More jobs:
NAC Engineer
Job in
Greater London, London, Greater London, EC1A, England, UK
Listed on 2026-01-13
Listing for:
Xcede Recruitment Solutions
Contract
position Listed on 2026-01-13
Job specializations:
-
IT/Tech
Cybersecurity, Systems Engineer, IT Support, Network Security
Job Description & How to Apply Below
Contract Network Security Engineer (NAC Specialist)
- Location: City of London (3–4 days per week on-site)
- Contract Length: Initial 3 months
- Rate: £500–£600 per day (Inside IR35)
We are working with a leading global IT services provider on a contract engagement supporting a large, highly regulated financial services organisation in the City of London. The engagement focuses on a Network Access Control (NAC) policy cleanup and remediation programme
, aligning access controls to least privilege, zero trust, and vendor best practices
.
This role requires a senior, hands-on Network Security Engineer with deep NAC expertise who can operate confidently across security engineering and network operations teams.
Key Responsibilities- Review and remediate existing NAC exception policies to ensure alignment with organisational standards and vendor best practices
- Identify and remove overly permissive or misaligned access exceptions
, including inappropriate MAC-based policies - Enforce deny-by-default, allow-list access models using identity, device type, and posture
- Implement and refine device profiling and posture validation rules
- Improve role-based access control and dynamic policy enforcement (e.g. VLAN assignment)
- Perform gap analysis against NAC vendor best practices
- Collaborate closely with Security Engineering and Network Operations teams during remediation
- Ensure changes follow formal change control processes
- Produce clear documentation including:
- NAC exception audit reports (pre- and post-remediation)
- Updated access control matrices
- Final remediation and validation summaries
- Executive-level summaries for stakeholders
- Strong hands-on experience with enterprise Network Access Control (NAC) solutions, such as:
- Cisco ISE
- Aruba Clear Pass
- Forescout
- FortiNAC
- Deep knowledge of:
- 802.1X
, RADIUS / TACACS - Device profiling and posture assessment
- Identity-based access control (user device)
- Least privilege and Zero Trust principles
- 802.1X
- Experience remediating NAC environments with large numbers of legacy or overly permissive exceptions
- Strong enterprise networking background (switching, VLANs, campus networks)
- Ability to work effectively in regulated, security-conscious environments
- Comfortable producing technical documentation and engaging with senior stakeholders
- Financial services or other highly regulated industries
- Certificate-based authentication / PKI
- Integration with directory services (e.g. AD / Azure AD)
- Logging, alerting, and SIEM integration
- Previous NAC redesign or cleanup engagements
- 3–4 days per week on-site in the City of London
- Initial 3-month contract with potential extension
- £500–£600 per day,
Inside IR35
Note that applications are not being accepted from your jurisdiction for this job currently via this jobsite. Candidate preferences are the decision of the Employer or Recruiting Agent, and are controlled by them alone.
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
Search for further Jobs Here:
×