Network Security Engineer (Cisco ISE)

• Strong knowledge of Cisco Security platforms working with clients. 
• Strong design and implementation ability in one of the following automation techniques: Ansible, Terraform, Python, Salt, Chef, and/or Puppet
• Understanding and experience of other Security platforms within hybrid-cloud environments within AWS, GCP, or Azure
• Design, implement, and manage Palo Alto Networks firewalls and security solutions.
• Configure and maintain Panorama for centralized management of Palo Alto firewalls.
• Deploy and manage Palo Alto SD-WAN solutions to ensure optimal network performance and security.
• Provide ongoing administration and support for Palo Alto firewalls, Panorama, and SD-WAN.
• Train and mentor junior network engineers on Palo Alto and SD-WAN technologies.
• Project Skills
• Must be familiar with a combination of Cisco's Security platforms (ISE, Secure Firewall, Secure Network/Cloud Analytics, SecureX, Cisco Secure Workload), combined with other industry leading 3rd party security solutions, value proposition, use cases, and ability to drive conversations around requirements and platform application.
• Must be knowledgeable of API/3rd party integrations
• Routing topologies in and out of legacy and next-gen networks
• Automation of common tasks and MACD operations with Ansible, Python, or other
• Great communication skills in both face to face and remote formats

Qualifications:

• 5 years of network and data center consulting experience
• 3 years of architecting or deploying Security platforms
• 2 years of experience building Azure or AWS hybrid cloud solutions
• 3 years of experience configuring and managing Palo Alto firewalls
• Strong understanding of Panorama for centralized management
• Experience with SD-WAN technologies
• 2 years of experience with common automation tools
• Python
• Terraform
• Ansible
• Octopus Deploy
• Other Preferred Skills
• Experience in large enterprise environments, specifically Health Care, Financial, and Manufacturing
• Experience in application and/or DevOps development
• Experience with automation and API development

Technical Skills:

• Technically and verbally demonstrate expert knowledge across the Cisco security stack
• Design and implement on-prem and cloud deployments
• Routing topologies in and out of DCs/Colos/Cloud platforms
• Dual or multi-cloud security design with Cisco Security platforms
• Automation of common tasks and MACD operations with Ansible, Python, or other
• Service Graphs and integration with LB and FW devices
• Consultative Skills
• Outstanding customer focus by driving for results and problem solving
• Great communication skills in both face to face and remote formats
• Customer focus thru credibility, reliability, and interactions
• Composure during challenging times
• Ability to gain a trusted advisor status with every client
• Architectural knowledge across the full Cisco Security stack
  • Cisco Secure Workload
  • Cisco Secure Firewall (FTD/FMS)
  • Cisco Secure Network/Cloud Analytics
  • Cisco Identity Services Engine (ISE)
  • Cisco SecureX
  • ThousendEYES (bonus)
  • Cisco DNA Center
  • Cisco ACI (bonus)
  • Cisco Application Dynamics (Bonus)
  • Cisco Duo
  • Cisco Secure Access (AnyConnect)
  • Cisco Secure Endpoint

Certifications:

• Palo Alto Networks Certified Network Security Engineer (PCNSE) or equivalent certification is highly desirable.
• Cisco CCNP/CCDP/CCIE Security
• Additional relevant certifications (CISSP) are a plus.