Pyramid Consulting, Inc is a leading IT industry company, and they are seeking a Senior Network Security Engineer with expertise in Zscaler and Zero Trust. The role involves managing and operating the company's Zero Trust security infrastructure, focusing on deployment, policy management, and advanced troubleshooting.
Responsibilities:
- Zero Trust Architecture & Deployment (ZIA/ZPA) Support and orchestrate ongoing deployments utilizing Workspace ONE and Zscaler tenants
- Design and manage ZIA, ZPA, and ZDX policies, including SSL Inspection, URL Filtering, and Sandbox policies
- Perform operational duties involving ZPA Access Policies, Timeout Policies, and Client Forwarding Policies
- Deploy and maintain ZPA App Connectors within data centers and cloud environments, specifically AWS
- Endpoint Integration & Engineering (Zscaler Client Connector) Manage configurations, rolling updates, settings, and policies for the Zscaler Client Connector (ZCC) profiles
- Ensure interoperability by maintaining SSL Inspection Exemption lists for applications with certificate pinning (e.g., Dropbox, Developer Tools) to prevent connectivity failures
- Collaborate with the broader team on Data Loss Prevention (DLP) policy creation and monitoring
- Network Security Operations & Troubleshooting Provide advanced Level 3 escalation support for all service desk issues related to ZIA, ZPA, and ZDX, managing relevant ticket queues in Client
- Serve as the Level 3 escalation point for P1/P2 critical connectivity incidents
- Perform Layer 3-7 troubleshooting utilizing tools such as Wireshark, MTR (My Traceroute), and Zscaler Analyzer
- Analyze ZSATunnel and ZSATray logs to diagnose 'Driver Errors' or 'Filter Driver' conflicts
- Conduct performance optimization by diagnosing latency issues using ZDX (Digital Experience) or Zscaler Cloud Performance Test tools, and accurately identifying if latency is introduced by the Service Edge, ISP, or local network
- Interface directly with Zscaler Technical Account Managers (TAMs) and Support, providing necessary data such as HAR files and packet captures for root cause analysis
- Performance Expectations (KPIs) Achievement of defined SLAs and KPIs
- High percentage of deliverables and roadmap items completed on time and on budget
- Maintaining high quality with near-zero Defect Leakage/Code Violations (max 0.5% defects detected after sprint closure)
- No introduction of new security flaws or performance degradation due to new code
- Adherence to high Code Coverage targets (95% for New Code; >95% for Enhancements)
Requirements:
- Experience with Zero Trust Architecture & Deployment (ZIA/ZPA)
- Support and orchestrate ongoing deployments utilizing Workspace ONE and Zscaler tenants
- Design and manage ZIA, ZPA, and ZDX policies, including SSL Inspection, URL Filtering, and Sandbox policies
- Perform operational duties involving ZPA Access Policies, Timeout Policies, and Client Forwarding Policies
- Deploy and maintain ZPA App Connectors within data centers and cloud environments, specifically AWS
- Manage configurations, rolling updates, settings, and policies for the Zscaler Client Connector (ZCC) profiles
- Ensure interoperability by maintaining SSL Inspection Exemption lists for applications with certificate pinning
- Collaborate with the broader team on Data Loss Prevention (DLP) policy creation and monitoring
- Provide advanced Level 3 escalation support for all service desk issues related to ZIA, ZPA, and ZDX
- Serve as the Level 3 escalation point for P1/P2 critical connectivity incidents
- Perform Layer 3-7 troubleshooting utilizing tools such as Wireshark, MTR, and Zscaler Analyzer
- Analyze ZSATunnel and ZSATray logs to diagnose 'Driver Errors' or 'Filter Driver' conflicts
- Conduct performance optimization by diagnosing latency issues using ZDX or Zscaler Cloud Performance Test tools
- Interface directly with Zscaler Technical Account Managers (TAMs) and Support
- Achievement of defined SLAs and KPIs
- High percentage of deliverables and roadmap items completed on time and on budget
- Maintaining high quality with near-zero Defect Leakage/Code Violations
- No introduction of new security flaws or performance degradation due to new code
- Adherence to high Code Coverage targets (95% for New Code; >95% for Enhancements)
- Key skills: Zscaler, ZIA, Zero Trust, AWS