Senior Security Engineer (Zscaler, MS Defender & Tenable)

Help AG is looking for a talented and experienced Senior Security Engineer (Zscaler, MS Defender & Tenable) who will lead the implementation, administration, and optimization of the security solutions, particularly across Zscaler ZIA, ZDX, ZTNA, Microsoft Defender XDR Suite, and Tenable Security Center (SC). This role requires deep technical knowledge, strong troubleshooting capabilities, and experience in automating and scaling enterprise security operations.

Requirements

Responsibilities:

Zscaler ZIA (Zscaler Internet Access):

• Configure and manage ZIA policies including:

o   URL Filtering

o   SSL Inspection

o   Cloud Firewall (L3–L7 firewall rules)

o   DNS control and web filtering

o   Cloud Application Control (CASB policies)

• Define DLP policies and custom dictionaries for data exfiltration prevention.

• Manage Zscaler Client Connector deployment and troubleshoot end-user connectivity issues.

• Use Zscaler Admin Portal and Zscaler API for advanced automation and policy updates.

• Monitor ZIA logs and correlate events using SIEM and Zscaler NSS (Nanolog Streaming Service).

Zscaler ZDX (Zscaler Digital Experience):

• Configure and tune ZDX sensors to monitor app, network, and device health.

• Set up performance KPIs and dashboards for digital experience scoring.

• Investigate latency and performance degradation using path traces and hop diagnostics.

Zscaler ZTNA (Private Access):

• Configure Zscaler Private Access (ZPA) for secure access to internal applications.

• Implement identity-based access control using SAML/SSO and IdP integration.

• Define App Segments, Access Policies, and Client Connector rules for private apps.

• Conduct Zero Trust maturity assessments and advise on policy hardening. 

Defender for Endpoint (MDE):

• Deploy onboarding packages via GPO, Intune, or scripts.

• Configure and monitor:

o   Real-Time Protection (RTP)

o   Tamper Protection

o   Attack Surface Reduction (ASR) rules

o   Application and device control

• Create custom detection rules using Advanced Hunting with KQL.

• Analyze device behavior anomalies and respond to EDR alerts.

Defender for Identity / Azure ATP:

• Monitor and analyze lateral movement, privilege escalation, and reconnaissance activity.

• Integrate with on-prem AD for hybrid identity protection.

Defender for Cloud Apps & Email:

• Configure app discovery, OAuth app governance, and anomaly detection.

• Integrate Microsoft Defender XDR data into SIEM (e.g., Microsoft Sentinel/Splunk).

Tenable Security Center (SC):

• Configure and schedule credentialed and uncredentialed vulnerability scans.

• Create custom scan policies and plugins for:

o   OS

o   Network devices

o   Databases

o   Web applications

• Analyze plugin outputs, CVE mappings, and exploitability ratings.

• Define asset criticality, tags, and scan zones.

• Generate technical and executive vulnerability reports.

• Perform compliance auditing against frameworks like CIS, NIST, PCI-DSS.

Automation & Scripting (Preferred):

• Experience with PowerShell, Python, or Bash scripting for automation.

• Use REST APIs from Zscaler, Tenable, and Microsoft for integration tasks.

• Automate ticket creation and remediation tracking in Jira/ServiceNow.

Integration & Monitoring:

• Work with SIEM platforms to forward logs from Zscaler, Defender, and Tenable.

• Correlate data to create actionable security incidents and dashboards.

• Implement playbooks in Sentinel/SOAR platforms for automated response.

Qualifications & Skills:

• College degree or equivalent training with experience working in a Security Operations Center, Managed Security, or client network environment.

• 5–8 years of experience in Cybersecurity or Infrastructure Security roles.

• Hands-on experience with Zscaler ZIA, ZPA/ZTNA, and ZDX.

• Strong command over Microsoft Defender XDR Suite (MDE, MDI, Defender for Cloud Apps).

• Working knowledge of Tenable Security Center or Tenable.io.

• Preferred Certifications:

• Zscaler Certified Professional (ZCP) – ZIA/ZPA

• Microsoft Certified: SC-200 / SC-300 / AZ-500

• Tenable Certified Professional

• Security+ / CEH / CISSP / CISM (optional, but a plus)

• Strong analytical and problem-solving skills.

• Excellent documentation, reporting, and communication capabilities.

• Ability to manage priorities, work independently, and collaborate cross-functionally.

Benefits:

• Health insurance with one of the leading global providers for medical insurance.

• Career progression and growth through challenging projects and work.

• Employee engagement and wellness campaigns activities throughout the year.

• Excellent learning and development opportunities.

• Inclusive and diverse working environment.

• Flexible/Hybrid working environment.

• Annual flight tickets to home country.

• Open door policy.

About Us:

Help AG is the cybersecurity arm of e& enterprise (formerly Etisalat Digital) and provides leading enterprise businesses and governments across the Middle East with strategic consultancy combined with tailored information security services and solutions that address their diverse requirements, enabling them to evolve securely with a competitive edge.

Present in the Middle East since 2004, Help AG was strategically acquired by e& (formerly Etisalat Group) in Feb 2020, hence creating a cybersecurity and digital transformation powerhouse in the region.

Help AG has firmly established itself as the region's trusted IT security advisor by remaining vendor-agnostic, trustworthy, independent, and cybersecurity focused. With best-of-breed technologies from industry-leading vendor partners, expertly qualified service delivery teams and a state-of-the-art consulting practice, Help AG delivers unmatched value to its customers by strengthening their cyber defenses and safeguarding their business.