Network Engineer

The successful candidate must be able to pass a BPSS security check.


A UK-based engineering organisation is seeking an experienced Network Access Control (NAC) engineer to deliver a single, unified NAC solution supporting two major business divisions. This programme will enhance security, standardise access control, and centralise policy management across multiple UK sites

.
You will support the configuration, testing and go-live of Cisco Identity Services Engine (ISE) hardware appliances across geographically dispersed locations, and lead the logical policy configuration and migration from existing NAC solution

s.
Delivery must align to an established operational change model, collaborating with (and where required augmenting) an existing network operations tower to execute changes across sit

es.
Key responsibili

  • tiesLead deployment, configuration and implementation of Cisco ISE in enterprise environm
  • entsImplement NAC policies includ ing 80 2.1X, MAB, and guest ac cess workf
  • lowsIntegrate ISE with network infrastructure includ ing switc hi ng, wireless control le rs, firew al ls, Entr a ID and Active Direc
  • toryTesting & validati on: functional tes ti ng, failover tes ting, and meeting agreed acceptance crit
  • eriaTroubleshoot complex access/authentication issues and provide early life support post go-
  • liveGuest access: captive portal, onboarding workflows, and sponsor portal configura
  • tionWork with security stakeholders to enforce compliance and security policy requirem
  • entsProduce and maintain technical documentation (design artefacts, diagrams, operational procedu
  • res)Provide a blend of on-site and remote support during deployment and post-implementation ph
  • asesSupport incident response and root cause analysis for security/access ev
  • entsDeliver knowledge transfer (workshops/training) to internal IT t

eams
Required experience / s

  • killsStrong hands-on experience delive ring Cisco ISE 3.x (or l ater) implementations, inclu ding migration/transition of devices and ser vices from prior NAC solu
  • tionsMulti-site enterprise deployment experience, inclu ding high availab ility design/implement
  • ationProven deliver
  • y of:802.1X for wired and wir
  • elessMAC Authentication Bypass
  • (MAB)Guest access with customisable work
  • flowsIntegration experience with existing Cisco estate and Microsoft services, including familiarity with Microsof
  • t NPSStrong operational capability in troubleshooting authentication, policy, certificate and network access i

ssues
Certific

  • ationsCCNP pre ferre d (o r CCNA with extensive Cisco ISE delivery exper
  • ience)Cisco Fire Jumper Field Engineer certifi

cation
Preferred (nice t

  • o have)Endpoint compliance/posture and profiling capabilities wit
  • hin ISEIntegrations with third-party security tools (e.g., SI E
M, MDM)
Apply Now
Apply Now

Job Details

Company
Marks Sattin
Location
Luton, England, United Kingdom
Posted