Zero Trust Security Engineer
Role details
Job location
Tech stack
Job description
-
Eindhoven, Noord-Brabant
-
Vast
-
Voltijds
-
17 uren geleden
As a Zero Trust Security Engineer, you will:
-
Lead the design, implementation, and continuous evolution of Zero Trust Architecture (ZTA) solutions across enterprise environments.
-
Engineer and optimize secure access solutions using Zscaler Internet Access (ZIA), Zscaler Private Access (ZPA), and Zscaler Identity.
-
Drive Proof of Concept (POC) initiatives for new Zero Trust capabilities, validating performance, scalability, and security requirements.
-
Design and execute migration strategies from traditional VPN and proxy-based architectures to identity-centric access models.
-
Enhance security platforms through advanced policy automation, SSL inspection optimization, PAC file management, and operational improvements.
-
Act as the technical bridge between engineering and operations teams by delivering validated configurations, implementation standards, and troubleshooting procedures.
-
Collaborate with Identity, Network, Cloud, and Security teams to ensure seamless integration of Zero Trust policies and authentication services.
-
Support the organization's cybersecurity transformation by eliminating implicit trust and strengthening access governance., * Optimize secure web gateway configurations, SSL inspection policies, and access control frameworks.
-
Troubleshoot complex authentication, connectivity, and security policy issues.
-
Collaborate effectively with cloud, network, identity, and operations teams.
-
Create operational standards, implementation documentation, and support playbooks.
-
Drive continuous improvement initiatives across security platforms and services.
What We Bring to the Table:
-
Opportunity to lead enterprise Zero Trust transformation initiatives.
-
Exposure to modern cloud security, identity management, and secure access technologies.
-
Challenging projects involving architecture design, platform modernization, and cybersecurity innovation.
-
A collaborative environment working alongside security, cloud, identity, and network engineering experts.
-
Opportunities to influence security strategy and contribute to the evolution of enterprise security architecture.
-
Continuous learning and exposure to emerging technologies, automation, and advanced cybersecurity practices.
Requirements
-
6-8 years of experience in Network Security, Cyber Security, Zero Trust Architecture, or Secure Access Engineering.
-
Expert-level experience implementing and administering Zscaler Internet Access (ZIA) and Zscaler Private Access (ZPA).
-
Strong knowledge of Zero Trust Network Access (ZTNA) principles, least-privilege access models, application segmentation, and lateral movement prevention.
-
Hands-on experience integrating identity providers such as Azure AD and Okta using SAML, SCIM, and OIDC protocols.
-
Strong understanding of traditional proxy and VPN technologies, including IPSec and SSL VPN solutions.
-
Experience designing, testing, and deploying enterprise-scale security architectures and access control frameworks.
-
Knowledge of cloud security, identity-centric security models, and modern secure access technologies.
-
Experience working in complex enterprise environments supporting large-scale user populations.
-
Strong troubleshooting, analytical, and stakeholder management skills.
You Should Possess the Ability to:
-
Architect and deploy enterprise-grade Zero Trust security solutions.
-
Design and execute migration strategies from legacy network-centric security architectures.
-
Conduct technical evaluations, Proof of Concepts, and performance assessments for emerging security technologies.
-
Develop and automate security policies using APIs, scripting, and platform integrations.