We have an opportunity for a Sr. Network Infrastructure Security Engineer to support our client with NAC upgrade solutions.
Position Overview
We are seeking an experienced and highly skilled Senior Network Infrastructure Security Engineer to lead the implementation, maintenance, and continuous enhancement of Network Access Control (NAC) solutions within our large-scale banking environment. This senior-level role requires a deep understanding of network security architecture, NAC technologies, and regulatory compliance in the financial sector. You will be responsible for overseeing the design and integration of advanced NAC solutions such as Cisco Client, ForeScout, and Aruba ClearPass, ensuring they align with the organization's security goals and enforce strict access policies. As part of a dynamic security team, you will drive efforts to protect sensitive data, maintain secure access, and meet industry standards.
Key Responsibilities :
- Lead NAC Solution Implementation & Optimization :
Lead the strategic design, implementation, and optimization of NAC solutions, ensuring they provide secure, policy-driven access to the network for users, devices, and applications.
Oversee the deployment, configuration, and management of NAC technologies (e.g., Cisco Client, ForeScout, Aruba ClearPass) to enhance network access security and efficiency.Ensure the seamless integration of NAC systems with existing network security tools such as firewalls, VPNs, intrusion detection / prevention systems (IDS / IPS), and security information and event management (SIEM) platforms.Access Policy Leadership :Develop and enforce robust network access policies, tailored to specific user roles, device types, locations, and compliance needs, particularly within the banking and financial services industry.
Lead efforts to enforce Zero Trust architecture principles, leveraging NAC to ensure only authenticated and authorized devices gain access to sensitive systems.Provide thought leadership on evolving access control policies, including managing policies for BYOD, guest access, and other specialized scenarios.Cross-Functional Collaboration & Security Architecture Integration :Work closely with other senior network, security, and compliance teams to design and implement integrated access control solutions across the organization's network infrastructure.
Lead the integration of NAC systems with security infrastructure, ensuring alignment with other security initiatives and threat intelligence platforms.Ensure NAC solutions and access control mechanisms adhere to industry compliance standards such as PCI-DSS, SOX, GDPR, and other relevant banking regulations.Incident Response & Advanced Troubleshooting :Take a lead role in investigating and resolving complex network access incidents, providing expertise to address unauthorized access or security vulnerabilities quickly.
Conduct advanced troubleshooting for access-related issues, working with network and security teams to remediate access violations, secure devices, and maintain operational continuity.Provide expertise during security events, ensuring proper isolation of compromised devices and ensuring rapid recovery in line with security protocols.Security Auditing & Compliance Leadership :Oversee and manage the auditing process for NAC solutions, ensuring that access policies are in line with compliance frameworks and regulations.
Lead internal audits and work with external auditors to assess the effectiveness of NAC systems and associated policies.Review network access logs, generate reports, and provide recommendations for improvements to meet security and compliance standards.Mentorship & Knowledge Sharing :Mentor and guide junior engineers and security analysts on NAC best practices, troubleshooting, and the integration of access control solutions.
Lead training sessions on the latest NAC technologies and security threats, promoting a culture of continuous learning within the team.Collaborate with peers to drive the adoption of security technologies and practices across the organization, contributing to the organization's broader security posture.Continuous Improvement & Strategic Initiatives :Lead efforts to continually assess and upgrade NAC systems, ensuring they remain effective in protecting the organization's network while supporting the dynamic needs of the business.
Evaluate and recommend emerging NAC technologies and industry best practices to improve security, reduce risks, and drive operational efficiency.Participate in the development of long-term network security strategies and roadmap, aligning NAC initiatives with the organization's evolving security needs. Qualifications :Education : Bachelor's degree in Computer Science, Information Security, Network Engineering, or a related field (or equivalent experience). A Master's degree is a plus.Certifications :Cisco Certified Network Professional (CCNP) or higher, especially in Security.
Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or Certified Network Security Professional (CNSP).Vendor-specific certifications such as Cisco Identity Services Engine (Client) or Aruba ClearPass are highly desirable.Experience :10 years of experience in network security engineering with a strong emphasis on NAC solutions, network architecture, and security policy management.
Extensive hands-on experience with Cisco Client and other NAC technologies in large, complex, and regulated environments.Proven experience leading the implementation, upgrade, and optimization of NAC systems within large enterprises or highly regulated industries like banking.Strong understanding of 802.1X, RADIUS, VPNs, firewalls, IDS / IPS, and network segmentation techniques.Skills :In-depth expertise in designing and managing NAC systems and access control policies for secure network operations.
Strong understanding of security protocols, including 802.1X, RADIUS, and VPN technologies, as well as integration with network security infrastructure.Excellent troubleshooting skills, with a demonstrated ability to resolve complex network access and security incidents quickly and effectively.Strong leadership, communication, and collaboration skills, with the ability to influence and drive change across cross-functional teams.Expertise in network security compliance frameworks (PCI-DSS, SOX, GDPR) and experience with banking and financial services regulations. Additional Attributes :Proven track record of successfully leading large-scale network security initiatives within highly regulated environments, particularly in the banking or financial sector.Proactive approach to security, with a keen understanding of emerging threats and network access risks.Ability to work in a fast-paced, high-pressure environment while maintaining a focus on security and compliance.A passion for continuous learning and keeping up with the latest network security technologies and industry trends.
