Title: Security Engineer – Segmentation and Zero Trust
Duration: 12 months with possible extension
Location: 100% Remote Work – (Downey, CA
Pay Rates: W2 Acceptable Job Description: Position Description A Security Engineer serves as the security engineer of complex technology implementations in a product-centric environment; is comfortable with bridging the gap between legacy development or operations teams and working toward a shared culture and vision; works to ensure developers create the most secure systems while enhancing the privacy of all system users; and has experience with white-hat hacking and fundamental computer science concepts. The Security Engineer will perform security audits, risk analysis, application-level vulnerability testing, and security code reviews; develop and implement technical solutions to help mitigate security vulnerabilities; and conduct research to identify new attack vectors. Skills Required: Security Engineers will possess knowledge and experience in safeguarding sensitive data from cyber-attacks. Skills Preferred
- Proficiency in designing and deploying security solutions leveraging network segmentation and zero trust frameworks.
- Expertise in identifying security vulnerabilities, evaluating risks, and applying zero trust and network segmentation strategies to enhance security posture.
- Skilled in developing and maintaining network segmentation policies to ensure secure, role-based access to internal systems and applications.
- Strong capability in utilizing Azure Active Directory, managing security groups, and configuring enterprise applications.
- Advanced skills in configuring and managing NAT, PAT, firewall rules, security policies, and access-lists (standard and extended) on Cisco firewalls.
- Skilled in managing and optimizing large-scale secure environments, such as Zscaler or similar systems, supporting 20,000+ users.
- Strong interpersonal, verbal, and written communication skills with a focus on delivering exceptional customer service.
Experience Required
This classification must have a minimum of ten (10) years of experience with developing and implementing technical solutions to help mitigate security vulnerabilities.
Experience Preferred
- Two (2) years of experience within the last three (3) years designing, implementing network access control using zero trust principles and frameworks.
- Two (2) years of experience within the last three (3) years designing and implementing security strategies to improve security posture, focused on network segmentation and zero trust architectures (ZTA).
- Two (2) years of experience within the last three (3) years designing, implementing, upgrading, and troubleshooting Zscaler in a multi-tenancy and high availability environments.
- Three (3) years of experience within the last five (5) years as a Security Engineer, or similar, supporting an enterprise network environment with at least 1,000 servers, 20,000 or more users, and multiple firewalls, switches, and routers. Education Required
This classification requires the possession of a bachelor's degree in an IT-related or Engineering field. Additional qualifying experience may be substituted for the required education on a year-for-year basis.
Education Preferred
One or more of the following Certificates:
- Cisco Certified Network Professional/Specialist (CCNP) - Certified in Cybersecurity (CC) or Certified Information Systems Security Professional (CISSP) - Zscaler Certified Cloud Administrator – Private Access (ZCCA-PA)