Principal Consultant - Lead Security Engineer ZTNA / NAC / DNS (L2 SME)

Ready to build the future with AI
At Genpact, we don't just keep up with technology-we set the pace. AI and digital innovation are redefining industries, and we're leading the charge. Genpact's AI Gigafactory, our industry-first accelerator, is an example of how we're scaling advanced technology solutions to help global enterprises work smarter, grow faster, and transform at scale. From large-scale models to agentic AI, our breakthrough solutions tackle companies most complex challenges.
If you thrive in a fast-moving, innovation-driven environment, love building and deploying cutting-edge AI solutions, and want to push the boundaries of what's possible, this is your moment.
Genpact (NYSE: G) is an advanced technology services and solutions company that delivers lasting value for leading enterprises globally. Through our deep business knowledge, operational excellence, and cutting-edge solutions - we help companies across industries get ahead and stay ahead. Powered by curiosity, courage, and innovation, our teams implement data, technology, and AI to create tomorrow, today. Get to know us at genpact.com and on LinkedIn, X, YouTube, and Facebook.
Inviting applications for the role of Principal Consultant - Lead Security Engineer - ZTNA / NAC / DNS (L2 SME)

Responsibilities
ZTNA (Appgate SDP) Operations
. Manage and maintain Appgate SDP platform in alignment with Client policies.
.Support access control configurations and policy enforcement.
.Execute approved policy updates and optimization changes.
.Troubleshoot user access failures and authentication issues.
.Support threat protection configurations within scope of the ZTNA platform.
.Maintain operational documentation for ZTNA services.
.Participate in 247 on-call rotation for high-severity ZTNA incidents.
NAC (Forescout) Operations
.Manage Forescout NAC policy enforcement for enterprise endpoints.
.Support device posture checking and profiling.
.Administer guest network access controls and BYOD enforcement mechanisms.
.Monitor secure posture assessments and respond to NAC-related alerts.
.Execute approved policy changes and posture rule updates.
.Support ongoing maintenance and tool administration activities.
DNS/DHCP/IPAM (Infoblox) Operations
.Manage internal DNS security operations.
.Perform DHCP administration and IP address management activities.
.Execute DNS security management tasks (zone updates, records, policy updates).
.Support resolution of DNS outages and service degradation incidents.
.Perform platform (tool) security administration for Infoblox systems.
.Maintain documentation governing DNS/DHCP/IPAM configurations.
Service Request & Change Management
.Execute ZTNA/NAC/DNS-related service requests in accordance with SLAs.
.Follow Client-defined Change Management procedures for all configuration updates.
.Ensure accurate ticket documentation, timestamps, and action logs.
.Coordinate with other tower teams when changes impact IAM, firewall, or cloud services.
Incident & Problem Management Support
.Participate in incident response for ZTNA, NAC, and DNS disruptions.
.Provide RCA inputs for recurring access or DNS-related issues.
.Support restoration and continuity procedures for in-scope services.
.Identify repeat operational patterns and recommend corrective measures via formal channels.
Audit, Logging & Compliance Support
.Maintain sufficient logs and artifacts to support compliance and audit requirements.
.Support requests from Client for operational evidence and documentation.
.Ensure logs from ZTNA/NAC/DNS systems are available for SIEM integration as directed.
.Maintain SOPs, escalation paths, and technical runbooks for all supported services.
Qualifications we seek in you!
Minimum Qualifications

.Bachelor's degree in computer science, Information Security, or equivalent experience.
.Preferred certifications:
oRelevant network/security certifications (e.g., CCNP Security, vendor-specific certifications for Appgate/Forescout/Infoblox where available).
.Demonstrated experience supporting 247 enterprise security operations environments.Preferred Qualifications/ Skills
.Good years of exp on experience in enterprise network security engineering.
.Hands-on operational expertise in:
.Appgate SDP (Zero Trust Network Access)
.Forescout NAC
.Infoblox DNS/DHCP/IPAM
.Experience managing:
.Policy enforcement
.Device posture validation
.Access control flows
.DNS security management
.DHCP management
.IP address management
.Strong troubleshooting skills in:
.Authentication flows
.Access failures
.DNS outages
.Policy misconfigurations
.Experience executing controlled changes under formal Change Management (CAB/MOC).
.Experience supporting regulated enterprise environments (audit logging, documentation discipline).
.Familiarity with log forwarding and integration to enterprise SIEM platforms (operational support level).
Why join Genpact
.Lead AI-first transformation - Build and scale AI solutions that redefine industries
.Make an impact - Drive change for global enterprises and solve business challenges that matter
.Accelerate your career-Gain hands-on experience, world-class training, mentorship, and AI certifications to advance your skills
.Grow with the best - Learn from top engineers, data scientists, and AI experts in a dynamic, fast-moving workplace
.Committed to ethical AI - Work in an environment where governance, transparency, and security are at the core of everything we build
.Thrive in a values-driven culture - Our courage, curiosity, and incisiveness - built on a foundation of integrity and inclusion - allow your ideas to fuel progress
Come join the 140,000+ coders, tech shapers, and growth makers at Genpact and take your career in the only direction that matters: Up.
Let's build tomorrow together.Genpact is an Equal Opportunity Employer and considers applicants for all positions without regard to race, color, religion or belief, sex, age, national origin, citizenship status, marital status, military/veteran status, genetic information, sexual orientation, gender identity, physical or mental disability or any other characteristic protected by applicable laws. Genpact is committed to creating a dynamic work environment that values respect and integrity, customer focus, and innovation.
Furthermore, please do note that Genpact does not charge fees to process job applications and applicants are not required to pay to participate in our hiring process in any other way. Examples of such scams include purchasing a %27starter kit,%27 paying to apply, or purchasing equipment or training.