Zero Trust SME

JOB DESCRIPTION

• Lead Zero Trust strategy, assessment, and implementation initiatives across enterprise environments.
• Define and enforce least-privilege access principles for network and application communications.
• Analyze east-west traffic patterns and application dependencies to support Zero Trust adoption.
• Design and recommend micro-segmentation and application-based segmentation strategies.
• Review and optimize allow/deny policies to minimize unnecessary access while ensuring business continuity.
• Conduct network communication assessments using flow logs and packet capture analysis.
• Investigate blocked traffic, policy conflicts, and false-positive scenarios impacting application communication.
• Collaborate with infrastructure, security, cloud, and application teams to identify trust boundaries and security controls.
• Develop Zero Trust security policies, standards, and governance frameworks.
• Provide expert guidance on network-level and host-level security controls.
• Support security monitoring, threat investigations, and compliance initiatives through log analysis and SIEM platforms.

Qualifications:

• 8 years of experience in Zero trust sme
• Soung understanding of TCP/IP, ports and protocols
• hands on experience with Subnetting, routing, VLANs
• East-west traffic understanding (device-to-device communication)
• Network flow logs
• Network Packet capture basics
• Allow/Deny rules
• Least privilege network access concepts
• Micro-segmentation
• Application-based segmentation
• Active Directory GPO understanding
• Windows Servers Firewall and Linux iptables Understanding
• Identifying Blocked traffic issues, False positives
• Reading logs Using SIEM tools (Sentinel, Splunk)