Principal ZTNA Network Engineer - Employee Remote Access
Soteria Reinsurance Ltd.
Durham, NC
- Remote job
- # Principal ZTNA Network Engineer – Employee Remote AccessApplylocations: Durham, NCtime type: Full timeposted on: Posted Yesterdayjob requisition id: 2130740## ## Job Description:**Note: Fidelity will not provide immigration sponsorship for this position.**The Role We are seeking a Senior ZTNA (Zero Trust Network Access) Network Engineer to lead the engineering, deployment, and optimization of secure remote access solutions across the enterprise. This role will drive the transition from legacy VPN technologies to modern Zero Trust architectures, with a strong focus on Zscaler (ZPA/ZIA) and enterprise ZVPN initiatives. You will design and implement secure, scalable, and resilient access solutions that enable seamless, secure connectivity to enterprise applications while eliminating implicit trust. This includes architecting Zero Trust segmentation, application-level access controls, and robust connectivity strategies for a global workforce. Responsibilities will include:* Lead design and implementation of ZTNA solutions (Zscaler ZPA/ZIA, ZVPN) to replace legacy VPN technologies* On call required rotation* Define and deliver modern Zero Trust architecture patterns, including application-level segmentation and identity-based access* Drive legacy VPN decommissioning and migration to ZTNA platforms* Develop and execute engineering roadmaps aligned to enterprise remote access strategy* Partner with security, infrastructure, and business units to ensure coordinated rollout and adoption* Document architecture, operational models, and implementation standards* Evaluate emerging ZTNA and secure access technologies and provide data-driven recommendations* Lead pilots and phased deployments, including testing, validation, and performance benchmarking* Act as a Tier-3 escalation lead for complex remote access and connectivity issues* Ensure high availability and resilience of remote access infrastructure in a 24x7 global environment* Assess and mitigate risks related to latency, scale, and user experience during migrationsThe Expertise and Skills You Bring* 6–10 years of network/security engineering experience, including 4+ years in ZTNA or remote access transformations* Bachelor’s degree in Computer Science, Information Technology, or related field* Hands-on experience with Zscaler (ZPA/ZIA) or comparable Zero Trust platforms* Proven success migrating legacy VPNs to Zero Trust, cloud-delivered access solutions* Deep expertise in ZTNA design, implementation, and Zero Trust principles (least privilege, continuous verification, no implicit trust)* Experience designing application segmentation and identity-based access policies* Strong knowledge of traffic steering, split tunneling, and secure access routing (ZVPN architectures)* Experience with load balancing, gateways, and access control layers* Advanced troubleshooting across network layers (L3–L7)* Familiarity with hybrid environments (on-prem, cloud, SaaS)* Ability to optimize latency, performance, and user experience in ZTNA environments* Experience with high availability, disaster recovery, and failover strategies in global, always-on environments* Experience with network automation tools (Python, Ansible, APIs)* Familiarity with endpoint management and deployment tools (Intune, SCCM)* Strong understanding of identity providers (Azure AD / Entra ID), SSO, and conditional access* Knowledge of PKI, certificates, and modern authentication methods* Experience integrating with SIEM, EDR, and security monitoring platforms* Strong ownership mindset with a focus on execution and delivery* Ability to thrive in fast-paced, ambiguous environments with competing priorities* Excellent communication skills across technical and business stakeholders* Proven ability to lead incident response and drive resolution under pressure* Preferred certifications: Zscaler (ZCCA / ZCCP / ZCSE), CCNP/CCIE (Security or Enterprise), CISSP (or equivalent), ITIL FoundationThe Team You will be part of the Enterprise Cloud, Infrastructure, and Operations (ECIO) organization, playing a central role in transforming the enterprise’s remote access strategy from legacy VPN to Zero Trust. This is a high-visibility, high-impact team focused on ZVPN rollout and enterprise-wide adoption, legacy VPN decommissioning, and Zscaler-driven Zero Trust transformation.The team operates in a global, 24x7 environment and partners closely with security, infrastructure, and business stakeholders. Together, you enable secure, seamless access to applications for a distributed workforce—reducing cyber risk, improving resilience, and supporting business continuity at scale.## ## Certifications:## ## Category:## Information TechnologyPlease be advised that Fidelity’s business is governed by the provisions of the Securities Exchange Act of 1934, the Investment Advisers Act of 1940, the Investment Company Act of 1940, ERISA, numerous state laws governing securities, investment and retirement-related financial activities and the rules and regulations of numerous self-regulatory organizations, including FINRA, among others. Those laws and regulations may restrict Fidelity from hiring and/or associating with individuals with certain Criminal Histories.
- J-18808-Ljbffr Soteria Reinsurance Ltd.
Vacancy posted 3 days ago
Similar jobs that could be interesting for youBased on the Principal ZTNA Network Engineer - Employee Remote Access in Durham, NC vacancy
- Zero Trust Network Access (ZTNA) Engineer, Sr. - (37) Full‑time position within Professional Services. Location Remote (Virtual) - US (Primary). Saint Louis, MO 63101 US. Hybrid location at Scott Airforce Base, IL for occasional on‑site work. Scope of Work U.S. Transportation...Remote workFull timeCasual work
$144.2k - $288.4k
...community at a time. Position Summary The Principal Network Engineer - AI Infrastructure plays a key role... ...hybrid connectivity (SD‑WAN, VPN, remote access). 5+ years of experience... ...firewalls (required), NGFW, IDS/IPS, ZTNA, DLP, and micro‑segmentation, with understanding...Remote workPrincipalHourly payFull timeTemporary workLocal areaImmediate start- ...solutions for optimizing wireline fiber and IP networks, the full-time remote Principal Network Automation Engineer will design, implement, and manage automation strategies... ...in software development, specifically in access networks Experience developing and implementing...Remote workPrincipalFull time
$110.5k - $149.5k
...Skills: Enterprise Network,Network Architecture,Network Engineering,Network... ...Network Engineer Principal to join our enterprise... ...platforms, including access control policies,... ...internal networks, remote sites, and cloud environments... ...for all US-based employees includes a variety...Remote workPrincipalTemporary workImmediate startWorldwideFlexible hours$110.5k - $149.5k
...: Enterprise Network, Network Architecture, Network Engineering, Network Infrastructures... ...Network Engineer Principal to join our... ...platforms, including access control policies,... ...networks, remote sites, and cloud environments... ...for all US-based employees includes a variety...Remote workPrincipalTemporary workImmediate startWorldwideFlexible hours$124.09k - $161k
...Skills: IT Network Security, Networking... ...Network Security Engineering, Vulnerability Management... ...Network Engineer Principal to join our... ...that support secure access to applications,... ...secure browser and remote access capabilities... ...for all US-based employees includes a variety...Remote workPrincipalTemporary workImmediate startWorldwideHome officeFlexible hours- ...Company Description We are a Digital Product Engineering company that is scaling in a big way! We... ...Cloud Solution Architect Location - Remote USA Employment Type - Fulltime Job... ...creating an inclusive environment for all employees. All qualified applicants will be afforded...Remote jobPrincipalFull time
- .... We are opening a new AI Engineering Campus in Austin, which will... ...the maintaining all the network fabrics and network topologies... .... ~ Knowledge of Remote Direct Memory Access (RDMA) and its implementations... ...wellness services and an Employee Assistance Programme (EAP)...Remote workPrincipalFlexible hours
- Principal Specialist - Employee Relations (Hybrid Remote: McLean, VA/DC Area) General information Date City Remote Country: United States Working time:... ...at any stage of the employment process—including accessing job postings, completing assessments, or participating...Remote jobPrincipalMinimum wageFull timeContract workTemporary workWork experience placement
- ...Federal Solutions is seeking a Principal Network & Systems Engineer to support the Department... ..., and zero‐trust access enforcement. Lead and maintain the enterprise remote‐access environment using Palo... ...customer missions through employee empowerment, exceptional services...Remote workPrincipalWork at officeImmediate start
$172k - $215k
...F5 Principal Network Engineer At Early Warning, we've powered and protected the... ...institutions to increase access to financial services and protect... ..., securing local and remote networks and routing protocols... .../or external customers. Employee must be able to perform...Remote workPrincipalHourly payWork at officeLocal areaImmediate startVisa sponsorshipWork visaFlexible hours- ...Principal Network Automation Engineer This is a senior-level opportunity for an experienced network automation... ...and experience working with access networks. ~ Advanced programming skills... ...audiences. Benefits ~ Full-time remote position with flexible working...Remote workPrincipalFull timeFlexible hoursNight shift
- iO Associates is searching for an experienced Network Engineer to work remotely, specializing in Palo Alto SASE and Prisma Access. The ideal candidate will provide technical leadership across projects, operations, and pre-sales, focusing on designing and implementing secure...Remote job
- Overview ROLE AT A GLANCE: The Principal II, Network Engineer is responsible for designing, implementing... ...; Network segmentation and access control in remote offices Comprehensive knowledge includes... ...a variety of benefits to eligible employees in the U.S. (limited to the 50...Remote workPrincipalTemporary workFlexible hours
$104.9k - $174.7k
...We are open to hiring on a remote basis in the United States... ...150 countries with 11,800 employees globally. We are part of... ...As a Consulting AWS Cloud Network Infrastructure Engineer, you will help define best... ...specific benefits. Click** **to access benefits specific to your...Remote workPrincipalTemporary workLocal areaImmediate startFlexible hours- A leading health technology provider is seeking an Epic Principal Trainer for Patient Access in Raleigh, NC. This remote position requires certification as a Principal Trainer for specific Epic applications and extensive experience in instruction design. The role involves...Remote jobPrincipal
$99k - $165k
...Job Description This is a remote position. Position Title: Principal Network Automation Engineer Base Salary: $99,000 to... ...for them, and we support employees in implementing new ideas and... ...development, with a specific focus on access networks. Experience...Remote workPrincipalSelf employmentWork at officeLocal areaFlexible hoursNight shiftWeekend workAfternoon shift$221.2k - $387.1k
Principal Inbound Product Manager - AI Assistant (Employee Experience)- MoveWorks Company Description It... ...2004 when a visionary engineer, Fred Luddy, saw the potential... ...personas (flexible, remote, or required in office)... ...We strive to create an accessible and inclusive...Remote workPrincipalWork at officeFlexible hours$8.53k - $16.87k
...Summary Under general direction, the IT Network Access Engineer will provide advanced level technical... ...is hybrid (mix of on‑site and remote work) Benefits High quality and low‑... ...Wellness programs and resources On‑site Employee Assistance Program including access to...Remote workTemporary workLocal areaShift work- ...Principal Network Engineer The client is seeking a principal network engineer to design, implement, and maintain highly available networking... .... This role is onsite in Gilbert, AZ, or Cheyenne, WY, but remote candidates willing to travel once a month will be considered...Remote workPrincipalNight shift
- ...administrating and overseeing network support, design and... ..., carriers, and engineering teams to resolve complex... ...; Firewalls; Network Access Control Solutions (NAC... ...work-life balance and employee wellness. Some of these... ...to 2 days per week of remote work* Tuition...Remote workPrincipal2 days per week
- A technology solutions provider seeks a Principal Network Engineer to enhance network performance and support architectural improvements across various... ...complex network issues. The role primarily involves remote on-call support, and occasional on-site response may be required...Remote jobPrincipal
$180k - $200k
A leading technology company is seeking a Principal IT Network Engineer based in the United States. In this role, you will lead engineering teams, manage network strategy, and optimize network performance. The ideal candidate should have over 8 years of experience in program...Remote jobPrincipal- ...Overview Principal Network Engineer LOCATION: Hanscom AFB, Bedford, MA JOB STATUS: Full-time CLEARANCE: Secret Salary Range: 1... ...Protocol Encryptor (HAIPE) acquisition, configuration, and remote management systems. Understand security boundary designs...Remote workPrincipalFull timeContract workFor contractors
$171k - $268k
...Country: USA State/Province: New Hampshire City: Remote Employee US Description This position is for a Principle Engineer / Networking System Architect. As system architect, one... ...of market segments including enterprise access, data center infrastructure, and Telco data...Remote workPrincipalLocal area- ...Principal Cloud Security Architect What if your deep knowledge of cloud... ...serious problems. This is a fully remote, flexible contract role built for... ...Review IAM configurations, network segmentation, resource policies, and access control models Identify privilege...Remote workPrincipalOngoing contractContract workFreelanceFlexible hours
- ...Principal Platform Engineer/Tech Lead The Moderna Data Platform team is seeking an experienced Principal Platform Engineer/Tech Lead to drive... ...enterprise standards, and empowers teams to independently access, integrate, and utilize data securely and efficiently....Remote workPrincipal
$120k - $140k
...clients. We are actively seeking a Principal Network Engineer . Job location: Hybrid, but... ...Advantage At KLD we invest in employees and their families by placing their wellbeing... ...0,000. ~ This position is 90% remote, and we offer a high-performance...Remote workPrincipalPermanent employmentTemporary work$86.8k - $165.2k
...& Whitney, and Raytheon. Its 185,000 employees enable the company to operate at the... ...our RTX Enterprise Services team: Principal Network Engineer supporting RTX's Classified Network... ...is designated as on-site, hybrid or remote. The salary range for this role is...Remote workPrincipalTemporary workWork experience placementWork at officeWorldwideFlexible hours- Huntington Bank is seeking a Platform Principal Engineer for Infrastructure Security Services. This role requires expertise in Network Access Control (NAC) and security technologies,... ...work environment combining in-office and remote work. #J-18808-Ljbffr Huntington BankRemote workPrincipalWork at officeFlexible hours
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Principal ZTNA Network Engineer - Employee Remote Access. Be the first to apply!
Related searches
- principal developer Durham, NC
- engineering director Durham, NC
- chief engineer Durham, NC
- data center chief engineer Durham, NC
- senior civil engineer project manager Durham, NC
- hotel chief engineer Durham, NC
- director software engineering Durham, NC
- general engineer Durham, NC
- principal engineer Durham, NC
- network software engineer Durham, NC


