Lead Zero Trust Network Engineer

Depository Trust Clearing Corporation - Coppell, TX

posted 4 months ago

Full-time - Mid Level
Coppell, TX
Credit Intermediation and Related Activities

About the position

The Lead Zero Trust Network Engineer at DTCC plays a pivotal role in enhancing the security and reliability of the firm's network infrastructure. This position is centered around the development, implementation, and support of Zero Trust Network Access (ZTNA) solutions, particularly focusing on zScaler products. The engineer will be responsible for the installation, configuration, and programming of operating systems and complex networks, ensuring that all solutions adhere to DTCC's architectural standards and security protocols. The role requires a deep understanding of network security principles and the ability to analyze and evaluate anomalous network and system activity to maintain a secure environment. In this position, the engineer will collaborate with various teams to design solutions that meet DTCC's standards for security, resiliency, and reusability. They will provide immediate support for production issues related to zScaler products, including ZIA, ZPA, and ZDX, and will be involved in off-hour implementations and disaster recovery tests as needed. The engineer will also be responsible for authoring system documentation to ensure clarity of design and minimize future maintenance costs. By participating in the technical decision-making process, the engineer will help deliver targeted business outcomes and analyze changing business requirements to define the future state technical architecture. The Lead Zero Trust Network Engineer will monitor system performance metrics to ensure compliance with established requirements and will align risk and control processes into daily responsibilities to mitigate risks effectively. This role is not limited to the responsibilities outlined above, as the engineer will also assist in training other employees periodically and contribute to the overall improvement of the firm's network security posture.

Responsibilities

  • Analyze and evaluate anomalous network and system activity as it relates to Network Security, Zero Trust.
  • Responsible for the installation and configuration of selected technologies.
  • Collaborate with various groups and team members to design required solutions that meet DTCC standards for security, resiliency, and reusability.
  • Provide immediate support for production issues related to areas of expertise: zScaler Products ZIA, ZPA and ZDX.
  • Provide support for off-hour / weekend implementation and Disaster Recovery tests as required.
  • Author system documentation and supporting documents for all Zero Trust solutions to ensure clarity of design to minimize future maintenance costs.
  • Deliver targeted business outcomes by participating in the technical decision-making process.
  • Analyze changing business requirements to resolve impact and optimal solution regarding defining the future state technical architecture.
  • Follow established DTCC requirements, principles and models that guide technology decisions for the enterprise (standard methodologies).
  • Monitor metrics to ensure system performance meets requirements.
  • Ensure alignment to the governance, standards and best practices established by DTCC.
  • Ensure delivered solutions enable infrastructure agility, scalability, and resilience to support required product needs throughout product lifecycle.
  • Assist with training other employees on a periodic basis.
  • Align risk and control processes into day to day responsibilities to supervise and mitigate risk.

Requirements

  • Minimum of 6 years of related experience.
  • Bachelor's degree preferred.
  • Expertise in Zero Trust Network Access (ZTNA), with a strong preference for implementing zScaler solutions.
  • Expertise Layer 1-7 knowledge.
  • Demonstrable experience in implementing and handling Zero Trust Security Models.
  • Familiarity with Identity and Access Management (IAM), Role Based Access Control (RBAC) and multi-factor authentication systems (MFA).
  • Experience with Network Security.
  • Migration experience from Legacy Proxy/Firewall Infrastructure to zScaler Zero Trust solution would be a plus.
  • Strong knowledge of TCP/IP, HTTP, FTP, cookies, authentication, web filtering, virus scanning, web servers, SSL/encryption, and reporting packages.
  • The ability to use scripting languages.
  • PAC file experience is required.
  • Complete SSL Interception with an integrated internal environment.
  • Assist in monitoring, configuration changes, and software updates.
  • Analyze and evaluate anomalous network and system activity.
  • Experience with the management of public SSL certificates.

Nice-to-haves

  • Experience with cloud security solutions.
  • Knowledge of regulatory compliance standards related to network security.
  • Familiarity with DevSecOps practices.

Benefits

  • Competitive compensation, including base pay and annual incentive.
  • Comprehensive health and life insurance and well-being benefits, based on location.
  • Retirement benefits.
  • Paid Time Off and other leave of absence.
  • Flexible/hybrid model of 3 days onsite and 2 days remote.

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service