We are currently seeking an ISE NAC Engineer for a long term, remote contracting position. Candidates must live in the United States and be able to pass both a criminal and credit background check. We are able to work with W2 and established 1099 (no c2c).
This role is for a Cisco Identity Services Engine (ISE) Network Access Control (NAC) Engineer with 5–10 years of overall IT/network security experience and 3–5 years of hands-on Cisco ISE experience. The engineer will be responsible for implementing, administering, troubleshooting, and optimizing Cisco ISE to provide secure network access across enterprise environments. Daily responsibilities include supporting authentication and authorization policies, integrating ISE with identity services, resolving Tier 2/3 incidents, maintaining documentation, participating in change management and on-call support, and ensuring secure access for wired, wireless, guest, and BYOD devices. The ideal candidate has strong enterprise networking and authentication experience, understands identity-based access control, and can work independently in a structured environment with strict change management processes.
This role requires someone with:
- 5–10 years of enterprise networking/security experience.
- 3–5 years administering Cisco ISE.
- Strong knowledge of 802.1X, MAB, RADIUS, TACACS+, PKI, and Active Directory integration.
- Experience supporting enterprise NAC environments in production.
- Solid troubleshooting skills with Tier 2/3 support, change management, and documentation.
- Experience supporting guest access, BYOD, endpoint profiling, and posture assessment in large enterprise environments.
Job Description:
3–5 years of hands-on experience with Cisco ISE (2.x / 3.x)
- Experience implementing and supporting NAC solutions using Cisco ISE
- Strong understanding of:
- Policy Sets (Authentication & Authorization)
- Conditions, Profiles, and Rules logic
- Endpoint Profiling and Posturing
- 802.1X (wired and wireless)
- MAB (MAC Authentication Bypass)
- Guest/BYOD onboarding workflows
- Experience Authentication & Identity Integration
- Active Directory / LDAP / Azure AD
- PKI and EAP methods (PEAP, EAP-TLS, EAP-FAST)
- RADIUS/TACACS+
- Provide Tier 2/3 support for NAC-related issues
- Participate in on-call rotations
- Experience with change management processes, incident response, and root cause analysis.
- Maintain Network authentication runbooks, Standard operating procedures (SOPs) and Architecture diagrams
- Experience working in enterprise environments with strict change control
- Ability to manage multiple priorities and projects
Company Description
System One is a leading provider of specialized, highly technical services and solutions to critical infrastructure, technology, life sciences, and government sectors. We partner with large private and public organizations who trust us to execute their complex, mission-critical initiatives through our outsourced services and workforce solutions.