1. JOB DETAILS:

Job title:

Senior Network Engineer (Cisco Security & Network Infrastructure)

Full time - Permanent, onsite role

2. JOB PURPOSE:

The Senior Network Engineer will be responsible for designing, implementing, and managing secure, enterprise-grade network and security infrastructure across multiple sites. The role requires extensive hands-on expertise in Cisco security platforms, switching/routing, identity and access solutions, and collaboration with cross-functional Security, Cloud, and Infrastructure teams to ensure high availability, performance, and compliance.

3. KEY ACCOUNTABILITIES:

Description

1. Cisco Security & Access Control

• Deploy, configure, and manage Cisco ISE (AAA, NAC, 802.1X, profiling, posture, guest access).
• Administer Cisco Duo MFA policies, SSO integrations, and user onboarding.
• Configure Cisco Umbrella for DNS security, filtering, roaming clients, and policy control.
• Deploy and monitor Cisco Secure Endpoint (AMP), perform threat investigations and policy tuning.

2. Firewalls & Threat Defense

• Configure and maintain Cisco FTD firewalls using FMC (ACP, NAT, VPNs RA/S2S, IPS/IDS, HA).
• Conduct packet captures, connection analysis, log review, and troubleshooting.

3. Cisco Meraki

• Manage Meraki MX/MS/MR devices across multi-site networks.
• Configure templates, VLANs, L3 routing, SD-WAN, wireless profiles, and traffic shaping.
• Monitor and troubleshoot using Meraki Dashboard tools including logs and captures.

4. VPN & Connectivity

• Configure and troubleshoot Site-to-Site VPNs (IPsec, Meraki Auto-VPN, FTD/FMC).
• Manage Remote Access VPNs (AnyConnect with Duo MFA).
• Enhance tunnel reliability, redundancy, and performance.

5. Switching & Routing

• Strong CLI experience on Cisco Catalyst/Nexus switches.
• Configure VLANs, STP variants, EtherChannel/LACP, Inter-VLAN routing.
• Manage routing protocols including OSPF, EIGRP, and basic BGP.
• Conduct upgrades, backups, hardening, and template rollouts.

6. Active Directory & Identity Management

• Manage AD users, groups, OUs, GPO basics, and RBAC.
• Integrate AD with ISE, VPN, Duo, and network authentication policies.

7. General Responsibilities

• Lead troubleshooting for incidents, outages, and performance issues.
• Ensure network security compliance and best practices.
• Maintain documentation, SOPs, and network diagrams.
• Support new site build-outs and expansions.
• Drive automation and standardization initiatives.

4. COMMUNICATIONS & WORKING RELATIONSHIPS:

• Work closely with Security, Infrastructure, and Cloud teams.
• Coordinate with vendors, service providers, and support partners.
• Communicate technical issues clearly to non-technical stakeholders.

5. QUALIFICATIONS, EXPERIENCE & SKILLS:

Required

• 7+ years of solid hands-on experience in enterprise network engineering.
• Deep expertise in Cisco ISE, FTD/FMC, Meraki, Duo, Umbrella, Secure Endpoint.
• Strong Cisco CLI experience (switches/routers).
• Strong understanding of TCP/IP, DNS, DHCP, NAT, VPN, and routing protocols.
• Experience managing multi-site network environments.
• Active Directory user/group management experience.

Preferred

• Certifications: CCNP Security, CCNP Enterprise, CCNA or equivalent real-world expertise.
• Exposure to cloud networking (Azure/AWS).
• Understanding of SIEM, SOC operations, or incident response.

Soft Skills

• Excellent analytical and troubleshooting ability.
• Strong communication skills across technical and non-technical teams.
• Proactive, self-driven, and able to take ownership of complex tasks.
• Ability to work effectively in a fast-paced, dynamic environment.