Cisco ISE Engineer

Job Title: Cisco ISE Engineer Location: Kansas City, KS Duration: Contract Required Skills: Design and architect scalable Cisco ISE deployments, considering factors such as high availability, redundancy, and performance optimization Develop detailed network diagrams, including physical and logical topologies, for Cisco ISE deployments Configure Cisco ISE nodes, personas (Administration, Policy Service, and Monitoring), and services (Authentication, Authorization, and Accounting). Implement identity sources such as Active Directory, Lightweight Directory Access Protocol (LDAP), and external RADIUS servers for user authentication Create and customize authentication and authorization policies using Cisco ISE Policy Sets, Policy Elements, and Policy Conditions Configure Cisco ISE Profiler policies to classify and enforce access controls based on device types and attributes Integrate Cisco ISE with Cisco switches (e.g., Catalyst, Nexus) using IEEE 802.1X, Cisco TrustSec, and Cisco AnyConnect for secure network access Implement Cisco ISE pxGrid integration with third-party security products for real-time threat detection and response Troubleshooting skills on Cisco ISE to resolve authentication and authorization issues Implement Cisco ISE Posture Assessment policies to enforce endpoint security compliance with organizational policies and industry standards (e.g., HIPAA, PCI DSS). Should be able to configure Cisco ISE Guest Services to provide secure guest access with self-registration, sponsor approval workflows, and captive portal authentication. Document Cisco ISE deployment configurations, including network device profiles, identity stores, authentication and authorization policies, and posture assessment rules Perform Cisco ISE software upgrades, patches, and hotfix installation per Cisco recommendations Developer. Support and manage the Cisco Platforms: CyberVision, StealthWatch and ISE for NAC. Job Type: Contract Work Location: In person