Cisco Network Security Engineer/ Senior Consultant
Job Description
At Deloitte Cyber, the Cisco Network Security Engineer / Senior Consultant role sits within our Enterprise Security practice, delivering design, deployment, and integration of Cisco security solutions across enterprise, cloud, and hybrid environments. This onsite opportunity in Tampa offers a competitive annual salary range of USD 105,400 to 207,800, with a career path that blends hands-on engineering, client collaboration, and strategic security design.
Responsibilities
- Design, deploy, and manage Cisco Firepower Threat Defense (FTD) and Firepower Management Center (FMC) across physical, virtual, and cloud deployments.
- Implement and support Cisco Identity Services Engine (ISE) capabilities, including 802.1X network access control, device profiling, guest lifecycle management, TrustSec segmentation, and integration with enterprise identity stores.
- Configure and tune advanced Cisco security features such as intrusion prevention system, malware protection, URL filtering, DNS-based security, Security Intelligence, and SSL/TLS decryption policies.
- Deploy and integrate Cisco Secure Firewall solutions in cloud environments (AWS, Azure, GCP), with centralized policy management and secure connectivity across hybrid infrastructures.
- Develop client-facing security architectures, integrate Cisco platforms with SIEM tools and automation solutions, and deliver recommendations aligned with technical requirements, compliance needs, and business objectives.
Requirements
- BA/BS degree in a technical field (e.g., Computer Science, Cyber Security, Information Technology) or equivalent work experience.
- CCNP Security or CCIE Security certification required.
- 5+ years of experience in network security engineering with Cisco security technologies.
- 5+ years designing, deploying, and managing Cisco Firepower Threat Defense (FTD) and Firepower Management Center (FMC) in enterprise environments, including physical appliances, virtual instances, and cloud-delivered Firewall Management Center (cdFMC).
- 5+ years designing and implementing Cisco Identity Services Engine (ISE), including distributed node architectures, high availability configurations, patch management, and upgrade planning.
- 3+ years of experience with Cisco Identity Services Engine (ISE) 802.1X Network Access Control (NAC), guest lifecycle management, profiling policies, TrustSec segmentation, and Cisco Firepower capabilities including IPS, malware protection, URL filtering, DNS-based security, SSL/TLS decryption, and cloud firewall deployments in AWS and Azure.
- Ability to travel up to 50%, on average, based on the work you do and the clients and industries you serve.
- Limited immigration sponsorship may be available.
Technologies
- Cisco Firepower Threat Defense (FTD), Firepower Management Center (FMC), Cisco Identity Services Engine (ISE)
- 802.1X Network Access Control, TrustSec, IPS, DNS-based security, SSL/TLS decryption
- Cisco Secure Firewall, AWS, Microsoft Azure, Google Cloud Platform (GCP)
- SIEM, REST APIs, Ansible, Terraform, Python
- Cisco Catalyst Center, SD-Access
The Team
Our Enterprise Security offering embeds security across digital transformation, securing a client’s technical backbone while enabling secure innovation. The practice encompasses security architecture, secure development and deployment, end-to-end cyber cloud capabilities, application security, and security for emerging technologies and connected products.