Cisco Security Engineer

Air InfoSecColumbia, SC
2dOnsite

About The Position

The Cisco Security Engineer</b> will support the South Carolina Judicial Branch (SCJB) in migrating from Cisco Secure Internet Gateway (Umbrella) to Cisco Secure Service Edge (SSE) solutions. This role is responsible for designing, implementing, and managing secure access policies while maintaining support for existing systems and business requirements during the transition. The engineer will serve as a subject matter expert in Cisco Web Secure Access and Secure Internet Access technologies. The position requires close collaboration with Security, IT, and business stakeholders to test, validate, and ensure continuity of security protections across platforms.

Requirements

  • 3 years of experience monitoring and analyzing existing rules and converting them into least -privilege rules for private and web policies.
  • 3 years of experience deploying and administering Cisco Secure Firewall for remote access and IPSEC -based VPN.
  • 3 years of experience with Cisco endpoint web filtering technologies or similar technologies (e.g., Palo Alto, Checkpoint, Fortinet).
  • 2 years of experience deploying ZTNA or SASE tools.
  • Ability to communicate and coordinate effectively with IT and business stakeholders.
  • Ability to train IT staff for ongoing product administration.

Nice To Haves

  • Previous deployment experience with Cisco SSE and ZTNA architecture and products, or similar solutions from other vendors.
  • Experience with Cisco SecureX, Secure Endpoint, and Cisco Secure Client.
  • Experience administering Cisco Secure Access.
  • Experience administering Cisco Umbrella, including Secure Internet Gateway products.
  • Experience designing, implementing, and managing Secure Access in support of enterprise security strategies.
  • Experience deploying Cisco Remote Access VPN solutions on Cisco ASA.
  • Experience administering and interfacing with Check Point firewalls.
  • CCNP Security certification.
  • CCNP Routing and Switching certification.
  • CCSP certification.

Responsibilities

  • Lead the migration of Cisco Umbrella Secure Internet Gateway (SIG) policies, users, and devices to Cisco SSE solutions.
  • Design, implement, and manage secure access policies aligned with enterprise security strategies.
  • Deploy, administer, and support Cisco ASA, Cisco Secure Firewall, and Cisco Secure Access products.
  • Document existing firewall and web security policies and convert them into least -privilege rules.
  • Configure and deploy web filtering rules to replicate current access permissions on the new platform.
  • Support deployment of remote access VPN and ZTNA -based access solutions for end users.
  • Monitor and analyze existing security rules and optimize private and web policy configurations.
  • Collaborate with Security, IT, and business stakeholders to test and validate migrated policies.
  • Provide knowledge transfer and training to IT staff for ongoing system administration.

Benefits

  • Health Care:
  • Air InfoSec offers an Individual Coverage Health Reimbursement Arrangement (ICHRA), providing up to $350/month in tax -free reimbursements to help cover the cost of your own health insurance premium. This gives you the flexibility to choose the plan that works best for you and your family.
  • Paid Time Off (PTO):
  • 1 hour of PTO earned for every 20 hours worked.
  • Can carryover up to 5 days of PTO to the next calendar year.
  • Holidays:
  • 5 paid state holidays (annually)
  • 2 paid floating holidays (annually)
  • Continuing Education:
  • $100 per year to apply towards annual certification fees or educational training.
© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service