Zscaler Engineer

Tria Federal is seeking an experienced Senior Zscaler Engineer to establish and maintain the agency's security infrastructure by configuring, managing, and integrating Zscaler services across the enterprise environment. This role oversees the administration of ZIA, ZPA, ZCC, and ZDX and the engineer will identify and resolve complex or atypical Zscaler issues to ensure maximum reliability, security, and user experience across the platform., In support of the agency's modernization initiatives, the Senior Zscaler Engineer will also provide technical expertise across Zero Trust, secure remote access, and cloud\u2011delivered security architectures, including validating Zscaler policy designs, optimizing App Segments and Connectors, and enabling secure, reliable access to internal and external applications and websites., * Troubleshoots and resolves complex Zscaler issues across ZIA, ZPA, ZCC, and ZDX, including policy enforcement, authentication failures, application access problems, and user\u2011experience degradation.

• Deploy, configures, and maintains Zscaler services end\u2011to\u2011end, managing App Connectors, App Segments, SSL inspection, DLP policies, and traffic\u2011forwarding methods.
• Monitors security events using ZDX, ZIA/ZPA logs while performing root cause analysis for connectivity, authentication, and application performance issues.
• Manages identity integrations, enforces security policies, validates compliance requirements, and continuously tunes configurations to strengthen Zero Trust posture and improve user experience.
• Conducts routine health checks, migrations, and documents changes through SOPs, engineering designs, and implementation procedures.
• Collaborates with engineering, operations and compliance teams while mentoring junior staff and contributing to knowledge-sharing efforts across Zscaler operations and secure access best practices.5 years

• Senior Zscaler Engineer responsible for designing, configuring, monitoring, and troubleshooting ZIA, ZPA, ZCC, and ZDX across enterprise environments.
• Ten (10) years of experience in a large government organization with six (6) years in technical leadership, including four (4) years implementing and troubleshooting ZIA and ZPA with expertise in authentication flows, SSL inspection, DNS/routing interactions, identity integrations (SAML/SCIM), App Segments, Connectors, and traffic\u2011forwarding methods (ZCC, PAC files, GRE/IPsec tunnels).
• Experience supporting modernization efforts that include migrating user access policies from legacy McAfee Web Proxy servers and Check Point firewall rule sets into ZIA and ZPA, ensuring alignment with Zero Trust principles.
• Four (4) years of experience supporting cloud\u2011delivered security or Zero Trust architectures with strong knowledge of identity, segmentation, certificate management, and endpoint posture controls.
• Thorough knowledge of telecommunications, network security, and Zero Trust best practices with awareness of cloud security fundamentals such as identity\u2011based access, segmentation, and least\u2011privilege design.
• Exceptional customer service orientation, written and oral communication skills, with the ability to explain Zscaler concepts to technical and non\u2011technical stakeholders.
• Bachelor's degree in Information Technology, Cybersecurity or a related field.
• Preferred certifications: Zscaler ZIA Administrator, ZPA Administrator, Zscaler Certified Cloud Professional (ZCCP), Zscaler Certified Cloud Engineer (ZCCE).