Zero Trust Security Engineer - Zscaler (ID: 3803)

As a Zero Trust Security Engineer, you will: Lead the design, implementation, and continuous evolution of Zero Trust Architecture (ZTA) solutions across enterprise environments. Engineer and optimize secure access solutions using Zscaler Internet Access (ZIA), Zscaler Private Access (ZPA), and Zscaler Identity. Drive Proof of Concept (POC) initiatives for new Zero Trust capabilities, validating performance, scalability, and security requirements. Design and execute migration strategies from traditional VPN and proxy-based architectures to identity-centric access models. Enhance security platforms through advanced policy automation, SSL inspection optimization, PAC file management, and operational improvements. Act as the technical bridge between engineering and operations teams by delivering validated configurations, implementation standards, and troubleshooting procedures. Collaborate with Identity, Network, Cloud, and Security teams to ensure seamless integration of Zero Trust policies and authentication services. Support the organization's cybersecurity transformation by eliminating implicit trust and strengthening access governance. What You Bring to the Table: 6–8 years of experience in Network Security, Cyber Security, Zero Trust Architecture, or Secure Access Engineering. Expert-level experience implementing and administering Zscaler Internet Access (ZIA) and Zscaler Private Access (ZPA). Strong knowledge of Zero Trust Network Access (ZTNA) principles, least-privilege access models, application segmentation, and lateral movement prevention. Hands-on experience integrating identity providers such as Azure AD and Okta using SAML, SCIM, and OIDC protocols. Strong understanding of traditional proxy and VPN technologies, including IPSec and SSL VPN solutions. Experience designing, testing, and deploying enterprise-scale security architectures and access control frameworks. Knowledge of cloud security, identity-centric security models, and modern secure access technologies. Experience working in complex enterprise environments supporting large-scale user populations. Strong troubleshooting, analytical, and stakeholder management skills. You Should Possess the Ability to: Architect and deploy enterprise-grade Zero Trust security solutions. Design and execute migration strategies from legacy network-centric security architectures. Conduct technical evaluations, Proof of Concepts, and performance assessments for emerging security technologies. Develop and automate security policies using APIs, scripting, and platform integrations. Optimize secure web gateway configurations, SSL inspection policies, and access control frameworks. Troubleshoot complex authentication, connectivity, and security policy issues. Collaborate effectively with cloud, network, identity, and operations teams. Create operational standards, implementation documentation, and support playbooks. Drive continuous improvement initiatives across security platforms and services. What We Bring to the Table: Opportunity to lead enterprise Zero Trust transformation initiatives. Exposure to modern cloud security, identity management, and secure access technologies. Challenging projects involving architecture design, platform modernization, and cybersecurity innovation. A collaborative environment working alongside security, cloud, identity, and network engineering experts. Opportunities to influence security strategy and contribute to the evolution of enterprise security architecture. Continuous learning and exposure to emerging technologies, automation, and advanced cybersecurity practices. Let’s Connect Want to discuss this opportunity in more detail? Feel free to reach out. Recruiter: Aswin Dhanvandhar Phone: +31 20 369 0609 ; Extn :141 E-mail: aswin.d@stafide.nl LinkedIn:https://www.linkedin.com/in/aswin-dhanvandhar/