Job Description:
We are seeking a Security Infrastructure Engineer with hands-on expertise in ForeScout NAC, Microsoft
SCCM, Entrust PKI operations, and audit/compliance support. The ideal candidate will be responsible for
maintaining critical endpoint and certificate infrastructure, enforcing network access controls, and supporting
audit requirements for enterprise security compliance.
Key Responsibilities:
1. NAC (Network Access Control) – ForeScout:
o Deploy, configure, and maintain ForeScout CounterACT NAC solutions.
o Develop and update policies to control endpoint access and behavior.
o Integrate NAC with other security platforms (e.g., SIEM, AD, Network switches, WIFI AP).
o Troubleshoot device onboarding and posture assessment issues.
2. SCCM (System Center Configuration Manager):
o Manage SCCM for software deployment, patching, and inventory.
o Create and manage deployment packages and operating system images.
o Monitor and optimize client health, collections, and task sequences.
o Work closely with endpoint teams for secure configuration baselines.
3. Entrust Certificate Operations:
o Administer Entrust certificate management platform.
o Issue, renew, and revoke digital certificates for users, servers, and devices.
o Manage and automate certificate lifecycle processes.
o Ensure adherence to internal PKI security policies.
4. Security Compliance & Audit:
o Support internal and external audits (PCI-DSS, RBI, etc.).
o Maintain documentation and evidence for audit trails.
o Conduct periodic reviews of certificate, NAC, and endpoint configurations.
o Remediate gaps identified during compliance assessments.
Requirements:
? 4–8 years of experience in IT security or infrastructure roles.
? Strong experience with ForeScout CounterACT NAC.
? Proficient in Microsoft SCCM (software deployment, patching, imaging).
? Working knowledge of PKI and Entrust certificate services.
? Familiarity with Windows and Linux platforms.
? Basic scripting knowledge (PowerShell, Python, etc.) is a plus.
? Understanding of security frameworks and audit principles.
Education & Certifications (Preferred):
? Bachelor’s degree in Computer Science, Information Security, or related field.
Soft Skills:
? Strong analytical and troubleshooting skills.
? Excellent documentation and communication abilities.
? Ability to work independently and cross-functionally.
