Ise Jobs (NOW HIRING)

Who we are: Tria Federal delivers digital services and technology solutions that support the health and safety of veterans, service members and civilians. For two decades, federal agencies have relied on Tria companies to advance their critical missions and modernize their systems, so that they can uphold their commitment to the American people. Today, we are pushing the boundaries of possibility through partnerships and investments in artificial intelligence and emerging technologies, developing solutions for the biggest challenges that government will face tomorrow. We are proud to employ and support military veterans who bring mission-first mindset, technical expertise, and leadership qualities that strengthen our work. Veterans, transitioning service members, and military spouses are strongly encouraged to apply. Senior Network Security Engineer Tria Federal is seeking a Senior Network Security Engineer to support the agency as it moves away from its legacy ForeScout CounterACT NAC/NAM system and adopts Cisco Identity Services Engine (ISE) as the new access‑control platform. The engineer will help configure and manage Cisco ISE across the environment, handling AAA services, wired and wireless 802.1X authentication, device administration, and posture checks for users and devices. This role also supports the agency’s modernization work by improving authentication processes, updating ISE policies, and strengthening identity-based access controls. The engineer will troubleshoot access issues, refine policy designs, and help ensure users and devices can connect securely and reliably as the organization completes its transition from ForeScout to Cisco ISE. Basic Requirements Senior Network Security Engineer responsible for designing, configuring, monitoring, and troubleshooting Cisco ISE as a NAC/NAM platform, including TACACS+/RADIUS services, device administration policies, and wired/wireless 802.1X authentication. Experience working with Cisco ISE deployed on Cisco SNS‑3715 appliances, preferably in a two‑node clustered, high‑availability setup. Understanding of ForeScout CounterACT, including legacy NAC/NAM policies, device classification, and access workflows, to support the migration to Cisco ISE. Experience providing general wireless network support, including basic troubleshooting, controller interactions, and wireless access workflows. Hands‑on experience integrating Cisco ISE with Active Directory (AD) and LDAP, including identity lookups, group‑based policy decisions, and directory‑based authentication. Eight (8) years of experience in a large government organization with five (5) years in technical leadership, including four (4) years implementing and troubleshooting Cisco ISE with expertise in: Authentication and authorization policies (RADIUS/TACACS+) 1X/EAP methods for wireless and wired access Device profiling, posture checks, and endpoint compliance Certificate‑based authentication (EAP‑TLS) and PKI integration AAA integrations for switches, appliances, firewalls, and wireless controllers Experience supporting Cisco ISE integrations with Cisco 9800 Wireless LAN Controllers, including guest/registration page redirection and wireless onboarding. Experience migrating legacy NAC, RADIUS, or device authentication systems into Cisco ISE while aligning with Zero Trust principles. Four (4) years of experience supporting identity‑centric or Zero Trust architectures with strong knowledge of segmentation, certificate management, and endpoint posture controls. Solid understanding of telecommunications, network security, and Zero Trust best practices. Strong communication skills with the ability to explain Cisco ISE, NAC/NAM, and AAA concepts to both technical and non‑technical audiences. Bachelor’s degree in Information Technology, Cybersecurity, or a related field. Preferred certifications: Cisco CCNP Security, Cisco ISE Specialist, or similar identity/security certifications. Responsibilities                               Troubleshoot and resolve Cisco ISE issues across RADIUS, TACACS+, 802.1X, device administration, and endpoint authentication. Deploy, configure, and maintain Cisco ISE running on two clustered Cisco SNS‑3715 appliances, ensuring high availability and consistent policy enforcement. Support the agency’s migration from ForeScout CounterACT to Cisco ISE, including reviewing legacy ForeScout policies, device groups, and access rules and mapping them into ISE policy sets. Provide general wireless support, including basic troubleshooting, wireless access workflows, and coordination with wireless infrastructure teams. Configure and support Cisco ISE integrations with Cisco 9800 WLCs, including guest/registration portals, wireless onboarding, and policy‑driven access control. Integrate and maintain Cisco ISE with Active Directory (AD) and LDAP, including identity lookups, group‑based authorization, and directory‑based authentication workflows. Deploy, configure, and maintain Cisco ISE components, including: Policy Sets, Authorization Profiles, and Authentication Rules TACACS+ device administration 1X for wired and wireless networks Profiling, posture, and compliance policies Certificate‑based authentication and PKI integrations Monitor security events using ISE logs, syslog, and performing root cause analysis for authentication and access issues. Manage identity integrations, enforce security policies, and tune configurations to support Zero Trust and improve user experience. Perform routine health checks, upgrades, migrations, and document changes through SOPs, engineering designs, and implementation procedures. Work closely with engineering, operations, and compliance teams while mentoring junior staff and contributing to knowledge sharing efforts. ABILITY TO OBTAIN A DOL PUBLIC TRUST CLEARANCE (Must be a U.S. Citizen or Green Card Holder residing in the United States for more than 3.5 years   Work Location: 100% ON-SITE SUPPORT in Suitland, MD  Why Tria?
What defines the Tria brand is more than just our dedication to excellence in our craft; it’s our incredible team of dedicated, talented, and passionate people that make Tria so exceptional. As people powering possible, we are all partners in our team’s shared success. As a company that cares about people, we seek to cultivate a culture in which all can thrive personally and professionally. We offer a top-tier benefits package to invest in your physical, mental, and financial health and wellness so that you can be your best self - at work and in life. At Tria, we are growth-minded, entrepreneurial in spirit, and committed to fostering a culture of inclusion and opportunity for all. Whatever your background, your role, your department, or stage in your professional journey, here you will have opportunities to learn new skills, seize new challenges, and advance your career as we grow.  California Consumer Privacy Act (CCPA) We are committed to protecting your privacy. As part of our compliance with the California Consumer Privacy Act (CCPA), we want to inform you about how we collect, use, and protect your personal information during the job application process. For more details, please review https://www.oag.ca.gov/privacy/ccpa. Create a Job Alert Interested in building your career at Tria Federal? Get future opportunities sent straight to your email.
Create alert Apply for this job indicates a required field Quick Apply with MyGreenhouse First Name Last Name Email Phone Country Phone 244 results found
No results found Afghanistan+93 Åland Islands+358 Albania+355 Algeria+213 American Samoa+1 Andorra+376 Angola+244 Anguilla+1 Antigua & Barbuda+1 Argentina+54 Armenia+374 Aruba+297 Ascension Island+247 Australia+61 Austria+43 Azerbaijan+994 Bahamas+1 Bahrain+973 Bangladesh+880 Barbados+1 Belarus+375 Belgium+32 Belize+501 Benin+229 Bermuda+1 Bhutan+975 Bolivia+591 Bosnia & Herzegovina+387 Botswana+267 Brazil+55 British Indian Ocean Territory+246 British Virgin Islands+1 Brunei+673 Bulgaria+359 Burkina Faso+226 Burundi+257 Cambodia+855 Cameroon+237 Canada+1 Cape Verde+238 Caribbean Netherlands+599 Cayman Islands+1 Central African Republic+236 Chad+235 Chile+56 China+86 Christmas Island+61 Cocos (Keeling) Islands+61 Colombia+57 Comoros+269 Congo - Brazzaville+242 Congo - Kinshasa+243 Cook Islands+682 Costa Rica+506 Côte d’Ivoire+225 Croatia+385 Cuba+53 Curaçao+599 Cyprus+357 Czechia+420 Denmark+45 Djibouti+253 Dominica+1 Dominican Republic+1 Ecuador+593 Egypt+20 El Salvador+503 Equatorial Guinea+240 Eritrea+291 Estonia+372 Eswatini+268 Ethiopia+251 Falkland Islands+500 Faroe Islands+298 Fiji+679 Finland+358 France+33 French Guiana+594 French Polynesia+689 Gabon+241 Gambia+220 Georgia+995 Germany+49 Ghana+233 Gibraltar+350 Greece+30 Greenland+299 Grenada+1 Guadeloupe+590 Guam+1 Guatemala+502 Guernsey+44 Guinea+224 Guinea-Bissau+245 Guyana+592 Haiti+509 Honduras+504 Hong Kong SAR China+852 Hungary+36 Iceland+354 India+91 Indonesia+62 Iran+98 Iraq+964 Ireland+353 Isle of Man+44 Israel+972 Italy+39 Jamaica+1 Japan+81 Jersey+44 Jordan+962 Kazakhstan+7 Kenya+254 Kiribati+686 Kosovo+383 Kuwait+965 Kyrgyzstan+996 Laos+856 Latvia+371 Lebanon+961 Lesotho+266 Liberia+231 Libya+218 Liechtenstein+423 Lithuania+370 Luxembourg+352 Macao SAR China+853 Madagascar+261 Malawi+265 Malaysia+60 Maldives+960 Mali+223 Malta+356 Marshall Islands+692 Martinique+596 Mauritania+222 Mauritius+230 Mayotte+262 Mexico+52 Micronesia+691 Moldova+373 Monaco+377 Mongolia+976 Montenegro+382 Montserrat+1 Morocco+212 Mozambique+258 Myanmar (Burma)+95 Namibia+264 Nauru+674 Nepal+977 Netherlands+31 New Caledonia+