Designs, deploys, and leads the implementation of Zscaler Private Access (ZPA) solutions, ensuring alignment with enterprise security frameworks and Zero Trust principles.
Develops and maintains ZPA policies, including segmentation and access control rules to enforce least-privilege access.
Leads troubleshooting and incident response efforts related to ZPA infrastructure, identifying root causes and implementing solutions.
Collaborates with global IT, network, application, and security teams to integrate ZPA with legacy and modern systems across hybrid environments.
Monitors, analyzes, and optimizes ZPA performance and security posture, using logs and analytics to identify risks and drive continuous improvement.
Provides advanced technical guidance, training, and mentoring to internal team members.
Maintains and continuously improves documentation related to ZPA architecture, configurations, policies, and operational procedures.
Stays current of emerging threats, Zscaler platform updates, and industry best practices, and proactively implement enhancements to ensure robust cybersecurity defenses.
Supports compliance and audit initiatives, providing advanced knowledge on secure access controls and remote connectivity.
Supports broader cybersecurity initiatives, including integration with SIEM, IAM, and endpoint protection platforms.

Proven experience managing Zscaler, specifically Zscaler Private Access (ZPA) in a large enterprise environment.
Strong understanding of Zero Trust Network Access (ZTNA) concepts and architecture.
Experience with identity providers (e.g., Azure AD, Okta) and SSO integrations.
Familiarity with networking concepts including DNS, VPN, firewalls, and routing.
Ability to work independently and collaboratively in a fast-paced environment.
Strong analytical and problem-solving skills.
Excellent written and verbal communication skills.
Bachelor’s degree in computer science, Cybersecurity, or related field, or equivalent experience required.
4 years of experience in cybersecurity or network engineering roles; including 1-year hands-on experience with Zscaler Private Access (ZPA) required.
Experience with regulatory standards such as HIPAA, PCI-DSS, NIST.
Healthcare Cybersecurity experience a plus.
Proficiency with Zscaler ZPA and ZIA platforms.
Familiarity with security tools such as SIEM, endpoint protection, and vulnerability scanners.
Experience with scripting or automation tools (e.g., PowerShell, Python) is a plus.
Certificates and Licenses (if applicable)
Zscaler Certified Professional – ZPA preferred.
CISSP, CISM, or other relevant security certifications are a plus

At Envision, we offer benefits at the speed of your life. Our wide range of health and welfare benefits allow you to choose the right ones for you and your family. Best of all, qualifying employees are eligible to enroll from day one, so you can rest easy knowing you and your loved ones are protected. Envision offers a variety of health and welfare benefit options to help protect your health and promote your wellbeing. The benefits offered include but not limited to: Medical, Dental, Vision, Life, Disability, Healthcare FSA, Dependent Care FSA, Limited Healthcare FSA, FSAs for Transportation and Parking & HSAs.
Envision offers paid time off, 9 observed holidays and paid family leave. You accrue Paid Time Off (PTO) each pay period and depending on your position and can earn a minimum of 20 days and up to 25 days per calendar year.

Cybersecurity Engineer – Zscaler SME

Key skills