Zero trust security engineer - zscaler (id: 3803)

• Lead the design, implementation, and continuous evolution of Zero Trust Architecture (ZTA) solutions across enterprise environments.
• Engineer and optimize secure access solutions using Zscaler Internet Access (ZIA), Zscaler Private Access (ZPA), and Zscaler Identity.
• Drive Proof of Concept (POC) initiatives for new Zero Trust capabilities, validating performance, scalability, and security requirements.
• Design and execute migration strategies from traditional VPN and proxy-based architectures to identity-centric access models.
• Enhance security platforms through advanced policy automation, SSL inspection optimization, PAC file management, and operational improvements.
• Act as the technical bridge between engineering and operations teams by delivering validated configurations, implementation standards, and troubleshooting procedures.
• Collaborate with Identity, Network, Cloud, and Security teams to ensure seamless integration of Zero Trust policies and authentication services.
• Support the organization's cybersecurity transformation by eliminating implicit trust and strengthening access governance., * Architect and deploy enterprise-grade Zero Trust security solutions.
• Design and execute migration strategies from legacy network-centric security architectures.
• Conduct technical evaluations, Proof of Concepts, and performance assessments for emerging security technologies.
• Develop and automate security policies using APIs, scripting, and platform integrations.
• Optimize secure web gateway configurations, SSL inspection policies, and access control frameworks.
• Troubleshoot complex authentication, connectivity, and security policy issues.
• Collaborate effectively with cloud, network, identity, and operations teams.
• Create operational standards, implementation documentation, and support playbooks.
• Drive continuous improvement initiatives across security platforms and services.

What We Bring to the Table:

• Opportunity to lead enterprise Zero Trust transformation initiatives.
• Exposure to modern cloud security, identity management, and secure access technologies.
• Challenging projects involving architecture design, platform modernization, and cybersecurity innovation.
• A collaborative environment working alongside security, cloud, identity, and network engineering experts.
• Opportunities to influence security strategy and contribute to the evolution of enterprise security architecture.
• Continuous learning and exposure to emerging technologies, automation, and advanced cybersecurity practices.

• 6-8 years of experience in Network Security, Cyber Security, Zero Trust Architecture, or Secure Access Engineering.
• Expert-level experience implementing and administering Zscaler Internet Access (ZIA) and Zscaler Private Access (ZPA).
• Strong knowledge of Zero Trust Network Access (ZTNA) principles, least-privilege access models, application segmentation, and lateral movement prevention.
• Hands-on experience integrating identity providers such as Azure AD and Okta using SAML, SCIM, and OIDC protocols.
• Strong understanding of traditional proxy and VPN technologies, including IPSec and SSL VPN solutions.
• Experience designing, testing, and deploying enterprise-scale security architectures and access control frameworks.
• Knowledge of cloud security, identity-centric security models, and modern secure access technologies.
• Experience working in complex enterprise environments supporting large-scale user populations.
• Strong troubleshooting, analytical, and stakeholder management skills.