About the position
Arthur Grand Technologies is currently seeking a highly motivated and skilled Network ForeScout Engineer for one of our clients. The Network Engineering and access control will contribute to the overall strategic vision of the agency to analyze requirements, design/test solutions and deploy into production. The network engineer will perform duties/tasks specifically related to engineering of Forescout eyeSight/Control, eyeRecover (High Availability – Resiliency), and virtual appliances in an AWS VPC, Wireless LAN (WLAN), and Adaptive Security Appliance (ASA). The candidate will provide policy management and control platforms for wired, wireless, and VPN users. Forescout is currently used for 802.1X authentication and Network Access Controls across all mediums utilizing the 802.1X framework/ AnyConnect is currently deployed for VPN access. Create policies and profiling network devices that govern what type of access and devices are allowed on our network. Create roles and personas that govern what user and service accounts may access and what actions a user may perform. Develop and administer a NAC reporting portal, Role based access control administration. Design and deploy functional networks (LAN, WLAN, WAN). Resolving issues that tiers of support have escalated. Mentoring team members and addressing user needs. Excellent problem-solving skills and thorough knowledge of network administration and architecture. Monitor network performance and integrity. Work directly with customer and cross functional teams to design, develop and implement a NAC solution for endpoint security. Author enterprise compliance standards and networking architecture. Collaborate with Technical SMEs and vendor relations. Log interpretation for audit, compliance, risk, and security teams. Playbook development to support at arm’s length Security Intelligence Center monitoring. Audit artifact collection and representation for security constructs supporting all network device assets and management systems. Create and/or maintain standards documentation, design documentation/templates/ topology diagrams and workflow documents.
Responsibilities
- Analyze requirements, design/test solutions and deploy into production.
- Engineer Forescout eyeSight/Control, eyeRecover, and virtual appliances in an AWS VPC.
- Provide policy management and control platforms for wired, wireless, and VPN users.
- Create policies and profiling network devices for access control.
- Create roles and personas for user and service account access.
- Develop and administer a NAC reporting portal.
- Design and deploy functional networks (LAN, WLAN, WAN).
- Resolve issues escalated by support tiers.
- Mentor team members and address user needs.
- Monitor network performance and integrity.
- Work with customers and cross-functional teams to implement NAC solutions.
- Author enterprise compliance standards and networking architecture.
- Collaborate with Technical SMEs and vendor relations.
- Interpret logs for audit, compliance, risk, and security teams.
- Develop playbooks for Security Intelligence Center monitoring.
- Collect and represent audit artifacts for security constructs.
- Create and maintain standards documentation and workflow documents.
Requirements
- A minimum of 8 years of professional full-time experience as a Network Engineer.
- At least 3 years of professional full-time experience with Forescout.
- Strong to advanced knowledge of Forescout eyeSight/Control, eyeRecover, and virtual appliances in an AWS VPC.
- Strong knowledge of Network Access Control (NAC) and network architecture and protocols.
- Understanding of multi-tiered application traffic flow, server load balancing, global load balancing, and routing.
- Operational experience with network platform technologies, including hardware refresh, software testing, software upgrades, and complex troubleshooting techniques.
- High level experience with Cisco switches and ACLs.
- Experience in leading, troubleshooting, and maintenance efforts for Forescout.
- Superior consultative skills both verbal and written.
Nice-to-haves
- Over 8 years of professional Cisco network engineering and architecture experience.
- Forescout certification.
- Ability to lead and mentor others.
