Netskope Engineer

Job Title : Netskope Engineer

Location : Atlanta, GA (Onsite Role)

Duration : 12 Months

Job Description: Core Responsibilities:

Assist in deploying and configuring Netskope SWG: Support the deployment and configuration of Netskope Secure Web Gateway (SWG) in inline proxy mode using IPsec/GRE tunnels and steering clients for office locations and remote users.

Support policy implementation: Help define and implement policies and profiles for URL filtering, threat detection, data loss prevention (DLP), cloud application access, instance awareness, and adaptive access.

Participate in testing security policies: Assist in conducting testing and validation of security policies using malware scenarios, DLP scenarios, threat feeds, and simulated user behavior.

Document processes: Contribute to documenting processes and delivering knowledge transfer through standard operating procedures (SOPs), runbooks, playbooks, and internal training to empower teams on SWG operations.

Support network segmentation strategies: Aid in designing and managing network segmentation strategies with clear zones, access control lists (ACLs), and micro-segmentation tailored for compliance and threat isolation.

Assist in incident response efforts: Participate in incident response efforts involving SWG, including malware blocks and data exfiltration alerts related to network segmentation.

Ensure regulatory compliance: Support ongoing regulatory compliance with standards like PCI, GDPR, and HIPAA through DLP policy enforcement and audit documentation.

Integrate APIs: Assist in integrating APIs with other security tools to enhance the functionality and interoperability of Netskope SWG.

Collaborate across teams: Communicate clearly and work collaboratively across teams and stakeholders in a remote environment.

Required Skills & Experience:

Basic experience with Netskope SWG or similar platforms: Familiarity with deploying and managing Netskope SWG or similar next-generation secure web gateways.

Understanding of web filtering and threat protection: Basic knowledge of web filtering, threat protection, TLS inspection, DLP, and cloud application policy enforcement.

Knowledge of network segmentation: Understanding of network segmentation design for security zones, internal prevention, and access control.

Skills in testing security policies: Ability to assist in testing and validation of security policies, including threat emulation, DLP scenarios, and policy profiling.

Technical writing skills: Basic technical writing skills for SOPs, test plans, and configuration guides.

Communication skills: Good communication skills with the ability to explain concepts to diverse teams.

Ability to work independently: Self-starter capable of working independently in a distributed or remote setup.

Desirable (Nice-to-Have):

Certifications: Interest in pursuing certifications like Netskope Accredited Professional, CISSP, CCNP Security, or equivalent.

Experience with SASE or Zero Trust platforms: Exposure to SASE, Zero Trust, CASB, or SWG platforms in scale-out/cloud environments.

Familiarity with network security tools: Basic familiarity with network security tools such as firewalls, SIEM, EDR, SOAR, sandboxing.

Exposure to automation tools: Interest in automation and infrastructure as code using Terraform, Ansible, Python.

Preferred Qualifications/Skills:

Bachelor s degree or equivalent experience: Bachelor s degree in information systems (IS), computer science, management information systems (MIS) management, or related field, or equivalent combination of education and experience needed.

Knowledge of ITIL framework: Basic understanding of ITIL framework; ITIL Foundation Certified is a plus.