Network Engineer ZPA
LingaTechPosition Type: Hybrid
Hybrid Schedule: 2 days on-site a week
Contract Length: Long-term with annual extensions
Position Overview:
The Zscaler Private Access (ZPA) Network Engineer is a hands-on, network-focused role responsible for designing, implementing, and supporting secure private application access using Zscaler Private Access as part of a Zero Trust Network Access (ZTNA) strategy.
Required Skills:
8 years of experience with enterprise networking, including routing, firewalling, DNS, and traffic flow analysis.
Proven experience implementing and supporting secure application access technologies such as Zscaler Private Access (ZPA) or similar Zero Trust access platforms.
Strong, in-depth understanding of Zero Trust Network Access (ZTNA) concepts and application-level segmentation.
Demonstrated ability to analyze complex, legacy network environments and translate them into scalable, enforceable access models.
Experience working in regulated or compliance-driven environments, ensuring adherence to security, governance, and audit standards.
Zscaler certifications such as Zscaler Digital Transformation Administrator or Zscaler Digital Transformation Engineer.
Completion of Zscaler administrator or engineer training courses relevant to Zscaler Private Access (ZPA).
Industry-recognized certifications such as CCNP, Security+, CySA+, or equivalent.
Familiarity with regulatory and security frameworks such as CJIS, NIST 800-53, or similar standards.
- This position translates legacy VPN and network access models into scalable, policy-driven ZPA access patterns while ensuring solutions are secure, auditable, and operationally sustainable.
- Collaborate with enterprise network, security, identity, and application teams to design and support ZPA-based access to internal applications.
Design, implement, and maintain ZPA components including App Connectors, Server Groups, Application Segments, and access policies.
Analyze legacy network and VPN-based access requirements and translate them into application-level ZPA access models aligned with Zero Trust principles.
Support application onboarding to ZPA by validating network paths, ports, protocols, and application dependencies.
Configure and enforce least-privileged ZPA access policies while minimizing disruption to critical business operations.
Troubleshoot ZPA-related connectivity and access issues, including user access failures, application reachability, and connector health or routing problems.
Participate in migration efforts to transition users and applications from legacy access methods to ZPA.
Ensure ZPA configurations are documented, auditable, and aligned with security, governance, and compliance requirements.
Develop and maintain technical documentation such as configuration standards, procedures, diagrams, and operational runbooks.
Coordinate with vendors and Zscaler support to resolve complex issues and support ongoing platform optimization and stability.