Network Security SME

Job Description::

Responsibilities:

• Serve as the primary subject matter expert for Zero Trust Network Access (ZTNA) solutions within the organization.

• Lead the research, evaluation, and selection of ZTNA vendors and technologies that align with our security requirements and business objectives.

• Design and architect robust and scalable ZTNA solutions, considering various deployment models (e.g., client-initiated, service-initiated).

• Develop and document comprehensive ZTNA implementation plans, including architecture diagrams, policy frameworks, and integration strategies.

• Collaborate with network engineering, security operations, and application development teams to integrate ZTNA seamlessly into our existing infrastructure and workflows.

• Define and implement granular access policies based on the principles of least privilege, explicit verification, and contextual awareness.

• Configure and manage ZTNA gateways, brokers, and policy enforcement points.

• Integrate ZTNA solutions with existing Identity and Access Management (IAM) systems, including Multi-Factor Authentication (MFA) and Single Sign-On (SSO).

• Develop and maintain documentation related to ZTNA architecture, policies, procedures, and troubleshooting guides.

Qualifications:

• Minimum [Specify Number, e.g., 5-8] years of experience in network security, with a significant focus on access control technologies.

• Extensive knowledge on SDWAN, SDLAN and networking core principles

• Proven expertise or strong working knowledge of Zero Trust Network Access (ZTNA) principles, architectures, and implementation methodologies.

• Hands-on experience with one or more leading ZTNA solutions (e.g., Zscaler, Palo Alto Networks Prisma Access, Okta, Cisco Secure Access, Cloudflare Access, Fortinet).

• Deep understanding of network protocols (TCP/IP, DNS, HTTP/S), firewall technologies, and network segmentation concepts.

• Strong understanding of Identity and Access Management (IAM) principles and technologies (e.g., LDAP, SAML, OAuth, OIDC).

• Experience with implementing and managing Multi-Factor Authentication (MFA) solutions.

• Knowledge of device posture assessment and endpoint security technologies.

• Excellent analytical, problem-solving, and troubleshooting skills.

• Strong communication (both written and verbal) and presentation skills.

• Ability to work independently and collaboratively within a team environment.

• Relevant security certifications such as CISSP, CISM, CompTIA Security+, or vendor-specific ZTNA certifications are highly desirable.