Looking for a workplace where people realize their full potential, are recognized for the impact they make, and enjoy the company of the peers they work with? Welcome to Zensar! Read on for more details on the role and about us.
Zensar is offering an excellent opportunity for a "Endpoint & NAC Security Assessment Specialist " to advance your career and achieve your goals. Their amazing benefits include a competitive salary, strong benefits package, and a friendly work environment.
Role : Endpoint & NAC Security Assessment Specialist
Location : Sunnyvale, CA
Salary : $130,000 + Benefits
Job Description:
The Endpoint & NAC Security Assessment Specialist is responsible for evaluating, designing, and improving enterprise endpoint security and Network Access Control (NAC) programs. This role performs detailed assessments of current security architecture, policies, integrations, and compliance posture, ensuring alignment with organizational and regulatory standards (e.g., NIST). The role collaborates with Security, IT Operations, Network, and Compliance teams to identify gaps, strengthen controls, and enhance governance across endpoints and network access systems.
Endpoint & NAC Architecture Review
- Assess existing endpoint protection architecture (AV/EDR/XDR) for coverage, segmentation, and scalability.
- Evaluate NAC architecture including deployment models (Inline, Out-of-Band, Agent-based).
- Review endpoint and NAC policies to ensure alignment with organizational security standards and NIST frameworks.
- Validate patch management, vulnerability management, and device onboarding processes.
Configuration, Compliance & Controls Evaluation
- Review NAC configurations, enforcement methods (VLAN, ACL, quarantine), and coverage across the network.
- Validate defined roles, responsibilities, and policy coverage for endpoint and NAC operations.
- Verify endpoint compliance monitoring and NAC enforcement workflows.
- Test guest access, onboarding flows, profiling mechanisms, and device discovery processes.
Risk, Gap Analysis & Reporting
- Identify unmanaged, rogue, or non-compliant devices across the environment.
- Highlight gaps in segmentation, enforcement, policy application, and monitoring.
- Produce detailed assessment reports with findings, risks, recommendations, and remediation priorities.
- Work with cross-functional teams to develop corrective action plans and roadmap improvements.
Preferred Certifications
- CISSP, CCSP, CISM
- Cisco ISE certifications or Forescout Administrator
- CEH, Security+, or similar
- Vendor EDR certifications (CrowdStrike, Microsoft Defender, SentinelOne)
Never miss an opportunity! Create an alert based on the job you applied for.
