Job Openings Zero Trust Security Engineer - 10750177

About the job Zero Trust Security Engineer - 10750177

Zero Trust Security Engineer – Zscaler | Eindhoven, Netherlands (Onsite)

Location: Eindhoven, Netherlands
Contract Duration: 6 Months
Start Date: ASAP
Work Model: Complete Onsite
Experience Required: 6–8 Years

We are seeking an experienced Zero Trust Security Engineer with strong expertise in Zscaler Cloud Security Services to support the design, implementation, and evolution of a modern Zero Trust Architecture (ZTA) environment. This role will focus on engineering secure access solutions, driving modernization initiatives, and transitioning enterprise environments away from legacy network-centric security models.

Key Responsibilities

  • Lead the engineering and optimization of the Zscaler Zero Trust Exchange platform, including:
    • Zscaler Internet Access (ZIA)
    • Zscaler Private Access (ZPA)
    • Zscaler Identity
  • Conduct Proof of Concept (POC) evaluations for new Zero Trust features and enhancements within development environments.
  • Design and execute migration strategies from traditional VPN and proxy technologies to identity-based access solutions.
  • Drive continuous improvements across Zero Trust platforms, including:
    • PAC file optimization
    • SSL inspection enhancements
    • API-driven policy automation
  • Provide validated Gold Image configurations and troubleshooting documentation to Operations and NOC teams.
  • Collaborate closely with Identity, Cloud, and Network teams to align Zero Trust policies with authentication and connectivity requirements.
  • Support operational readiness and contribute to enterprise-wide security modernization initiatives.

Required Skills & Experience

  • Expert-level experience with:
    • Zscaler Internet Access (ZIA)
    • Zscaler Private Access (ZPA)
  • Strong knowledge of:
    • Zero Trust Network Access (ZTNA)
    • Least-privileged access principles
    • Application segmentation and lateral movement prevention
  • Hands-on experience integrating Identity Providers such as:
    • Okta
    • Azure AD
  • Strong understanding of:
    • SAML
    • SCIM
    • OIDC
  • Proven experience with traditional security technologies:
    • Proxy solutions
    • VPN technologies (IPSec / SSL VPN)
  • Experience with network security engineering and enterprise access management.

Preferred Skills

  • Experience with:
    • Cisco Firepower
    • Cisco ISE
    • Fortigate / Fortimanager
  • Familiarity with enterprise load balancers and advanced firewall technologies.
  • Python scripting or API automation experience.
  • Relevant certifications such as:
    • Zscaler Certified Cloud Professional (ZCCP)


Or refer someone