Network Security Engineer (NAC)

We are looking for a Network Security Engineer with deep expertise in Network Access Control (NAC) to lead and support NAC implementations in complex enterprise environments. The ideal candidate will have extensive hands-on experience with Cisco Identity Services Engine (ISE) and a strong understanding of 802.1X RADIUS posture assessment and endpoint profiling. This is a consulting-focused role that requires strong client-facing skills and the ability to design implement and troubleshoot NAC solutions in diverse network infrastructures.

Key Responsibilities:

• Lead the design deployment and operational support of NAC solutions primarily using Cisco ISE .

• Work with clients to develop access control policies device profiling posture assessments and guest/BYOD workflows.

• Configure and troubleshoot 802.1X MAB RADIUS TACACS+ and integration with AD PKI and other identity stores.

• Integrate NAC with other security tools such as firewalls SIEMs MDM solutions and EPP/EDR platforms .

• Provide strategic guidance to clients on NAC policy development user segmentation and zero trust principles.

• Deliver documentation runbooks and knowledge transfer for ongoing client operations.

• Support NAC assessments policy refinement and incident response scenarios where NAC plays a role.

• Work in tandem with network security and desktop teams to ensure alignment across all access control layers.

Required Qualifications:

• 3+ years of experience implementing and managing Cisco ISE in enterprise environments.

• Strong understanding of network security concepts including 802.1X RADIUS EAP-TLS device profiling and posture checks.

• Experience integrating ISE with Active Directory certificate authorities and third-party MDM/SIEM tools.

• Solid knowledge of LAN switching VLANs and network architecture required to support NAC deployments.

• Familiarity with NAC in both wired and wireless environments including Cisco Catalyst Cisco WLC or Meraki infrastructure.

• Experience working in a consulting or MSP environment and managing multiple projects or clients.

• Excellent communication skills both written and verbal for stakeholder engagement and documentation.

Preferred Qualifications:

• Experience with other NAC platforms such as Aruba ClearPass Forescout or Portnox .

• Cisco certifications such as CCNP Security Cisco ISE Specialist or relevant NAC vendor certifications .

• Understanding of Zero Trust Network Access (ZTNA) and how NAC fits into a modern segmentation and access strategy.

• Experience with guest access portals self-registration and contractor device onboarding .