This list contains only the countries for which job offers have been published in the selected language (e.g., in the French version, only job offers written in French are displayed, and in the English version, only those in English).
This role is based remotely but if you live within a 50-mile radius of Atlanta, Austin, Detroit, Mountain View or Warren, you are expected to report to that location three times a week, at a minimum
Job Responsibility
Design, implement, and maintain scalable and secure access architectures across complex enterprise IT environments
Define and evolve the technical roadmap for Secure Access Services, including mesh VPN and identity-aware access patterns across web and non-web applications
Conduct deep analysis of user, device, and service network access paths across complex network environments, including routing, firewalls, macro- and micro-segmentation, proxies, DNS, and load balancers
Architect end-to-end zero trust access patterns that decouple applications from direct network trust and centralize policy enforcement in Secure Access Services
Translate business, risk, and compliance requirements into reusable reference architectures, patterns, and guardrails for secure access
Serve as the primary engineer for the solutions you architect, including design, configuration, scripting, integration, and operationalization of mesh VPN and identity-aware proxy capabilities
Implement secure access for a broad set of web and non-web applications, including internal and external web applications, APIs, databases, administrative tools, and legacy TCP workloads
Drive data governance and secure architecture practices by ensuring access patterns, controls, and supporting documentation align with security policies, standards, and best practices
Collaborate with software development, infrastructure, identity, network, and product teams to integrate security considerations throughout the application and service lifecycle
Evaluate and recommend security tools, technologies, and processes that enhance the overall security posture and improve scalability, resilience, and operational efficiency
Conduct qualitative research and technical analysis to identify emerging threats, vulnerabilities, and innovative secure access solutions
Develop automation, including Infrastructure as Code, CI/CD integrations, and policy-as-code, to ensure consistent and repeatable deployment of secure access controls
Develop and maintain technical documentation related to security architectures, onboarding patterns, runbooks, configuration baselines, test plans, and operational procedures
Provide technical leadership, mentorship, and knowledge sharing to other engineers on security best practices, architectural design, and secure access engineering patterns
Participate in incident response activities and provide expert guidance on secure access and security-related issues, including root cause analysis and durable remediation
Define, track, and own key metrics and performance indicators for secure access capabilities, including application coverage, control adoption, incident reduction, and onboarding efficiency
Requirements
Bachelor's degree in Computer Science, Information Security, Cybersecurity, Computer Engineering, or a related technical field
7+ years of experience in cybersecurity, network security, security architecture, or security engineering roles, with a strong focus on secure access and zero trust design
Equivalent combination of education and relevant experience may be considered
Proven experience designing, implementing, and engineering zero trust security architectures and secure access patterns within large, complex hybrid network environments
Expert-level proficiency in modern information security and complex network architectures, including zero trust architecture, identity and access management, secure remote access, VPN and mesh VPN solutions, and web and non-web application access patterns
Strong expertise in network and connectivity architectures, including routing, firewalls, macro- and micro-segmentation, proxies, DNS, and load balancers
Demonstrated ability to analyze complex network and access patterns and translate them into robust, scalable, and supportable secure access designs
Experience securing development and enterprise environments and integrating security throughout the software development and service lifecycle
Strong understanding of enterprise IT, networking, cloud platforms, information architecture, and relevant security disciplines, theories, and techniques
Demonstrated experience conducting qualitative research and technical analysis related to cybersecurity risks, vulnerabilities, and solution design
Track record of independently leading complex, cross-functional initiatives with measurable business and risk reduction outcomes
Excellent written, verbal, and interpersonal communication skills, with the ability to articulate complex security concepts to technical and non-technical audiences
Nice to have
10+ years of experience in cybersecurity, network security, security architecture, or security engineering roles, with a strong focus on secure access and zero trust design
Relevant industry certifications such as CISSP, CISM, SABSA, CCSP, or advanced networking certifications
Master's degree in Computer Science, Information Security, Cybersecurity, Computer Engineering, or a related technical field