L2 Network Security Engineer - Cisco ISE
Posted on: 26/11/2025
Job Description
Job Title : L2 Network Security Engineer (TAC Executive)
Department : Network & Security Operations / Technical Assistance Center (TAC)
Location : Noida
Experience Required : 4- 5 Years
Reports To : L3 Engineer / TAC Lead / Service Delivery Manager
Job Purpose :
The L2 Network Security Engineer will be responsible for handling escalated support cases related to Cisco Firepower Threat Defense (FTD), Firepower Management Center (FMC), and Cisco Identity Services Engine (ISE). The role involves providing advanced troubleshooting, configuration support, and ensuring resolution of security-related incidents within defined SLAs.
Key Responsibilities :
- Handle L2-level incidents and requests related to Cisco security infrastructure FTD, FMC, and ISE.
- Perform advanced troubleshooting of firewall policies, NAT, VPN, routing, and IPS-related issues.
- Manage and monitor Cisco FTD/FMC for intrusion events, security alerts, and policy configurations.
- Support and maintain Cisco ISE for authentication, authorization, and accounting (AAA) services.
- Coordinate with L3/TAC/OEM for complex issue escalations and bug analysis.
- Assist in deployment, configuration, and upgrade activities for Cisco security devices.
- Perform root cause analysis (RCA) and provide preventive recommendations.
- Maintain documentation of network configurations, change requests, and incident resolutions.
- Ensure all activities adhere to defined SLAs and security compliance standards.
- Provide technical assistance during change windows and planned maintenance activities.
- Participate in 24x7 rotational support, if required.
Technical Skills Required :
Strong working knowledge of :
- Cisco FTD (Firepower Threat Defense) setup, policies, NAT, VPN, and troubleshooting.
- FMC (Firepower Management Center) event analysis, rule management, and reporting.
- Cisco ISE (Identity Services Engine) policy configuration, profiling, posture, and TACACS/RADIUS.
- Good understanding of network protocols (TCP/IP, VLANs, OSPF, BGP, VPNs, DHCP, DNS).
- Familiar with security concepts: IPS/IDS, URL filtering, SSL decryption, access control, and threat management.
- Experience with packet capture tools (Wireshark, SPAN, etc.) and log analysis.
- Exposure to multi-vendor security solutions (Fortinet, Palo Alto, Check Point) added advantage.
- Knowledge of ITIL processes for incident/change/problem management.
Qualifications :
- Bachelors Degree in Computer Science, IT, Electronics, or related field.
- Cisco certifications preferred : CCNP Security, CCNP Enterprise, or relevant specialization.
- Additional certifications (e.g., CEH, PCNSE, Fortinet NSE) are a plus.
Soft Skills :
- Strong analytical and problem-solving skills.
- Good communication and documentation abilities.
- Ability to work independently and within a team under pressure.
- Customer-oriented approach with attention to detail
Did you find something suspicious?
Posted By
16
Posted in
CyberSecurity
Functional Area
IT Security
Job Code
1580791
