Position: Senior Network Security Engineer

Job Description:

We are looking for a highly experienced and proactive Senior Network Security Engineer with a primary focus on Cisco Identity Services Engine (ISE) administration. The successful candidate will be responsible for deploying and managing a variety of network security solutions to ensure the integrity and security of our infrastructure. This role requires strong project management skills and the ability to work independently.

Core Responsibilities & Duties:

• Deploy and Administer Cisco ISE Servers

• Lead the deployment, configuration, and administration of Cisco ISE servers

• Ensure secure network access and enforce policy compliance

• Monitor system performance and troubleshoot issues as they arise

• Deploy Wireless & Wired Dot1x

• Implement and manage 802.1x authentication for both wireless and wired networks

• Ensure robust network security through effective authentication mechanisms

• Provide support and resolve issues related to 802.1x deployments

• Manage and Tune IPS/IDS

• Oversee the management and fine-tuning of Intrusion Prevention Systems (IPS) and Intrusion Detection Systems (IDS)

• Monitor network traffic for potential threats and respond to security incidents

• Regularly update IPS/IDS configurations and signatures

• Certificate Management

• Manage digital certificates to ensure secure communications

• Implement and maintain Public Key Infrastructure (PKI) solutions

• Ensure timely renewal and revocation of certificates

• Firewall Management (Cisco ASA, MX, Fortigate, Velocloud)

• Configure, maintain, and troubleshoot firewalls from various vendors

• Implement firewall rules and policies to protect network resources

• Conduct regular firewall audits and updates

• Deploy and Manage Cisco ASA/MX Firewalls in Cloud

• Deploy and manage Cisco ASA/MX firewalls in cloud environments

• Ensure secure and scalable firewall solutions for cloud-based applications

• Troubleshoot and resolve cloud firewall-related issues

• Remediate and Identify Firewall Vulnerabilities

• Identify and remediate vulnerabilities in firewall configurations

• Conduct regular security assessments and penetration testing

• Implement best practices to enhance firewall security

• Solid Knowledge of VPN

• Configure and manage Virtual Private Network (VPN) solutions for secure remote access

• Troubleshoot VPN connectivity issues and ensure reliable access for remote user

• Implement and maintain VPN policies and configurations

• Perform and Participate in Security Audits

• Conduct and participate in security audits to ensure compliance with industry standards and regulations

• Identify and address security gaps and vulnerabilities

• Prepare detailed audit reports and recommendations for improvement

• Deploy and manage Meraki network devices and solutions

• Ensure optimal performance and security of Meraki networks

• Troubleshoot and resolve issues related to Meraki devices

• Manage and Deploy Cisco Umbrella and Cisco AnyConnect

• Deploy and manage Cisco Umbrella for DNS-layer security

• Administer Cisco AnyConnect for secure remote access

• Ensure seamless integration and optimal performance of these solutions

• Excellence in Network Diagram and Documentation Creation

• Create and maintain detailed network diagrams and documentation

• Ensure documentation is up-to-date and accessible to relevant stakeholders

• Provide training and support to team members on documented processes and procedures

• Participate in On-Call Rotation

• Be available for on-call support on a rotating basis to address urgent issues outside of regular business hours

• Respond promptly to support requests and ensure timely resolution of critical issues

  Qualifications:

• Bachelor’s degree in Information Technology, Computer Science, or a related field

• Extensive experience with Cisco ISE administration and network security solutions

• Strong project management skills and the ability to work independently

• Exceptional communication and presentation skills

• Proven experience managing and tuning IPS/IDS, certificate management, and firewall administration

• Experience with Meraki network devices and solutions

• Proficiency in creating and maintaining network diagrams and documentation

• Experience managing and deploying Cisco Umbrella and Cisco AnyConnect

  Skills:

• Certifications in Cisco technologies (e.g., Security CCNA, CCNP, CCIE)

• Experience with other network security tools and platforms

• Familiarity with network infrastructure and security protocols

  Forward Air is an Equal Opportunity employer.

About Us

About the Team