Navy Federal Credit Union - Winchester, VA
posted 2 months ago
This position is for a Senior Network Security Engineer with a focus on Cisco Identity Services Engine (ISE) Network Access Control (NAC) and Compliance Posture Assessments, as well as Palo Alto GlobalProtect. The ideal candidate will be a self-starter capable of serving in a technical lead role, providing technical project management and oversight, and delivering hands-on support at a Subject Matter Expert (SME) level within these areas of focus. The role requires a deep understanding of network security protocols and the ability to implement and manage complex security solutions effectively. The responsibilities include system baselining and requirements gathering, as well as the implementation of the Cisco ISE solution for an environment supporting over 20,000 endpoints. The candidate will also be responsible for implementing Cisco ISE posture requirements, remediations, policy, and client provisioning, along with performing ISE solution upgrades to support feature enhancements. In-depth troubleshooting of the ISE infrastructure will be necessary, as well as the implementation of Palo Alto GlobalProtect Host Information Profile (HIP) posturing and Firewall as a Service (FWaaS) and Cloud Access Security Broker (CASB) solutions. The Senior Network Security Engineer will evaluate technical solutions in response to business challenges, support the development of client deployment strategies, and provide thought leadership in support of continuous improvements. The role also involves presenting technical solutions for knowledge sharing and acceptance, providing project support and status reporting, establishing and maintaining system documentation, and representing changes in Change Advisory Board (CAB) meetings. Additionally, the candidate will present new solutions and architectures in Architecture Review Board (ARB) meetings and collaborate with partnering teams to support solution development and deployment.