Key skills
Cisco Identity Services Engine (ISE)Armis Agentless Device Security PlatformJuniperRuckusArubaCisco switchesPalo Alto FirewallPanoramaEnterprise wireless solutionsLAN/WAN technologiesVMwareLinuxWindows ServerEnterprise storage systemsNetwork Access Control (NAC)Profiling services configuration and managementPosture policy development and implementationNetwork authentication protocols 802.1xNetwork authentication protocols RADIUSNetwork authentication protocols TACACS+Network authentication protocols MACSECSwitches and routers configuration and troubleshootingDoD 8570 IAT Level II certificationActive DirectoryLeadershipChange ManagementCollaboration
About this role
Core4ce is a team of innovators, self-starters, and critical thinkers—driven by a shared mission to strengthen national security and advance warfighting outcomes. The primary responsibility of the Comply to Connect (C2C) Network Engineer SME is to plan, design, deploy, and support a mission-critical project for the Cisco Identity Services Engine (ISE) and Armis Agentless Device Security Platform.
Responsibilities:
- Collaboration: Participate in planning meetings to recommend technical and cost-effective network solutions meeting capacity, scalability, and performance needs
- Change Control: Follow change management policies and procedures, including documentation, submission, review, and participation in weekly change meetings
- Documentation: Maintain documentation for projects, configurations, and incidents for reference by team members and management
- Incident and Request Management: Complete all incidents and service requests within organizational SLTs and SLAs
- Knowledge Sharing: Share technical and non-technical knowledge with team members formally and informally to strengthen team skillsets
- Personal Development: Pursue ongoing technical and professional development through certifications, training, and conferences
- Project Support and Leadership: Serve as project lead or technical resource for Enterprise Network Engineering team initiatives
- Status Reporting: Provide periodic status updates to management and during team meetings
- Network Access Control (NAC) Projects: Design, plan, deploy, upgrade, and support Cisco ISE and Armis solutions for wired and wireless networks
- Network Infrastructure Support: Support network architecture, investigate performance and configuration issues, and collaborate with application teams to resolve system-level concerns
- Network Administration: Perform installation, configuration, backup, and maintenance for network systems ensuring continued stability and performance
- Monitoring and Optimization: Monitor, troubleshoot, and optimize deployed network systems; provide detailed root cause analyses and recommendations
- Security: Partner with the Enterprise Security Architecture team to design, implement, and maintain compliance with organizational security requirements
- Technical System Support: Work with Enterprise Network Engineering and Architecture teams to implement and maintain enterprise network infrastructure; assist with capacity planning, system architecture, and issue resolution
- Perform system administration tasks for C2C infrastructure, including operations, sustainment, troubleshooting, and maintaining security posture
- Manage ISE configuration, endpoint compliance, and policy enforcement to ensure users and devices meet Cisco ISE security requirements before gaining network access
- Provide resolution for issues impacting the C2C solution and supporting infrastructure
- Review, analyze, test, and implement vendor patches, upgrades, and configuration changes
- Provision and manage PKI certificates on servers
- Assist with platform and software upgrades, ensuring smooth implementation and appropriate capacity
- Support C2C/ISE system testing prior to upgrades to ensure transparency and minimal disruption
Requirements:
- Must report in person to the job site due to CLASSIFIED network access requirements; 2-3 times per week
- Must be able to obtain and maintain a Top Secret (TS) Security Clearance
- Must hold DoD 8570 IAT Level II certification (e.g., Security+ CE)
- SME-level proficiency configuring and managing profiling services to identify and categorize endpoints
- SME-level experience developing and implementing posture policies to enforce compliance
- SME-level ability to troubleshoot profiling, posture assessments, and compliance issues
- SME-level understanding of ISE's profiling dictionaries for accurate device classification
- 8+ years of experience with Cisco ISE or comparable NAC solutions (e.g., Forescout), network platforms: Cisco, Juniper, Brocade/Ruckus, Active Directory, and firewalls in production environments
- 6+ years of experience with network authentication protocols (802.1x, RADIUS, TACACS+, MACSEC)
- 8+ years of experience configuring and troubleshooting switches, routers, and Layer 2 technologies
- Bachelor's degree in computer science, Information Systems, or IT with 5+ years of experience, or 8+ years of directly related experience
- 8570 Compliant / CCNA OS certification