Zscaler Engineer

Key Responsibilities:

• Deploy, configure, and manage Zscaler services (ZIA, ZPA, ZDX) and other security technologies such as EDR, DLP, secure web gateway, email security, IDPS, firewall, SIEM, and identity protection tools
• Integrate security solutions with Microsoft platforms including Azure AD, Conditional Access, Intune, and Microsoft Defender
• Configure and manage policies, SAML integrations, monitoring, and user onboarding for Zscaler platforms
• Monitor performance, security events, and traffic flow; troubleshoot connectivity, authentication, and application access issues
• Enforce security policies, ensure compliance, and optimize configurations to improve performance and user experience
• Respond to ServiceNow tickets, perform health checks, and support upgrades or migrations
• Write and maintain technical documentation (SOPs, change records) and automate routine tasks using scripting (PowerShell, Python, Bash)
• Collaborate with engineering, operations, and compliance teams to strengthen overall security posture

Qualifications

Basic Qualifications:

• Bachelor s degree in Cybersecurity, IT, or related field (or 8+ years of equivalent experience)
• Minimum 5 years of cybersecurity experience supporting a broad range of tools across cloud, endpoint, identity, and network security domains
• 2+ years of hands-on experience administering Zscaler services (ZIA, ZPA, ZDX), including policy management, SAML integration, and performance monitoring
• Practical experience with tools and platforms such as EDR, DLP, secure web gateway, email security, IDPS, firewalls, SIEM, and identity protection solutions
• Proficiency in Windows and/or Linux system administration, scripting (e.g., PowerShell, Python, Bash), and integrating cloud-native security technologies
• Strong analytical, troubleshooting, and communication skills

Preferred Qualifications:

• Experience in federal or regulated environments
• Familiarity with DNS-layer protection, threat analytics platforms, and Zero Trust architecture
• Exposure to tools such as CrowdStrike, Office 365, Microsoft Defender, and Intune
• Relevant certifications such as Zscaler Certified Administrator, Security+, CySA+, GSEC, Microsoft SC-300, CCNP Security, PCNSE, or Splunk Certified Architect

Clearance Requirement:

• Must be eligible to obtain a U.S. Public Trust Clearance

**This hybrid role requires a minimum of three on-site days per week in Washington, DC**