Senior Network Security Architect (Zscaler Focus)
Overview
We are seeking a highly experienced Senior Network Security Architect to lead the design and implementation of advanced network security infrastructure. This role will play a critical part in modernizing and securing the organization s network environment, while enabling existing engineering resources to focus on firewall governance and platforms such as FireMon.
This position requires a security-first architect someone deeply rooted in cybersecurity principles who also possesses strong networking expertise. The ideal candidate thrives in complex, legacy environments and can independently navigate unconventional challenges and edge-case scenarios without requiring heavy oversight.
Key Responsibilities
Architect, design, and implement scalable and secure network security solutions with a strong emphasis on Zscaler (ZIA, ZPA, ZDX) technologies
Lead the adoption and evolution of Zero Trust Architecture, ensuring alignment with enterprise security strategy
Offload and streamline network engineering efforts by owning security-focused infrastructure initiatives
Design and manage secure connectivity solutions including IPSec/GRE tunnels, DNS architecture, and secure web gateways
Configure and optimize Zscaler policies, SSL inspection, and application access controls
Deploy and manage ZPA App Connectors and monitor performance using ZDX
Troubleshoot complex networking and security issues, including non-standard or legacy configurations
Conduct log analysis, traffic inspection, and deep-dive troubleshooting across multiple security layers
Collaborate with cross-functional teams (network, security, IAM) to ensure cohesive architecture and integration
Provide technical leadership, documentation, and best practices for ongoing operations
Required Skills & Experience
8+ years of hands-on experience in network security architecture and engineering
Deep expertise in Zscaler technologies: ZIA, ZPA, and ZDX
Strong experience with Zscaler Private Access (ZPA/PRA) including console and portal management
Proven background in cloud security, Zero Trust, DNS architecture, and secure web gateways
Advanced knowledge of policy configuration, SSL inspection, and secure access design
Experience with identity integrations (e.g., Azure AD, CyberArk)
Strong understanding of network protocols, routing, and hybrid environments
Demonstrated ability to troubleshoot complex and ambiguous issues ( odd problems ) independently
Experience navigating legacy systems and highly customized environments
Background in penetration testing, red teaming, or offensive security is highly desirable
Proficiency with logging, monitoring tools, and the Zscaler Admin Portal
Ability to work effectively in a 24/7 operational environment
Preferred Qualifications
Zscaler Certifications: ZCP, ZDTA, ZDTE, ZDXA (or equivalent)
Experience with additional security platforms such as Palo Alto and Cisco
Strong written and verbal communication skills with the ability to document architecture and processes clearly
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.
- Dice Id: cxbcsi
- Position Id: Job44514
- Posted 1 hour ago
Never miss an opportunity! Create an alert based on the job you applied for.
