Back to Jobs

Network Security Engineer (NAC)

Remote, US
Full-TimeRemote, USOther

Job Description

We are looking for a Network Security Engineer with deep expertise in Network Access Control (NAC) to lead and support NAC implementations in complex enterprise environments. The ideal candidate will have extensive hands-on experience with Cisco Identity Services Engine (ISE) and a strong understanding of 802.1X, RADIUS, posture assessment, and endpoint profiling. This is a consulting-focused role that requires strong client-facing skills and the ability to design, implement, and troubleshoot NAC solutions in diverse network infrastructures.

Key Responsibilities

  • Lead the design, deployment, and operational support of NAC solutions, primarily using Cisco ISE.
  • Work with clients to develop access control policies, device profiling, posture assessments, and guest/BYOD workflows.
  • Configure and troubleshoot 802.1X, MAB, RADIUS, TACACS+, and integration with AD, PKI, and other identity stores.
  • Integrate NAC with other security tools such as firewalls, SIEMs, MDM solutions, and EPP/EDR platforms.
  • Provide strategic guidance to clients on NAC policy development, user segmentation, and zero trust principles.
  • Deliver documentation, runbooks, and knowledge transfer for ongoing client operations.
  • Support NAC assessments, policy refinement, and incident response scenarios where NAC plays a role.
  • Work in tandem with network, security, and desktop teams to ensure alignment across all access control layers.

Required Qualifications

  • 3+ years of experience implementing and managing Cisco ISE in enterprise environments.
  • Strong understanding of network security concepts including 802.1X, RADIUS, EAP-TLS, device profiling, and posture checks.
  • Experience integrating ISE with Active Directory, certificate authorities, and third-party MDM/SIEM tools.
  • Solid knowledge of LAN switching, VLANs, and network architecture required to support NAC deployments.
  • Familiarity with NAC in both wired and wireless environments, including Cisco Catalyst, Cisco WLC, or Meraki infrastructure.
  • Experience working in a consulting or MSP environment and managing multiple projects or clients.
  • Excellent communication skills, both written and verbal, for stakeholder engagement and documentation.

Preferred Qualifications

  • Experience with other NAC platforms such as Aruba ClearPass, Forescout, or Portnox.
  • Cisco certifications such as CCNP Security, Cisco ISE Specialist, or relevant NAC vendor certifications.
  • Understanding of Zero Trust Network Access (ZTNA) and how NAC fits into a modern segmentation and access strategy.
  • Experience with guest access portals, self-registration, and contractor device onboarding.