • Experience with change management (ITIL), production cutovers, rollback planning, and delivering on SOWs.
  • Preferred certifications: CCNP Security, Cisco Certified Specialist – ISE/Firepower, CCIE Security (written or lab), CISSP, GIAC (GPCS, GCIA, GSEC).
  • Preferred experience with Duo, Secure Client/AnyConnect posture, Secure Endpoint (AMP), Umbrella, SecureX, and ISE SGT integration with FMC; cross‑vendor firewall/NAC migration experience (Palo Alto, Fortinet, Aruba ClearPass, Check Point, Juniper).
  • Scripting/automation experience (Python, Ansible, REST APIs for FMC/ISE), Git basics, and exposure to Zero Trust, NIST/CIS/ISO frameworks and SIEM/EDR/SOAR integrations.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Toyota Tsusho Systems

Senior Security Engineer - Red Team

Toyota Tsusho Systems 51-250 IT Services

Senior Security Engineer - Red Team to join our offensive security team, responsible for developing advanced red teaming tools and methodologies and conducting comprehensive assessments to simulate sophisticated threats and improve organizational security posture.

United States Contract Senior Penetration Tester
Agile AWS Azure Bash DevSecOps GCP Network Security Penetration Testing PowerShell Python
1 month ago
Cloudflare

Field CISO, Pacific Northwest

Cloudflare 1K-5K IT Services

Cloudflare is hiring a Field CISO in Seattle to lead regional technical and business engagement with strategic customers, drive adoption of Cloudflare’s security and performance platform, and deliver against regional growth and go-to-market objectives.

United States Full-time Lead Penetration Tester Sales Representative
Cybersecurity DNS
1 month ago
CertiK

Security Research Internship

CertiK

Security Research Intern at CertiK joining the security research team to discover vulnerabilities and develop detection and mitigation tools for blockchain, distributed systems, and related software.

United States Internship Entry Level Penetration Tester
$36k-$96k
Blockchain Go Rust
1 month ago
IDMWORKS

Sr. IAM Architect - SailPoint IIQ

IDMWORKS 51-250 Professional Services

Senior IAM Architect at IDMWORKS within remote Professional Services, responsible for leading the architecture and delivery of identity and access management solutions to secure and scale enterprise access for clients.

United States Full-time Senior Penetration Tester
Active Directory C# Cybersecurity Java
1 month ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers