Security Consultant – (Cisco ISE/DNAC)

About the Role

We are seeking a highly skilled and experienced Security Consultant to join our team. The ideal candidate will have expertise in designing, implementing, and managing advanced security solutions, with hands-on experience in Cisco ISE, FTD, Palo Alto Firewall, Cisco Secure Workload (Tetration), and Secure Network Analytics (StealthWatch). The role requires a deep understanding of network security, threat mitigation, and compliance frameworks.

Key Responsibilities

• Design, implement, and manage Cisco ISE for network access control and identity-based security policies.
• Deploy, configure, and optimize Cisco Firepower Threat Defense (FTD) solutions to enhance perimeter security.
• Manage and maintain Palo Alto Firewalls, including policy creation, threat prevention, and logging.
• Cisco SD-Access & Catalyst Center (DNAC) Experience – Supports DNAC automation, SD-Access fabric deployment, and troubleshooting, including greenfield/brownfield deployments, fabric builds, and endpoint onboarding.
• Implement and optimize Cisco Secure Workload (Tetration) for workload protection, micro-segmentation, and policy enforcement.
• Utilize Cisco Secure Network Analytics (StealthWatch) for network traffic analysis, anomaly detection, and threat response.
• Conduct security assessments and provide recommendations to improve network security posture.
• Collaborate with IT teams to design security architectures that align with business needs and regulatory requirements.
• Perform incident detection, response, and forensic analysis to mitigate security threats.
• Document security policies, procedures, and configurations for compliance and operational efficiency.

Basic Qualifications

• B. Tech / B.E. in computers or master's degree in computer science.
• Hands-on expertise with Cisco ISE, Cisco SD-Access & Catalyst Center (DNAC).
• Proven experience in network security consulting, design, and implementation.
• Hands-on expertise with Cisco ISE/DNAC, FTD, Palo Alto Firewall, Tetration, and StealthWatch.
• Strong knowledge of firewall policies, VPNs, IDS/IPS, and threat intelligence.
• Understanding of zero-trust architecture, micro-segmentation, and endpoint security.

Preferred Qualifications

• Excellent troubleshooting, analytical, and problem-solving skills.
• Strong communication and client-facing skills.
• Certifications such as CISSP, CCNP Security, PCNSE, or equivalent are preferred.
• Familiarity with industry standards and frameworks such as ISO 27001, NIST, CIS Controls, and GDPR will be added advantage.
• Excellent communication and leadership skills.
• Strong analytical and problem-solving abilities.