Sr. Network Security Architect- Zscaler- Remote

Senior Network Security Architect (Zscaler Focus)

Overview

We are seeking a highly experienced Senior Network Security Architect to lead the design and implementation of advanced network security infrastructure. This role will play a critical part in modernizing and securing the organization s network environment, while enabling existing engineering resources to focus on firewall governance and platforms such as FireMon.

This position requires a security-first architect someone deeply rooted in cybersecurity principles who also possesses strong networking expertise. The ideal candidate thrives in complex, legacy environments and can independently navigate unconventional challenges and edge-case scenarios without requiring heavy oversight.

Key Responsibilities

Architect, design, and implement scalable and secure network security solutions with a strong emphasis on Zscaler (ZIA, ZPA, ZDX) technologies

Lead the adoption and evolution of Zero Trust Architecture, ensuring alignment with enterprise security strategy

Offload and streamline network engineering efforts by owning security-focused infrastructure initiatives

Design and manage secure connectivity solutions including IPSec/GRE tunnels, DNS architecture, and secure web gateways

Configure and optimize Zscaler policies, SSL inspection, and application access controls

Deploy and manage ZPA App Connectors and monitor performance using ZDX

Troubleshoot complex networking and security issues, including non-standard or legacy configurations

Conduct log analysis, traffic inspection, and deep-dive troubleshooting across multiple security layers

Collaborate with cross-functional teams (network, security, IAM) to ensure cohesive architecture and integration

Provide technical leadership, documentation, and best practices for ongoing operations

Required Skills & Experience

8+ years of hands-on experience in network security architecture and engineering

Deep expertise in Zscaler technologies: ZIA, ZPA, and ZDX

Strong experience with Zscaler Private Access (ZPA/PRA) including console and portal management

Proven background in cloud security, Zero Trust, DNS architecture, and secure web gateways

Advanced knowledge of policy configuration, SSL inspection, and secure access design

Experience with identity integrations (e.g., Azure AD, CyberArk)

Strong understanding of network protocols, routing, and hybrid environments

Demonstrated ability to troubleshoot complex and ambiguous issues ( odd problems ) independently

Experience navigating legacy systems and highly customized environments

Background in penetration testing, red teaming, or offensive security is highly desirable

Proficiency with logging, monitoring tools, and the Zscaler Admin Portal

Ability to work effectively in a 24/7 operational environment

Preferred Qualifications

Zscaler Certifications: ZCP, ZDTA, ZDTE, ZDXA (or equivalent)

Experience with additional security platforms such as Palo Alto and Cisco

Strong written and verbal communication skills with the ability to document architecture and processes clearly