GMS-Senior-Cloud Security-Zscaler

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. 

Cloud Security-Zscaler-Senior 

Responsibilities:

• Design, implement, and oversee Zscaler security solutions, including Zscaler Internet Access (ZIA) and Zscaler Private Access (ZPA).
• Configure and uphold security policies related to web filtering, firewalls, SSL inspection, data loss prevention (DLP), and threat protection.
• Integrate Zscaler with enterprise identity providers such as Azure AD, Okta, and LDAP for authentication and access management.
• Monitor, analyze, and respond to security events and alerts utilizing Zscaler dashboards and logs.
• Conduct troubleshooting and root cause analysis for issues related to connectivity, access, and performance.
• Facilitate secure remote access for users, applications, and workloads across hybrid and cloud environments.
• Collaborate with network, cloud, and Security Operations Center (SOC) teams to ensure a comprehensive security posture.
• Implement and manage VPN-less access and Zero Trust Network Access (ZTNA) frameworks.
• Assist in transitioning from legacy security solutions (firewalls, VPNs, proxies) to the Zscaler cloud platform.
• Maintain documentation for configurations, processes, and incident response protocols.
• Participate in security audits, compliance assessments, and vulnerability evaluations.
• Stay informed about Zscaler product updates, security trends, and industry best practices.

Preferred Requirements:

• Minimum of 3 years of hands-on experience in cloud security or network security.
• Strong practical experience with the implementation of Zscaler ZIA and ZPA.
• Solid understanding of Zero Trust Architecture, Secure Access Service Edge (SASE), and cloud-native security principles.
• Familiarity with networking fundamentals, including TCP/IP, DNS, HTTP/HTTPS, routing, and firewall policies.
• Experience with public cloud platforms such as AWS, Azure, or Google Cloud Platform (GCP).
• Knowledge of integrating Zscaler with Security Information and Event Management (SIEM) tools like Splunk, Microsoft Sentinel, or QRadar.
• Understanding of authentication and authorization mechanisms, including SAML, OAuth, and Multi-Factor Authentication (MFA).
• Hands-on experience with SSL/TLS inspection and certificate management.
• Knowledge of Data Loss Prevention (DLP), Cloud Access Security Broker (CASB), and secure web gateway technologies.
• Ability to effectively analyze logs, traffic flows, and security incidents.
• Exposure to automation or scripting languages (e.g., PowerShell, Python, REST APIs) is a plus.

Relevant Certifications Preferred:

• Zscaler Certified Cloud Professional (ZCCP)
• CCNA / CCNP Security
• Cloud certifications (AZ-500, AWS Security Specialty)
• Strong communication skills and the ability to work collaboratively in an enterprise environment.

EY | Building a better working world 

 
EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets.  

 
Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate.  

 
Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today.