Overview
Hello Potential Bravo Associate!
We provide professional and managed services for several customers, and we are looking for a solid individual to start with us to support our infrastructure and security practice. We are looking for a network security consultant in order to lead some really great account engagements for our enterprise customers. This position has the option of home/remote office available for flexibility.
We need quality engineers that are fantastic communicators with a customer focus - and of course a fun individual to join the team. The culture of Bravo and the experiences from our end users is based on the quality of the resources that are on board. If you want to grow your career quickly with a great group of people in an organization undergoing tremendous growth, please review the details below.
Role and Responsibilities
- Occasionally work with pre-sales to confirm the scope of engagements and associated level of effort to meet customer requirements.
- Work with customers to design security architectures that support their future scalability and availability requirements.
- Work with customer and project managers to address project timelines and milestones to drive successful project closure.
- Implement technologies based on statement of work and in conjunction with the customer requirements (e.g., Firewalls, Network Access Control, Macro and Micro-Segmentation, Advanced Threat Protection Solutions, NetFlow Security Solutions, etc.)
- Provide Level-2/3 support and troubleshooting to resolve client issues as needed.
- Work with vendors and other IT personnel for problem resolution as needed.
- Provide knowledge transfer and informal training to clients and co-workers.
Requirements
- Ability to lead projects from kickoff to completion and manage multiple personalities within the project. This is a consulting position, so soft skills are very important to your success in this role.
- Excellent communication in all forms (verbal and written), time management skills, prioritization, problem solving, and decision-making skills is a non-negotiable for this position.
- Must be able to work within the bounds of a Statement of Work (SOW)
- Expert level hands on experience with Cisco’s Identity Service Engine (ISE) platform to enforce security strategy and endpoint compliance in an 802.1x environment
- Ability to architect and analyze ISE policy and rules to comply with network security policies and meet customer security objectives.
- Experience with supplicant clients such as Cisco AnyConnect modules such as NAM, Posture, VPN and, Microsoft’s native supplicant.
- Experience with TrustSec design (classification) and implementation (propagation and enforcement) in separate domains (wired, wireless, firewall, etc.)
- Experience on Microsoft Private Key Infrastructure (PKI) / Certificate Authority and certificate lifecycle management.
- Experience securing wireless networks via ISE and Cisco Wireless LAN Controllers (AireOs and Cat9800) integration.
- Experience assessing, designing and deploying Cisco Secure Firewall solution (migrating from ASA to FTD, S2S and RAVPN deployments, integration with ISE, etc.) using Secure Management Center (SMC) or Firepower Device Manager (FDM).
- Must be willing to keep up with the trends in the market and learn new technologies. You will be required to learn Cisco Catalyst Center (formerly known as DNA Center) within the first 6 months of employment.
- Must encompass security into all aspects of engagement, from design requirements to implementation to handover.
- The ability to move up the “trust ladder” with customers by quickly gaining the respect and confidence of end users by consistently delivering a high-quality experience during the project.
- Strong analytical ability to troubleshoot and resolve a large variety of technical issues.
- Ability to effectively manage multiple simultaneous technical activities.
- Previous experience as a technical consultant at a value-added reseller or systems integrator.
Desired Experience
- CCNP Security (Core with an ISE or Firewall concentration), or equivalent demonstratable experience. CCIE Security is a plus.
- Experience assessing, designing, and deployment Cisco Umbrella solution (DNS security and SIG) is a plus.
- Experience assessing, designing, and deployment Cisco SDA is a plus
- Intermediate level understanding of standard routing protocols (RIP, OSPF, EIGRP, and BGP).
- Experience assessing, designing, and deployment Cisco SD-WAN is a plus
Minimum Requirements
3-5 years experience designing, implementing, and administering security solutions with some of the following vendors/technologies:
- Network Access Control: Cisco ISE, ClearPass
- Network Segmentation: Cisco TrustSec
- Firewalls: Cisco ASA and Secure Firewall
- Strong Authentication and MFA (Duo, SAML, Ping, Microsoft PKI).
- Mobile Device Management/EMM Tools: Intune, JAMF, etc.
Job Type: Full-time
Pay: $120,000.00 - $220,000.00 per year
Benefits:
- 401(k)
- 401(k) matching
- Dental insurance
- Flexible schedule
- Health insurance
- Paid time off
- Professional development assistance
- Vision insurance
Experience level:
Schedule:
Experience:
- Network security: 3 years (Required)
- Network Engineering: 2 years (Preferred)
- Cisco SD-Access: 1 year (Preferred)
- Security Architect: 2 years (Preferred)
- Security Consulting for a VAR or SI: 2 years (Required)
- Cisco ISE Deployment (Not just administration): 2 years (Required)
License/Certification:
- CCNA Security (Preferred)
- CCIE (Preferred)
- CISSP (Preferred)
Work Location: Remote