Cisco Security Engineer

About The Position

Requirements

• 3 years of experience monitoring and analyzing existing rules and converting them into least -privilege rules for private and web policies.
• 3 years of experience deploying and administering Cisco Secure Firewall for remote access and IPSEC -based VPN.
• 3 years of experience with Cisco endpoint web filtering technologies or similar technologies (e.g., Palo Alto, Checkpoint, Fortinet).
• 2 years of experience deploying ZTNA or SASE tools.
• Ability to communicate and coordinate effectively with IT and business stakeholders.
• Ability to train IT staff for ongoing product administration.

Nice To Haves

• Previous deployment experience with Cisco SSE and ZTNA architecture and products, or similar solutions from other vendors.
• Experience with Cisco SecureX, Secure Endpoint, and Cisco Secure Client.
• Experience administering Cisco Secure Access.
• Experience administering Cisco Umbrella, including Secure Internet Gateway products.
• Experience designing, implementing, and managing Secure Access in support of enterprise security strategies.
• Experience deploying Cisco Remote Access VPN solutions on Cisco ASA.
• Experience administering and interfacing with Check Point firewalls.
• CCNP Security certification.
• CCNP Routing and Switching certification.
• CCSP certification.

Responsibilities

• Lead the migration of Cisco Umbrella Secure Internet Gateway (SIG) policies, users, and devices to Cisco SSE solutions.
• Design, implement, and manage secure access policies aligned with enterprise security strategies.
• Deploy, administer, and support Cisco ASA, Cisco Secure Firewall, and Cisco Secure Access products.
• Document existing firewall and web security policies and convert them into least -privilege rules.
• Configure and deploy web filtering rules to replicate current access permissions on the new platform.
• Support deployment of remote access VPN and ZTNA -based access solutions for end users.
• Monitor and analyze existing security rules and optimize private and web policy configurations.
• Collaborate with Security, IT, and business stakeholders to test and validate migrated policies.
• Provide knowledge transfer and training to IT staff for ongoing system administration.

Benefits

• Health Care:
• Air InfoSec offers an Individual Coverage Health Reimbursement Arrangement (ICHRA), providing up to $350/month in tax -free reimbursements to help cover the cost of your own health insurance premium. This gives you the flexibility to choose the plan that works best for you and your family.
• Paid Time Off (PTO):
• 1 hour of PTO earned for every 20 hours worked.
• Can carryover up to 5 days of PTO to the next calendar year.
• Holidays:
• 5 paid state holidays (annually)
• 2 paid floating holidays (annually)
• Continuing Education:
• $100 per year to apply towards annual certification fees or educational training.