Microsoft GSA ZTNA (Zero Trust Network Access) Engineer

Job Description:

Microsoft GSA ZTNA (Zero Trust Network Access) Engineer

We are seeking a highly skilled Microsoft GSA ZTNA (Zero Trust Network Access) Engineer to join our enterprise security team. The ideal candidate will have deep expertise in Microsoft security technologies, particularly in implementing and managing Zero Trust architectures. A strong foundation in networking protocols and troubleshooting is essential. Experience with Cisco networking technologies is a significant advantage.

This role also requires regular ServiceNow updates, problem ticket management, and cross-functional collaboration with teams such as Endpoint, Network, and other infrastructure groups. The successful candidate will demonstrate leadership, attention to detail, and the ability to proactively manage cases with vendors.

Key Responsibilities:

• Design, implement, and manage Microsoft Zero Trust solutions including Conditional Access, Defender for Identity, Microsoft Entra, and related technologies.
• Support and optimize ZTNA policies across hybrid and cloud environments.
• Collaborate with security architects and network engineers to enforce least privilege access and micro-segmentation.
• Monitor and respond to ZTNA-related incidents and alerts.
• Integrate ZTNA with SIEM/SOAR platforms for enhanced visibility and automation.
• Work with Cisco networking teams to align ZTNA policies with network segmentation and firewall rules.
• Conduct regular assessments of access controls and recommend improvements.
• Document architecture, configurations, and operational procedures.
• Perform regular ServiceNow updates and manage problem tickets effectively.
• Work cross-functionally with Endpoint, Network, and other technical teams to ensure seamless integration and issue resolution.
• Lead proactive case management with vendors to drive timely resolution and continuous improvement.
• Demonstrate leadership and attention to detail in all aspects of project execution and operational support.

Required Skills & Experience:

• Proven experience with Microsoft GSA and Zero Trust frameworks.
• Strong understanding of networking protocols (TCP/IP, DNS, DHCP, VPN, etc.).
• Experience with Microsoft Defender suite, Azure AD Conditional Access, and Microsoft Entra ID.
• Familiarity with Cisco networking technologies (e.g., ASA, Firepower, ISE, AnyConnect).
• Solid problem-solving and analytical skills.
• Background in enterprise security operations or network security.
• Experience with ServiceNow for ticketing and workflow management.
• Strong cross-team collaboration and communication skills.

Preferred Qualifications:

• Microsoft certifications (e.g., SC-100, SC-300, AZ-500).
• Cisco certifications (e.g., CCNA Security, CCNP Security) are a plus.
• Experience in large-scale enterprise or government environments.
• Knowledge of NIST, MITRE ATT&CK, or other security frameworks.

Do

1. Design and develop enterprise cyber security strategy and architecture

a. Understand security requirements by evaluating business strategies and conducting system security vulnerability and risk analyses

b. Identify risks associated with business processes, operations,

information security programs and technology projects

c. Identify and communicate current and emerging security threats and design security architecture elements to mitigate threats as they emerge

d. Identify security design gaps in existing and proposed architectures and recommend changes or enhancements

e. Provide product best fit analysis to ensure end to end security covering different faucets of architecture e.g. Layered security, Zoning, Integration aspects, API, Endpoint security, Data security, Compliance and regulations

f. Demonstrate experience in doing security assessment against NIST Frameworks, SANS, CIS, etc.

g. Provide support during technical deployment, configuration, integration and administration of security technologies

h. Demonstrate experience around ITIL or Key process-oriented domains like incident management, configuration management, change management, problem management etc.

i. Provide assistance for disaster recovery in the event of any security breaches, attacks, intrusions and unusual, unauthorized or illegal activity

j. Provide solution of RFP's received from clients and ensure overall design assurance

i. Develop a direction to manage the portfolio of to-be-solutions including systems, shared infrastructure services, applications, hardware related to cyber risk security in order to better match business outcome objectives

ii. Analyse technology environment, enterprise specifics, client requirements to set a collaboration design framework/ architecture

iii. Depending on the client's need with particular standards and technology stacks create complete RFPs

iv. Provide technical leadership to the design, development and implementation of custom solutions through thoughtful use of modern technology

v. Define and understand current state solutions and identify improvements, options & tradeoffs to define target state solutions

vi. Clearly articulate and sell architectural targets, recommendations and reusable patterns and accordingly propose investment roadmaps

vii. Evaluate and recommend solutions to integrate with overall technology ecosystem

viii. Tracks industry and application trends and relates these to planning current and future IT needs

2. Stakeholder coordination & audit assistance

a. Liaise with stakeholders in relation to cyber security issues and provide timely support and future recommendations

b. Provide assistance in maintaining an information security risk register and help with internal and external audits relating to information security

c. Support audit of security best practices and implementation of security principles across the organization, to meet business goals along with customer and regulatory requirements

d. Assist with the creation, maintenance and delivery of cyber security awareness training to team members and customers

e. Provide training to employees on issues such as spam and unwanted or malicious emails

Deliver
No Performance Parameter Measure 1 Customer centricity Timely security breach solutioning to end users, Internal stakeholders & external customers experience, CSAT, educating and suggesting right control to the customers. 2 Support sales team to create wins % of proposals with Quality Index >7, timely support of the proposals, identifying opportunities/ leads to sell services within/ outside account (lead generation), no. of proposals led

Mandatory Skills: Cisco IDS-IPS .

Experience: 8-10 Years .

Reinvent your world. We are building a modern Wipro. We are an end-to-end digital transformation partner with the boldest ambitions. To realize them, we need people inspired by reinvention. Of yourself, your career, and your skills. We want to see the constant evolution of our business and our industry. It has always been in our DNA - as the world around us changes, so do we. Join a business powered by purpose and a place that empowers you to design your own reinvention.

Client-provided location(s): Melbourne, Australia

Job ID: Wipro-105330

Employment Type: OTHER

Posted: 2025-10-24T18:40:46