Zscaler Engineer [ 17218] at ATR Arena Technical Resources

Position Title: ZSCALER Engineer

Location: Remote – Washington, D.C.
Clearance: Public Trust Clearance is required to start

Position Overview:

We are seeking an ZSCALER Engineer to join our team in support of a new
contract at the Food and Drug Administration (FDA). This position will
be performed remotely with the occasional need for an onsite meeting in
the Washington D.C. area. We are seeking a highly experienced Zscaler
engineer that will leverage Zscaler technologies implement ZTNA across
our datacenters and remote offices. The ideal candidate will have a
robust background in cybersecurity, and networking best practices.
Working with Project Team Leads and Project Managers to produce high
quality products.

Duties and Responsibilities:

- Performs security, compliance, and risk assessments on projects
throughout project lifecycle

- Collaborates and participates on identification of security needs &
recommends plans/resolutions

- Implements, tests & monitors info security improvements

- Maintains visibility inside & outside of info security at an
Engineering professional level

- Collaborate with groups such as end user support, service desk,
development teams, etc

- Help deliver Zscaler solutions across the organization

- Zscaler Infrastructure Design and Implementation: Design and
implement the infrastructure required to support our Zscaler
environment. Collaborate with network and security teams to
architect scalable and highly available solutions. Configure and
deploy Zscaler components such as web security, data loss
prevention, cloud application security, and SSL inspection

- Continuous Integration and Deployment: Establish and maintain a
robust and efficient CI/CD pipeline for deploying Zscaler updates
and configurations. Automate the deployment process, including
testing, monitoring, and rollback mechanisms

- Continuously improve the deployment pipeline to enhance efficiency
and reduce downtime

- Configuration Management: Develop and maintain configuration
management processes and tools for managing Zscaler configurations

- Ensure consistency and version control across the Zscaler
infrastructure

- Automate configuration changes and enforce compliance with security
policies and standards

- Monitoring and Performance Optimization: Implement monitoring
solutions to proactively determine and resolve issues within the
Zscaler environment

- Monitor system performance, network traffic, and security events.
Optimize Zscaler performance through capacity planning, load
balancing, and fine-tuning configurations

- Incident Response and Troubleshooting: Collaborate with security and
network teams to investigate and resolve incidents related to the
Zscaler platform. Troubleshoot issues with connectivity,
performance, and security. Develop and maintain runbooks and
playbooks for incident response and recovery procedures

- Security and Compliance: Work closely with security teams to ensure
Zscaler configurations align with security policies, standard
processes, and regulatory requirements. Perform security
assessments, vulnerability scans, and penetration tests. Implement
security controls, access management, and encryption mechanisms as
needed

- Partnership and Documentation: Collaborate with cross-functional
teams, including network engineers, security analysts, and
developers, to ensure smooth integration of Zscaler into the overall
infrastructure. Document system configurations, procedures, and
troubleshooting guidelines. Share knowledge and deliver training to
team members on Zscaler operations and standard processes

- Technical Support and Troubleshooting

- Provide advanced technical support for Zscaler-related issues.

- Create and maintain comprehensive documentation of Zscaler
configurations, procedures, and processes

- Generate regular reports on system performance, security incidents,
and maintenance activities

Education and Experience Required:

- Bachelor’s degree or prior, relevant experience in lieu of a degree

- At least 3 years of hands-on experience with ZPA and ZIA
administration and management

- Strong understanding of network protocols and services (TCP/IP, DNS,
VPN, etc.)

- Experience with WAFs, NGINX reverse proxies, and AWS networking
components is a plus

- Knowledge of scripting languages (PowerShell, Python) for automation

- Cybersecurity certification preferred

- At least 3 years of hands-on experience with ZPA and ZIA
administration and management

- Deep understanding of Zscaler capabilities

- Proficiency in ZIA, ZPA configurations

- Complex configurations (ZENs, local internet breakouts, traffic
routing, etc.)

- ZENs; local internet breakout optimization

- Experience with SSL/TLS inspection, cloud firewall, DLP, and
sandboxing

- Strong grasp of IAM principles - including SSO, MFA, and RBAC

- Security Policy design and management - internet and application
access, etc

- Performance and scalability planning (traffic loads, M&A's, etc.)

- Demonstrated successful deployment of Zscaler, into production

- Post deployment Zscaler Engineering optimization and performance

- Deep understanding of enterprise network architecture - WAN, VPN,
and hybrid cloud

- Traffic Routing, split tunneling, capacity planning, load balancing,
redundancy/failover, business critical application performance,
troubleshooting & resolution, and training

- Compliance & Data privacy

- Integration of Zscaler with other enterprise solutions such as
Splunk, endpoint protection, CASB

- Ensure seamless interoperability with our network appliances and
cloud services

- Experience with Zscaler analytics and reporting capabilities

- Experience providing high-level architectural expertise to managers
and technical staff

- Experience producing quality documentation

- Experience working with Federal government clients

Desired Skills:

- Identity, Credential, and Access Management (ICAM) knowledge and
experience

- Cyber Security knowledge and experience

- Microsoft 365 knowledge and experience

- Excellent verbal and written communication skills, with the ability
to explain technical concepts to non-technical stakeholders

- Strong analytical and troubleshooting abilities to diagnose and
resolve complex technical issues

- SharePoint knowledge and experience a plus

- Platform and data migration knowledge and experience a plus

- Cloud knowledge and experience a plus

Arena Technical Resources, LLC, (ATR) is an Equal Opportunity Employer
(EOE) who will provide equal employment opportunity to employees and
applicants for employment without regard to race, ethnicity, religion,
color, sex, pregnancy, national origin, age, veteran status, ancestry,
sexual orientation, gender identity or expression, marital status,
family structure, genetic information, or mental or physical disability.