×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Systems Engineer Cybersecurity Cloud Computing: Infrastructure & Operations

Principal ZTNA Network Engineer – Remote Access

Remote / Online - Candidates ideally in
Cary, Wake County, North Carolina, 27511, USA
Listing for: Soteria Reinsurance Ltd.
Full Time, Remote/Work from Home position
Listed on 2026-06-27
Job specializations:
  • IT/Tech
    Systems Engineer, Cybersecurity, Cloud Computing: Infrastructure & Operations
Salary/Wage Range or Industry Benchmark: 110000 - 150000 USD Yearly USD 110000.00 150000.00 YEAR
Job Description & How to Apply Below
Position: Principal ZTNA Network Engineer – Employee Remote Access
## Principal ZTNA Network Engineer – Employee Remote Access Apply locations:
Durham, NCtime type:
Full time posted on:
Posted Yesterday job requisition :
2130740## ##

Job Description:

*
* Note:

Fidelity will not provide immigration sponsorship for this position.
** The Role  We are seeking a Senior ZTNA (Zero Trust Network Access) Network Engineer to lead the engineering, deployment, and optimization of secure remote access solutions across the enterprise. This role will drive the transition from legacy VPN technologies to modern Zero Trust architectures, with a strong focus on Zscaler (ZPA/ZIA) and enterprise ZVPN initiatives.  You will design and implement secure, scalable, and resilient access solutions that enable seamless, secure connectivity to enterprise applications while eliminating implicit trust.

This includes architecting Zero Trust segmentation, application-level access controls, and robust connectivity strategies for a global workforce. Responsibilities will include:
* Lead design and implementation of ZTNA solutions (Zscaler ZPA/ZIA, ZVPN) to replace legacy VPN technologies
* On call required rotation
* Define and deliver modern Zero Trust architecture patterns, including application-level segmentation and identity-based access
* Drive legacy VPN decommissioning and migration to ZTNA platforms
* Develop and execute engineering roadmaps aligned to enterprise remote access strategy
* Partner with security, infrastructure, and business units to ensure coordinated rollout and adoption
* Document architecture, operational models, and implementation standards
* Evaluate emerging ZTNA and secure access technologies and provide data-driven recommendations
* Lead pilots and phased deployments, including testing, validation, and performance benchmarking
* Act as a Tier-3 escalation lead for complex remote access and connectivity issues
* Ensure high availability and resilience of remote access infrastructure in a 24x7 global environment
* Assess and mitigate risks related to latency, scale, and user experience during migrations

The Expertise and Skills You Bring
* 6–10 years of network/security engineering experience, including 4+ years in ZTNA or remote access transformations
* Bachelor’s degree in Computer Science, Information Technology, or related field
* Hands-on experience with Zscaler (ZPA/ZIA) or comparable Zero Trust platforms
* Proven success migrating legacy VPNs to Zero Trust, cloud-delivered access solutions
* Deep expertise in ZTNA design, implementation, and Zero Trust principles (least privilege, continuous verification, no implicit trust)
* Experience designing application segmentation and identity-based access policies
* Strong knowledge of traffic steering, split tunneling, and secure access routing (ZVPN architectures)
* Experience with load balancing, gateways, and access control layers
* Advanced troubleshooting across network layers (L3–L7)
* Familiarity with hybrid environments (on-prem, cloud, SaaS)
* Ability to optimize latency, performance, and user experience in ZTNA environments
* Experience with high availability, disaster recovery, and failover strategies in global, always-on environments
* Experience with network automation tools (Python, Ansible, APIs)
* Familiarity with endpoint management and deployment tools (Intune, SCCM)
* Strong understanding of identity providers (Azure AD / Entra ), SSO, and conditional access
* Knowledge of PKI, certificates, and modern authentication methods
* Experience integrating with SIEM, EDR, and security monitoring platforms
* Strong ownership mindset with a focus on execution and delivery
* Ability to thrive in fast-paced, ambiguous environments with competing priorities
* Excellent communication skills across technical and business stakeholders
* Proven ability to lead incident response and drive resolution under pressure
* Preferred certifications:
Zscaler (ZCCA / ZCCP / ZCSE), CCNP/CCIE (Security or Enterprise), CISSP (or equivalent), ITIL Foundation The Team  You will be part of the Enterprise Cloud, Infrastructure, and Operations (ECIO) organization, playing a central role in transforming the enterprise’s remote access strategy from legacy VPN to Zero Trust.…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search