Description of Duties:
- Perform initial configuration and setup of the SASE cloud (Internet Access, Private Access, digital experience, SAML, add-ons, etc.), specifically ZScaler.
- Assist with various implementation projects as they relate to Azure, Intune, Office 365, and application cloud migrations.
- Investigate and apply SASE best practices.
- Day to day administration of the SASE (ZScaler) tool.
- Document SASE standard operating procedures and protocols.
- Create SASE dashboards and reports to monitor and ensure SASE health.
- Coordinate and leverage threat intelligence to prevent and remediate vulnerabilities and threats.
- Receive and fulfill technical work assignments via ServiceNow and data calls.
- Fulfill policy requests to fine tune operations of the SASE following Standard Operating Procedures.
- Monitor, troubleshoot and resolve user experience issues and provide remediation recommendations.
- Assist other system and Security Engineers in optimizing policies and user configuration.
- Reply to all customer (agency) inquiries within the required SLA and MTTR.
- Document issues and escalate to next tier or vendor support, as necessary.
- Monitor systems consoles and remediate alerts.
- Perform policy administration for web proxies, URL filtering, secure web gateway, CASB, and data loss prevention.
- Integration with Microsoft products like Azure Active Directory and Microsoft Conditional Access Policies.
- Integration with EDR products like CrowdStrike.
Qualifications
- Bachelor’s and five (5) years or more experience; Masters and three (3) years or more experience; may accept additional experience in lieu of degree.
- Zscaler implementation experience is required.
- Experience in the development of security policies for:
- Firewalls
- Secure Web Gateway
- CASB
- Web Proxy
- Data Loss Prevention
- Sandbox/detonation chamber
- Anti-virus
- Integration experience in at least one of the following areas:
- SASE client configuration
- Identity Provider integration (preferably Azure AD)
- Threat intelligence sharing (preferably CrowdStrike)
Desired Experience/Skills/Attributes
- Federal Government implementation experience a plus.
- Zero Trust awareness and experience a plus.
- Zero trust certifications a plus.
- Vendor certifications a plus.
- Federal Zero Trust implementation/integration experience a plus.
Job Type: Full-time
Pay: $125,000.00 - $130,000.00 per year
Benefits:
- 401(k)
- Dental insurance
- Health insurance
- Paid time off
- Vision insurance
Compensation package:
- Yearly pay
Experience level:
- 4 years
- 5 years
Schedule:
- Monday to Friday
Education:
- Bachelor's (Required)
Experience:
- zScaler Implementation: 5 years (Required)
- develop security policies for Firewalls, Web Proxy etc: 4 years (Required)
- Integration with SASE or Azure AD or CrowdStrike: 4 years (Required)
- Zero Trust: 3 years (Required)
Security clearance:
- Confidential (Preferred)
Ability to Commute:
- Washington, DC 20554 (Required)
Ability to Relocate:
- Washington, DC 20554: Relocate before starting work (Required)
Work Location: Hybrid remote in Washington, DC 20554