Senior Security Engineer (ZTNA)

SmartIMS Inc.
Dover, United States of America
10 days ago

Role details

Contract type
Temporary to permanent
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English
Experience level
Senior
Compensation
$ 166K

Job location

Dover, United States of America

Tech stack

Amazon Web Services (AWS)
Application Firewall
Azure
Cloud Computing
Cloud Computing Security
Cloud Engineering
Computer Security
Information Leak Prevention
Domain Name System Security Extensions
Identity and Access Management
Intrusion Detection Systems
Virtual Private Networks (VPN)
Python
Network Security
Log Analysis
Network Segmentation
Zero Trust Network Access
Security Information and Event Management
Single Sign-On
Data Logging
Google Cloud Platform
Load Balancing
Data Classification
In-Plane Switching (IPS)
Multi-Cloud
Firewalls (Computer Science)
Information Technology
Cybercrime
Terraform
Security Orchestration, Automation & Response

Job description

As a Senior Security Engineer (ZTNA), you will lead the design, implementation, and management of secure cloud and network security architectures with a strong emphasis on Zero Trust Network Access (ZTNA) principles. You will be responsible for securing multi-cloud environments, enforcing identity-driven access controls, automating security operations, and ensuring compliance with regulatory and governance requirements. This role requires deep expertise in cloud security, ZTNA technologies, network security, and security operations, along with the ability to provide technical leadership and strategic guidance across enterprise security initiatives., * Design, implement, and manage Zero Trust Network Access (ZTNA) solutions across enterprise environments

  • Lead migration efforts from traditional VPN architectures to modern Zero Trust security models
  • Architect and enforce identity-aware access controls and least-privilege security policies
  • Configure, manage, and optimize cloud security controls across AWS, Azure, and Google Cloud environments
  • Implement and maintain Identity and Access Management (IAM) solutions, including federation and single sign-on technologies
  • Develop and maintain security automation solutions using tools such as Terraform, Python, and cloud-native automation services
  • Monitor security events and analyze logs using SIEM platforms to identify threats and vulnerabilities
  • Support threat hunting, incident response, and security investigations across cloud and on-premises environments
  • Implement and manage data protection strategies including data classification and Data Loss Prevention (DLP) controls
  • Design and maintain network security architectures including firewalls, IDS/IPS, web application firewalls, and network segmentation controls
  • Ensure compliance with security frameworks, regulatory requirements, and governance standards
  • Collaborate with infrastructure, cloud, and application teams to secure enterprise workloads and services
  • Develop security standards, documentation, and operational procedures
  • Mentor junior security engineers and provide technical leadership on security projects
  • Evaluate emerging security technologies and recommend improvements to strengthen organizational security posture

Requirements

  • 7 10+ years of experience in information security with a strong focus on cloud security and Zero Trust architectures
  • Extensive hands-on experience with ZTNA engineering, automation, and policy management
  • Strong expertise with Zero Trust principles and frameworks, including NIST 800-207 concepts
  • Experience implementing and managing ZTNA platforms such as Zscaler
  • Strong knowledge of cloud security across AWS, Azure, and Google Cloud Platform (GCP)
  • Experience with cloud-native security services including IAM, logging, monitoring, encryption, and security posture management tools
  • Strong understanding of Identity and Access Management (IAM), federation, SSO, and least-privilege access models
  • Experience with security automation tools and Infrastructure as Code technologies such as Terraform and Python
  • Hands-on experience with SIEM technologies, security monitoring, and incident response processes
  • Knowledge of Endpoint Detection and Response (EDR) and Extended Detection and Response (XDR) solutions
  • Experience implementing and managing Data Loss Prevention (DLP) controls and data classification frameworks
  • Deep understanding of network security technologies including firewalls, IDS/IPS, VPNs, DNS security, NAC, load balancers, and WAFs
  • Strong analytical, troubleshooting, and problem-solving skills
  • Excellent communication, leadership, and stakeholder management abilities
  • Ability to mentor technical teams and communicate complex security concepts to non-technical audiences
  • Bachelor's or Master's degree in Computer Science, Information Security, or a related field (preferred)
  • CISSP, CCSP, AWS Security Specialty, Google Cloud Security Engineer, Azure Security Engineer, or similar certifications (preferred)
  • Experience with FedRAMP, NIST, ISO, SOC 2, and other compliance frameworks (preferred)
  • Experience working in government, public sector, or highly regulated environments (preferred)

Apply for this position