Senior Cyber Security Engineer- Zero Trust
Orlando Health
- United States
- United States
À propos
The Senior Cyber Security Engineer provides technical leadership in the design, implementation, and operationalization of Zero Trust Architecture across enterprise on-premises, cloud, and hybrid environments. This role leads the deployment and optimization of Zscaler and SASE-based security platforms, driving secure access transformation, network modernization, and identity-centric security controls. The engineer partners closely with Security Architecture, IAM, SOC, Network, and Infrastructure teams to implement scalable, policy-driven security solutions that reduce attack surface, improve user experience, and enhance detection and response capabilities. This position plays a critical role in advancing cloud security, secure remote access, and least-privilege access strategies while ensuring alignment with organizational risk, compliance, and resilience objectives. Responsibilities
Essential Functions: Lead design, deployment, and optimization of security solutions for on-premises and cloud environments, ensuring alignment with security requirements and best practices. Lead the design, deployment, and optimization of Zero Trust Architecture, aligning with NIST and industry best practices, including identity-based access, continuous verification, and least-privilege principles. Engineer and operate the Zscaler technology stack, including: Zscaler Internet Access (ZIA) Zscaler Private Access (ZPA) Zscaler Digital Experience (ZDX) Zscaler Client Connector Replace legacy perimeter-based security (VPNs, static firewalls) with cloud-native, identity-aware access controls. Design secure access models for remote users, third parties, and cloud workloads, ensuring consistent policy enforcement regardless of location. Oversee security network tuning and optimization, proactively identifying vulnerabilities, optimizing system performance, and aligning with strategies conceived by Security Architect. Resolve complex security issues, ensuring continuous improvement of security protocols. Drive security standards development and tool/vendor selection to ensure effective security measures. Recommend and implement security enhancements to strengthen the organization's security posture. Collaborate with cross-functional teams (SOC, Resiliency, IAM, etc.) to develop and integrate comprehensive security strategies into infrastructure, operations, and incident response frameworks. High proficiency in network security concepts, such as security event correlation, TCP/IP concepts, DNS, firewall technologies, IPS/IDS, Endpoint protection, routers, switches, perimeter security devices, MFA, encryption and PKI as well as IPSEC and SSL based VPN solutions. Provide expertise in network concepts & protocols, and for Windows, Linux, macOS, and mobile OS, guiding the team on platform-specific security measures. Create and maintain automation scripts (Bash, PowerShell, Python) to streamline security tasks. Stay updated on emerging threats/trends, security laws, principles and practices and proactively adjust strategies. Serve as a subject matter expert and mentor to junior engineers, providing guidance on complex security practices, technical problem-solving, incident handling, and career development. Partner with project teams to ensure that security is designed in all technology initiatives. Aid in the development and refinement of security policies ensuring alignment with regulatory requirements and organizational goals. Ensure risk management and compliance initiatives are supported within TPRM validations. Drive continuous improvement in security operations and security culture. Assist teams in various security and privacy risk mitigation efforts, including incident response. Develop and document security standards, configurations and procedures. Conduct risk assessment and audit on the organization's information technology infrastructure Ensure high availability and effective incident response by actively participating in the 24/7 On-Call rotation and supporting critical escalations as needed. Perform other related duties as required. Maintain reasonably regular, punctual attendance consistent with Orlando Health policies, the ADA, FMLA and other federal, state and local standards. Maintain compliance with all Orlando Health policies and procedures. Qualifications
Education/Training: Bachelor's degree preferred. Associates degree or equivalent and five (5) years of directly related experience may substitute for the Bachelor's degree (in addition to the requirements listed in the Experience section). Licensure/Certification Required: Two or more of the following Security or Network related certification: (SC-200, MS-500, AZ-500, AZ-700, AZ-800, Security+, CISM, CISSP / GIAC (500+ series) / SSCP / PCNSE/Linux+ / or similar) *or ability to obtain within 180 days. Microsoft Purview, Varonis, or Imperva certifications (strongly preferred) Experience: Five (5) years' experience in Information Technology, including three (3) years of IT Security/Engineering related experience.
Compétences linguistiques
- English
Avis aux utilisateurs
Cette offre provient d’une plateforme partenaire de TieTalent. Cliquez sur « Postuler maintenant » pour soumettre votre candidature directement sur leur site.