SME - Cisco Identity Services Engine (ISE) Job Details

SME - Cisco Identity Services Engine (ISE)

India

Job Description

SME - Cisco Identity Services Engine (ISE)

Noida, Uttar Pradesh

Job Summary

The Network Access Control Operations SME is responsible for the reliable operation, optimization, and incident resolution of enterprise wired LAN, wireless, and authentication services across a multi-vendor environment. This role serves as the primary escalation point for complex network access control and authentication issues, driving operational excellence, security enforcement, and continuous improvement across our global network access infrastructure with 12-16 year of experience. Primary focus will be Aruba Clearpass & Cisco ISE.

Key Responsibilities

Platform Operations & Lifecycle Policy Design & Enforcement Identity & Security Integration Infrastructure & Operations Support Incident Resolution & Documentation

Skill Requirements

NAC Expertise: Proven, hands-on experience administering and engineering large, multi-node deployments of Cisco ISE AND Aruba ClearPass (CPPM). Protocol Proficiency: Deep understanding of network AAA concepts, RADIUS, TACACS+, 802.1X, MAB, and EAP types (EAP-TLS, PEAP-MSCHAPv2). Identity & PKI: Demonstrated experience with certificate management, CRL/OCSP validation, PKI trust chains, and directory integrations (Active Directory, Entra ID). Network Infrastructure: Experience configuring RADIUS/TACACS+ attributes and AAA commands on Cisco Catalyst switches, Cisco 9800 WLCs, and multi-vendor wireless platforms. Advanced Troubleshooting: Strong skills tracking authentication flows via Cisco ISE Live Logs, ClearPass Access Tracker, endpoint diagnostics, and Wireshark captures.

Other Requirements

Aruba Certifications: Aruba Certified ClearPass Professional (ACCP) or Aruba Certified ClearPass Expert (ACCX). Cisco Certifications: CCNP Enterprise, CCNP Security, or CCIE (Wireless/Security). Cloud Infrastructure: Practical experience with cloud networking (AWS VPCs, Azure VNets, Security Groups) supporting virtual NAC nodes. Automation: Familiarity with REST APIs to automate repetitive configuration tasks, endpoint profiling, or bulk provisioning. Role Overview\\\\r\\\\nThe Network Access Control Operations SME is responsible for the reliable operation, optimization, and incident resolution of enterprise wired LAN, wireless, and authentication services across a multi-vendor environment. This role serves as the primary escalation point for complex network access control and authentication issues, driving operational excellence, security enforcement, and continuous improvement across our global network access infrastructure with 12-16 year of experience. Primary focus will be Aruba Clearpass & Cisco ISE.\\\\r\\\\nKey Responsibilities\\\\r\\\\nPlatform Operations & Lifecycle:\\\\r\\\\nOwn day-to-day operations, capacity planning, performance tuning, and health checks for both Cisco ISE and Aruba ClearPass Policy Manager (CPPM).\\\\r\\\\nManage lifecycle activities including software patching, major upgrades, backup validation, and system maintenance across multi-node, hybrid architectures.\\\\r\\\\nPolicy Design & Enforcement:\\\\r\\\\nDesign, implement, and maintain NAC policies for wired and wireless access using 802.1X, MAC Authentication Bypass (MAB), and Web Auth.\\\\r\\\\nConfigure complex policy sets, enforcement profiles, service mappings, profiling rules, and posture compliance checks.\\\\r\\\\nManage guest access workflows, BYOD onboarding flows, and device registration portals.\\\\r\\\\nIdentity & Security Integration:\\\\r\\\\nIntegrate and maintain identity source sequences including Active Directory, LDAP, and cloud identity providers (e.g., Microsoft Entra ID).\\\\r\\\\nManage PKI and certificate lifecycles for secure, certificate-based authentication.\\\\r\\\\nInfrastructure & Operations Support:\\\\r\\\\nOperate and optimize network access layers across Cisco Catalyst environments, Cisco wireless controllers (WLCs / IOS XE), and Aruba/Meraki wireless access points.\\\\r\\\\nMaintain hybrid deployments of NAC nodes (On-premises and Cloud environments like AWS/Azure), ensuring resilient connectivity and consistent security posture.\\\\r\\\\nIncident Resolution & Documentation:\\\\r\\\\nAct as the highest tier of internal escalation for advanced wireless, wired, and authentication outages; utilize packet captures, RADIUS/TACACS+ logs, and live logs to troubleshoot.\\\\r\\\\nProduce and maintain operational runbooks, troubleshooting guides, and self-service documentation to empower Tier 1 support teams and reduce MTTR.\\\\r\\\\nRequirements (Mandatory) :\\\\r\\\\nNAC Expertise: Proven, hands-on experience administering and engineering large, multi-node deployments of Cisco ISE AND Aruba ClearPass (CPPM).\\\\r\\\\nProtocol Proficiency: Deep understanding of network AAA concepts, RADIUS, TACACS+, 802.1X, MAB, and EAP types (EAP-TLS, PEAP-MSCHAPv2).\\\\r\\\\nIdentity & PKI: Demonstrated experience with certificate management, CRL/OCSP validation, PKI trust chains, and directory integrations (Active Directory, Entra ID).\\\\r\\\\nNetwork Infrastructure: Experience configuring RADIUS/TACACS+ attributes and AAA commands on Cisco Catalyst switches, Cisco 9800 WLCs, and multi-vendor wireless platforms.\\\\r\\\\nAdvanced Troubleshooting: Strong skills tracking authentication flows via Cisco ISE Live Logs, ClearPass Access Tracker, endpoint diagnostics, and Wireshark captures.\\\\r\\\\nPreferred Qualifications:\\\\r\\\\nAruba Certifications: Aruba Certified ClearPass Professional (ACCP) or Aruba Certified ClearPass Expert (ACCX).\\\\r\\\\nCisco Certifications: CCNP Enterprise,

Information at a Glance

Why HCLTech?

At HCLTech, you'll supercharge your potential. You'll find your career. And you'll find your spark. All at a place that knows that helping its customers stay on top starts by putting its people first.

HCLTech is a global technology company, home to more than 226,300 people across 60 countries, delivering industry-leading capabilities centered around digital, engineering, cloud and AI, powered by a broad portfolio of technology services and products. We work with clients across all major verticals, providing industry solutions for Financial Services, Manufacturing, Life Sciences and Healthcare, Technology and Services, Telecom and Media, Retail and CPG, and Public Services. Consolidated revenues as of 12 months ending December 2025 totaled $14.5 billion.

23 Benefits At HCLTech, we believe in empowering our employees with comprehensive benefits that support their professional growth and enhance their well-being. When you sign up for a career with us, you gain access to: https://rmkcdn.successfactors.com/147eb21f/a701dca9-f32d-4fc9-9447-6.svg Industry-benchmarked compensation https://rmkcdn.successfactors.com/147eb21f/b0c54381-ddcc-4a33-9b35-9.svg Best-in-class healthcare benefits https://rmkcdn.successfactors.com/147eb21f/b73027be-7aae-4d36-a090-4.svg Personal time off https://rmkcdn.successfactors.com/147eb21f/d5b4fdfd-2e99-4e26-9878-9.svg Maternity and paternity benefits https://rmkcdn.successfactors.com/147eb21f/3d42b0fc-4652-435a-9ece-c.svg Access to skills / higher education programs/resources https://rmkcdn.successfactors.com/147eb21f/aeddeaf2-9e25-4584-ad11-d.svg Discounts on products and services via Benefit Box https://rmkcdn.successfactors.com/147eb21f/a9609a3b-2700-4b3c-9d90-a.svg Participate in CSR programs and live life with a purpose https://rmkcdn.successfactors.com/147eb21f/c6e33851-710f-4634-bd69-f.svg Opportunities to grow and advance your career Note: The benefits listed above vary depending on the nature of your employment and the country where you work. Some benefits may be available in some countries but not in all.

Provider	Description	Enabled
Vimeo	Vimeo is a video hosting, sharing, and services platform focused on the delivery of video. Opting out of Vimeo cookies will disable your ability to watch or interact with Vimeo videos. Cookie Policy Privacy Policy Terms and Conditions	Consent to cookies from provider Vimeo
YouTube	YouTube is a video-sharing service where users can create their own profile, upload videos, watch, like, and comment on videos. Opting out of YouTube cookies will disable your ability to watch or interact with YouTube videos. Cookie Policy Privacy Policy Terms and Conditions	Consent to cookies from provider YouTube

Provider	Description	Enabled
Google Analytics	Google Analytics is a web analytics service offered by Google that tracks and reports website traffic. Cookie Information Privacy Policy Terms and Conditions	Consent to cookies from provider GoogleAnalytics
Google Tag Manager	Google Tag Manager is a tag management system for conversion tracking, site analytics, remarketing, and more. Privacy Policy Terms and Conditions	Consent to cookies from provider GoogleTagManager
LinkedIn	LinkedIn is an employment-oriented social networking service. We use the Apply with LinkedIn feature to allow you to apply for jobs using your LinkedIn profile. Opting out of LinkedIn cookies will disable your ability to use Apply with LinkedIn. Cookie Policy Cookie Table Privacy Policy Terms and Conditions	Consent to cookies from provider LinkedIn