Zero Trust Network Engineer

General Dynamics Information Technology is a global technology and professional services company that delivers consulting, technology, and mission services. They are hiring a Zero Trust Network Engineer to support the modernization of secure access infrastructure using cloud native SASE architecture and integrate automated security controls into a resilient access infrastructure.

Responsibilities:

• Deploy and manage SASE/SSE technologies: SWG, CASB, FWaaS, SD WAN, ZTNA
• Support migration to Zero Trust and identity centric access models
• Automate security workflows using Python, PowerShell, Bash
• Develop and maintain API integrations for cloud native platforms, including Netskope
• Troubleshoot complex issues involving routing, proxies, PAC files, SSL inspection, VLANs, NAT, DNS, 802.1X, SaaS/COTS apps
• Perform protocol analysis using Wireshark and tcpdump
• Monitor and maintain infrastructure using SNMP, SIEM, Grafana, syslog
• Maintain cloud firewall policies across AWS, Azure, GCP
• Support SD WAN and SASE integration for secure traffic steering

Requirements:

• 5 + years of related experience
• 2+ years hands on with SASE, ZTNA, cloud platforms
• 5+ years Network Engineering / VPN Engineering
• Strong understanding of SD WAN, SSE/SASE architecture, Windows 10/11 networking
• Hands on with Netskope, Zscaler, Palo Alto Prisma Access
• Expertise in routing protocols, proxy architecture, PAC files
• Experience with AnyConnect, firewalls, 802.1X
• Automation and scripting in Python, PowerShell, Bash
• Familiarity with SNMP, SIEM, Grafana, Docker troubleshooting
• Certifications: Netskope Cloud Security Specialist (NCSS) and/or Zscaler Certified Administrator (ZCSA – ZIA or ZPA track), CCNP Security
• Experience with DevOps, CI/CD, hybrid cloud security (AWS/Azure/GCP)