Network Security and Zscaler SME - ApTask
Chicago, IL
About the Job
About Client:
The client provides information technology (IT) services, including business outsourcing, infrastructure technology, and application services. The application service offered by the company includes application development, maintenance, and support. The markets served by the company are financial services and insurance, healthcare, manufacturing, government, transportation, communications, and consumer and retail industries.
Salary Range: $130k-$140k/Annum + Benefits.
Job Description:
- We are looking for Network Security and Zscaler SME. Network Security Engineer with significant experience with the Zscaler Internet Access (ZIA) and Zscaler Private Access (ZPA) products.
- Years of experience needed: 6 – 10 years
- Support team by building, configuring, troubleshooting, and updating the network security capabilities that protect core networks and information.
- Plan and perform maintenance and upgrade of Firewalls [Cisco ASA, Palo Alto, Juniper Firewall].
- Monitor network connectivity and ensure high quality data transmission using standard network tools.
- Serve as a liaison with 3rd party vendors and providers and be able to coordinate troubleshooting and provide real time updates via standard collaboration tools.
- Provide direct end user support to a diverse user base ranging from average desktop users to other IT and Information Security Professionals.
- Establish and maintain standard operating procedures for operations team members.
- Participate in an on-call rotation to provide emergency support for the corporate network security environment.
- Provide feedback to team leadership to improve existing solutions so they better meet the business’ needs.
- Provide technical leadership to mid and junior engineers.
- Help customers from around the enterprise troubleshoot and resolve their network security related issues.
- · Provide technical support for system upgrades, technical refreshes, or new builds per requirements set by the leadership team as well as functional leads.
- Be a technical resource for individual projects when his or her knowledge and experience meet the requirements of the project group or task.
- Provide critical incident response & problem management including root cause of system problems, such as configuration issues resulting in operational performance degradation or system outages, supporting the government with information and advice on the necessary correction actions and/or interim workarounds relative to network security.
- Provide documentation support for designs, implementations, configurations, knowledge base articles relative to network security.
- Support the project lifecycle for network security projects as well as projects with dependencies on network security
- Develop and maintain technical documentation and diagrams related to the field communications systems equipment & networks
- Ensure documentation relative operational procedures, services, etc., are written and centrally accessible and updated as necessary
- Provide ZIA/ZPA operational support in the management, maintenance, upgrading, risk analysis, and response/troubleshooting/issue management activities to ensure security policies and requirements are being factored into the solutions within the infrastructure.
- Provide network consultation during operational support activities focused on providing network access to Internet based sites (URL categories) within ZIA.
- Provide network operational support focused on Internet access security policies management (Cloud App) within ZIA.
- Understand the Traffic Flows for both Https (web Traffic) standard and custom application-based traffic and accordingly design solution around it for Firewalling and Proxy services.
- Monitor ZPA operational support for customer application configuration and access issues for customer application teams.
- Provide ZPA app connector operational support.
- Create, manage, and maintain all SOPs, CONOPS, Installation/Configuration Guides.
- Provide consultation assisting with the development of ZPA access and firewall policies for new applications.
- Assist other senior consultants with analysis, evaluation and preparation of recommendations for system improvements, optimization, development, and/or maintenance efforts.
- The Individual must possess the ability to analyze and understand a variety of existing and emerging business requirements, interface with technology engagement teams as a fully seasoned and proficient perimeter solutions engineer, in providing best in class firewall/IDS/WAF solutions that align to meet business and technology requirements.
- Candidate will be a strong engineering minded individual with polished collaboration, written, and communication skills and a proven track record interacting with various levels of management, clients, and technical team members in delivering technical perimeter solutions.
- Knowledge of network security architecture concepts including topology, protocols, components, and principles (e.g., application of defense-in-depth)
- Knowledge of service management concepts for networks and related standards (e.g., Information Technology Infrastructure Library, current version [ITIL]).
- Knowledge of the enterprise information technology (IT) architectural concepts and patterns (e.g., baseline, validated design, and target architectures.)
- Knowledge of security system design tools, methods, and techniques.
- Knowledge of network systems management principles, models, methods (e.g., end-to-end systems performance monitoring), and tools.
- Skill in applying and incorporating information technologies into proposed solutions
- Knowledge of cybersecurity and privacy principles
- Experience providing O&M and engineering support to complex, mission-critical systems
- Experience working closely with customers and users to troubleshoot and resolve complex network related issues
- Ability to work and brief customers to include senior management
- Knowledge of management of classified systems and the required security guidelines associated with secure facilities
- Must be able to work collaboratively with other system administrators, system engineers, and network engineers in a team environment
- Significant experience in the implementation, operational support, and troubleshooting of ZIA/ZPA products.
- Excellent troubleshooting and customer service
- Knowledge of firewalls and firewall configuration
- Knowledge of network communications
- Knowledge of application usage of ports/protocols
- Understanding of data center firewall topology and communication paths
- Understanding data center security policies, Understanding application communications
- Understanding of advanced threat detection in an enterprise environment
- Understanding of malware families, their types, and the threat they pose
- Experience designing, developing, integrating, implementing, operating, and analysis of cybersecurity technologies
- Skill in independently making configuration updates to ensure system availability requirements.
- 6+ years of experience in an enterprise network or security environment.
- Must have network and firewall engineering experience designing, implementation, and maintaining network infrastructure and Layer 2 and 3 networking devices and/or firewall devices such as Juniper, Cisco, or Palo Alto
- Strong knowledge of OSI 7-layer model, TCP/IP and common application layer protocols
- Experience with Implementation and maintenance of Next Generation Firewall Features (Application aware filtering, DNS, IPS, Web filtering, SSL Inspection)
- Experience with Palo Alto Products
- Knowledge of NIST SP 800 53 series or ISO 27000 series documents
- Experience with managing SSL, and IPSEC VPN clients and site to site VPNs
- Should have at least 7 years of experience implementing and managing advanced network security environments for a medium to large size organization.
- Network/Cyber Security Training or Certification (ie Security+, Network+, Splunk, FireEye, CCNA, CCIE, etc.)
- Bachelor's degree and 6+ years of prior relevant experience; additional work experience or Cyber courses/certifications.
About ApTask:
ApTask is a leading global provider of workforce solutions and talent acquisition services, dedicated to shaping the future of work. As an African American-owned and Veteran-certified company, ApTask offers a comprehensive suite of services, including staffing and recruitment solutions, managed services, IT consulting, and project management. With a focus on excellence, collaboration, and innovation, ApTask provides unparalleled opportunities for professional growth and development. As a member of the ApTask team, you will have the chance to connect businesses with top-tier professionals, optimize workforce performance, and drive success across diverse industries. Join us at ApTask and be part of our mission to empower organizations to thrive while fostering a diverse and inclusive work environment.
Applicants may be required to attend interviews in person or by video conference. In addition, candidates may be required to present their current state or government issued ID during each interview.
Candidate Data Collection Disclaimer:
At ApTask, we prioritize safeguarding your privacy. As part of our recruitment process, certain Personally Identifiable Information (PII) may be requested by our clients for verification and application purposes. Rest assured, we strictly adhere to confidentiality standards and comply with all relevant data protection laws. Please note that we only collect the necessary information as specified by each client and do not request sensitive details during the initial stages of recruitment.
If you have any concerns or queries about your personal information, please feel free to contact our compliance team at businessexcellence@aptask.com .