Enterprise Network & Security Consultant - Cisco ACI (10-12 yrs)

Job Description :

We are seeking an experienced Enterprise Network and Security Consultant to design, implement, and optimize enterprise-grade networking and security solutions.

The ideal candidate will have expertise in Cisco ACI (Data Center CCIE level), Network Detection & Response (NDR), and Intrusion Prevention System (IPS).

This role requires hands-on experience in data center networking, security architectures, and advanced threat detection technologies to ensure a secure and resilient IT infrastructure.

Key Responsibilities :

Network Infrastructure & Data Center :

- Design, deploy, and manage Cisco ACI fabric for data center environments.

- Implement and troubleshoot ACI policies, contracts, VRFs, and endpoint groups (EPGs).

- Integrate ACI with third-party security and monitoring tools.

- Lead ACI migration projects, including brownfield to greenfield deployments.

- Ensure compliance with best practices for data center security, segmentation, and automation.

Network Security & Threat Detection :

- Deploy and configure NDR solutions for network threat detection. (Ex: Vectra, TrendMicro).

- Analyze network traffic to detect lateral movement, ransomware, and hidden threats.

- Fine-tune detection policies and automate threat response using SIEM and SOAR integrations.

Conduct threat-hunting exercises :

- Collaborate with SOC teams to enhance real-time threat detection and incident response.

- Intrusion Prevention & Network Security.

- Deploy and manage IPS for real-time threat prevention. (Ex: TrendMicro).

- Configure IPS policies, custom signatures, and threat intelligence feeds for proactive defense.

- Integrate IPS with firewalls, SIEMs, and security analytics platforms.

- Perform network traffic analysis to fine-tune IPS rules and reduce false positives.

- Ensure zero-day exploit protection and enhance security postures against network-based attacks.

Additional Responsibilities :

- Conduct network and security assessments to identify vulnerabilities and recommend mitigations.

- Provide technical leadership and guidance to internal teams and clients.

- Document network/security architectures and develop best practices.

- Stay updated with emerging cybersecurity threats and industry trends.

- Work closely with vendors and technology partners for solution enhancements.

Qualifications & Experience :

- 10+ years of experience in Enterprise Networking & Security.

- Cisco CCIE (Data Center) or CCNP with strong ACI experience is preferred.

- Hands-on experience with NDR for network-based threat detection.

- Expertise in IPS or similar IPS solutions.

- Strong knowledge of Zero Trust Architecture, network segmentation, and secure networking best practices.

- Experience in integrating security solutions with SIEM, SOAR, and cloud security frameworks.

- Excellent troubleshooting and problem-solving skills.

- Strong documentation and presentation abilities.

Preferred Certifications :

- Cisco CCIE Data Center / CCNP Data Center.

- Vectra NDR Certified Professional (if available).

- Trend Micro TippingPoint IPS Certification.

- CISSP, CISM, or other cybersecurity certifications are a plus.