Cisco Security Engineer

Cisco Security Engineer

Job Description

For an upcoming project, the client seeks an engineer with experience using Cisco Secure Internet Gateway/ Cisco Web Secure Access (Umbrella) to Cisco’s SSE suite. This person would be responsible for migration of existing Secure Internet Gateway policies, users, and devices into SSE while maintaining support for existing systems and their business requirements.

The Cisco Security Engineer will be responsible for designing, implementing, and managing secure access policies to support enterprise security strategies. They must be able to serve as a subject matter expert on Cisco Web Secure Access, including Secure Internet Gateway and with Secure Internet Access. This role requires collaboration with Security, IT, and business stakeholders to test and validate migrated policies to ensure that existing security protections are maintained on the new platform.

Job Duties:
This engineer will be responsible for deploying, administering and supporting Cisco ASA, Cisco Secure Firewall, and Cisco Secure Access products to document existing policies and to migrating existing policies. This includes migrating existing Umbrella SIG policy to Secure Access, deployment of web filtering rules to replicate currently permitted access, and to assist in deployment of remote access VPN and ZTNA-based access for end users.

Must Have/Required Skills:
3+ years of experience monitoring and analyzing existing rules and converting them into least-privilege rules for both private and web policies
3+ years of experience deploying and administering Cisco Secure Firewall for remote access and IPSEC-based VPN
3+ years of experience with Cisco endpoint web filtering technologies or similar technologies (Palo Alto, Checkpoint, Fortinet)
2+ years of experience deploying ZTNA or SASE tools

Preferred/Nice to Have Skills:
Previous deployment experience with Cisco SSE and ZTNA architecture and products, or similar experience with other vendors
Experience with Cisco SecureX, Secure Endpoint, and the Cisco Secure Client
Experience administering Cisco Secure Access
Experience administering Cisco Umbrella including Secure Internet Gateway products
Experience designing, implementing, and managing Secure Access to support enterprise security strategies.
Experience deploying Cisco Remote Access VPN solutions on Cisco’s ASA platform
Experience administering and interfacing with Check Point firewalls

Preferred Education and/or Certifications:
CCNP Security
CCNP Routing and Switching
CCSP

Additional Skills:
Ability to communicate and coordinate with identified IT and business stakeholders
Ability to train IT staff for ongoing administration of the product

Notes:
Role is fully onsite (some flexibility to remote work can be discussed after 30 days in the role)

VIVA is an equal opportunity employer. All qualified applicants have an equal opportunity for placement, and all employees have an equal opportunity to develop on the job. This means that VIVA will not discriminate against any employee or qualified applicant on the basis of race, color, religion, sex, sexual orientation, gender identity, national origin, disability or protected veteran status.