Information Security Engineer

Description of Duties:

• Perform initial configuration and setup of the SASE cloud (Internet Access, Private Access, digital experience, SAML, add-ons, etc.), specifically ZScaler.
• Assist with various implementation projects as they relate to Azure, Intune, Office 365, and application cloud migrations.
• Investigate and apply SASE best practices.
• Day to day administration of the SASE (ZScaler) tool.
• Document SASE standard operating procedures and protocols.
• Create SASE dashboards and reports to monitor and ensure SASE health.
• Coordinate and leverage threat intelligence to prevent and remediate vulnerabilities and threats.
• Receive and fulfill technical work assignments via ServiceNow and data calls.
• Fulfill policy requests to fine tune operations of the SASE following Standard Operating Procedures.
• Monitor, troubleshoot and resolve user experience issues and provide remediation recommendations.
• Assist other system and Security Engineers in optimizing policies and user configuration.
• Reply to all customer (agency) inquiries within the required SLA and MTTR.
• Document issues and escalate to next tier or vendor support, as necessary.
• Monitor systems consoles and remediate alerts.
• Perform policy administration for web proxies, URL filtering, secure web gateway, CASB, and data loss prevention.
• Integration with Microsoft products like Azure Active Directory and Microsoft Conditional Access Policies.
• Integration with EDR products like CrowdStrike.

Qualifications

• Bachelor’s and five (5) years or more experience; Masters and three (3) years or more experience; may accept additional experience in lieu of degree.
• Zscaler implementation experience is required.
• Experience in the development of security policies for:
• Firewalls
• Secure Web Gateway
• CASB
• Web Proxy
• Data Loss Prevention
• Sandbox/detonation chamber
• Anti-virus
• Integration experience in at least one of the following areas:
• SASE client configuration
• Identity Provider integration (preferably Azure AD)
• Threat intelligence sharing (preferably CrowdStrike)

Desired Experience/Skills/Attributes

• Federal Government implementation experience a plus.
• Zero Trust awareness and experience a plus.
• Zero trust certifications a plus.
• Vendor certifications a plus.
• Federal Zero Trust implementation/integration experience a plus.

Job Type: Full-time

Pay: $125,000.00 - $130,000.00 per year

Benefits:

• 401(k)
• Dental insurance
• Health insurance
• Paid time off
• Vision insurance

Compensation package:

• Yearly pay

Experience level:

• 4 years
• 5 years

Schedule:

• Monday to Friday

Education:

• Bachelor's (Required)

Experience:

• zScaler Implementation: 5 years (Required)
• develop security policies for Firewalls, Web Proxy etc: 4 years (Required)
• Integration with SASE or Azure AD or CrowdStrike: 4 years (Required)
• Zero Trust: 3 years (Required)

Security clearance:

• Confidential (Preferred)

Ability to Commute:

• Washington, DC 20554 (Required)

Ability to Relocate:

• Washington, DC 20554: Relocate before starting work (Required)

Work Location: Hybrid remote in Washington, DC 20554