RemoteLeaf Logo
Log in Sign up

Principal Consultant, Zscaler ZIA/ZPA and Zero Trust Architecture

21 hours, 53 minutes ago
United States
Full-time
Lead
Consultant
Operations
AWS Azure CrowdStrike DNS GCP SIEM SOC Splunk Terraform TLS
Apply Now
DevAltus

DevAltus

DevAltus is a New York-based SaaS architecture consulting company with expertise in Core Java programming, security, and infrastructure. With nearly thirty years of experience, our team excels in product management, high-performance computing, API deve...

Internet Software & Services
View All Jobs

Description

  • Design and deliver end-to-end Zero Trust architectures using ZTNA, Zscaler ZIA/ZPA, and SSE/SASE frameworks.
  • Architect DIA-first strategies that remove centralized egress and legacy network dependencies.
  • Lead the transition from VPN and MPLS to modern secure access models.
  • Lead full lifecycle Zscaler implementations across enterprise environments.
  • Configure, optimize, and continuously refine ZIA traffic forwarding, ZPA segmentation, and related policies.
  • Implement security controls such as URL filtering, SSL inspection, CASB, and DLP.
  • Troubleshoot complex issues across TLS, DNS, proxy, and application layers.
  • Integrate Zscaler with SD-WAN platforms and implement DIA-based traffic steering using GRE/IPsec tunnels.
  • Establish reusable architecture patterns, standards, and best practices, and mentor engineers.
  • Act as a trusted advisor to clients on Zero Trust strategy, technical discovery, solution validation, and stakeholder alignment.
  • Align solutions with compliance and risk frameworks such as NIST, NERC-CIP, and ISO, ensuring designs are audit-ready.

Requirements

  • 8–12+ years of experience in network security, Zero Trust, or secure access architecture roles.
  • Deep expertise in Zscaler ZIA and ZPA, including policy design, optimization, and troubleshooting.
  • Strong experience designing and implementing Zero Trust Network Access (ZTNA) and SSE/SASE architectures.
  • Proven experience building DIA-first architectures and replacing VPN/MPLS-based designs.
  • Strong networking fundamentals, including DNS, TLS, proxy architectures, and traffic flow design.
  • Experience integrating Zscaler with SD-WAN platforms and implementing GRE/IPsec tunnels.
  • Solid understanding of identity providers such as Entra ID (Azure AD) or Okta, including conditional access and device posture.
  • Experience with security policy frameworks including URL filtering, SSL inspection, CASB, and DLP.
  • Strong troubleshooting skills across network and application layers.
  • Excellent communication skills with experience engaging both technical teams and business stakeholders.
  • Must be legally authorized to work in the United States without employer sponsorship.
  • Must be a resident of the continental United States.
  • Experience with automation using APIs, Terraform, or similar tooling is a plus.
  • Experience working in regulated industries such as energy, utilities, finance, or healthcare is preferred.
  • Familiarity with endpoint management and device posture enforcement tools such as Intune or CrowdStrike is a plus.
  • Exposure to enterprise compliance frameworks such as NIST, NERC-CIP, or ISO is a plus.
  • Knowledge of SIEM platforms such as QRadar or Splunk is a plus.
  • Familiarity with cloud security architectures across Azure, AWS, or GCP is a plus.

Benefits

  • $150,000–$300,000 annual compensation.
  • W2 employment.
  • Full benefits package.
  • 401(k) with 6% employer matching.
  • Health insurance.
  • Dental insurance.
  • Vision insurance.
  • Paid time off.
  • Life insurance.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

SAP Fioneer

Senior Manager Strategy & IT Transformation m/f/d

SAP Fioneer 1K-5K Internet Software & Services

SAP Fioneer is seeking a Senior Manager to lead strategy and transformation work for financial services clients, shaping co-innovation initiatives and driving complex business and IT transformation programs.

Germany Full-time Lead Consultant Project Manager
SAP
1 hour, 32 minutes ago
Kodiak Solutions

Net Revenue Consultant

Kodiak Solutions Diversified Financial Services

Kodiak Solutions is seeking a Net Revenue Consultant to support healthcare organizations with hospital and health system net revenue operations and financial analysis.

Anywhere Full-time Junior Consultant
8 hours ago
Education First

Senior Consultant

Education First 51-250 Professional Services

Education First is hiring a Senior Consultant to lead client projects that improve K-12 and P-20 education systems, with a focus on systems coherence, student pathways, staffing, and the strategic use of AI.

United States Full-time Lead Consultant
$134k-$134k
13 hours, 21 minutes ago
American College of Education

Student Concern Response Team (Contractor)

American College of Education 251-1K Education Services

American College of Education is seeking a consultant to help implement a Student Concern Response Team for its online learning environment, guiding institutional processes for assessing and coordinating responses to serious student concerns while supporting student success and safety.

United States Contract Senior Consultant
$2k-$2k
13 hours, 25 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers