Sr Manager, Architect Lead

Your opportunity The Principal Network Security Architect is an individual contributor supporting the architecture of network security technologies, network cyber defense, security engineering tools with Zscaler, threat monitoring and network security management in the organization Cybersecurity Services. This role leads the network cybersecurity architecture, blueprinting, design, technical discussions, among cybersecurity, networking, and infrastructure teams. Deep technical cybersecurity architecture and design with specific focus across multi-cloud and on-prem is required. Prior experience is required with architecting and designing Zscaler products including Zero TRUST, Cyberthreat Protection with ZIA and ZPA, ZTF, DLP, DNS, and GenAI and Prompt Monitoring. You will be responsible for deep cybersecurity research, cybersecurity blueprint infrastructure standards, architecting cybersecurity automation ideas and automation packs, innovating, developing, and managing groundbreaking architecture designs with Zscaler capabilities to secure the network on-prem, SaaS, and IaaS infrastructures. You have in-depth experience in managing and architecting network security with prior experience in Zscaler products to build, secure, and monitor the infrastructure and the eco systems both on-prem and in cloud. This role requires deep expertise in the architecture of cybersecurity and network infrastructure. Responsibilities Include, But Not Limited To u00b7 Design, implement, and optimize Zscaler cloud security solutions (e.g., Zscaler Internet Access, Zscaler Private Access, Zscaler Cloud Security Posture Management) to ensure seamless security across all cloud and on-premises environments. u00b7 Stay updated with the latest Zscaler features, best practices, and security threats to continuously architect and enhance the organization's security posture. u00b7 Design and architect documentation of network security, security infrastructure, cloud security stack, and on-prem security refreshes. u00b7 Architect, develop, enforce, and maintain network security architectures, standards, and procedures to ensure the integrity and confidentiality of data. u00b7 Collaborate with network teams to design and implement secure network segmentation, access controls, and other security measures. u00b7 Maintain close ties with various stakeholders, developers, and engineers across the company, ensuring the services we create meet their needs as products evolve. u00b7 Architect, design, and document blueprints with Zscaler and other security tools for threat detection, analysis, and response. u00b7 Participate in incident response activities, providing expert analysis and mitigation strategies for security incidents. u00b7 Ensure all network security configurations and practices comply with relevant regulatory requirements (e.g., NIST, NYSDFS, FFIEC, GDPR). u00b7 Collaborate with the compliance team to conduct regular security audits and risk assessments. u00b7 Provide technical training and support to junior engineers and other stakeholders on Zscaler solutions and network security best practices. u00b7 Contribute to the development of the Information Security team's strategic plans and roadmaps. u00b7 Engage in ongoing learning to stay current with emerging threats, technologies, and methodologies in network security and Zscaler solutions. u00b7 Identify areas for process improvement and propose innovative solutions to enhance the organization's security posture. u00b7 Architect and Design SOAR & Automation: Identify and implement automation of repetitive tasks. Security Orchestration, Automation and Response. u00b7 Architect changes to Zscaler network security upgrades, troubleshooting, and deployment for both on-prem and in the cloud. u00b7 Communicate extensively with Data Protection Product and engineering teams across the organization. u00b7 Engineer, build, and maintain infrastructure to meet the organizationu2019s requirements and ensure high availability. u00b7 Drive complex technical initiatives and workshops to fully delivery leveraging knowledge of Cyber security practices, security architecture, and best practices. What you have u00b7 15+ years of hands-on experience in network security, infrastructure security, cloud security, edge security, network data security, and other networking cybersecurity-related controls and technologies including DNS, F.W, and Zero TRUST. u00b7 6+ months of Schwab domain technology experience gained as a current or recent contractor or employee u00b7 Proven experience with Zscaler products (ZIA, ZPA, CSPM) and their implementation in enterprise environments. u00b7 Experience with security architecture frameworks, compliance, and risk management including Zscaler architecture and design for both cloud and on-prem. u00b7 Ability to identify security risks and weaknesses and provide security mitigation and remediation recommendations through solid architecture design and blueprinting u00b7 Prior experience with architecting complex network security tools including Zscaler cloud security solutions, including Zscaler Internet Access (ZIA) and Zscaler Private Access (ZPA). u00b7 Ability to foster collaborative, open, working relationships with technology groups and other stakeholders, including vendor relationships. u00b7 Proficiency in architecting and design of defense-in-depth with network security capabilities in the areas of monitoring, detection, protection, prevention and the concept of cyber defense network engineering. u00b7 Experience in designing and architecting multiple high-visibility and high-impact enterprise cybersecurity networking projects across large global enterprises. u00b7 Strong understanding of Zscaler Zero TRUST and Zscaler Network Security principles. u00b7 Expertise in architecting, design, automation, building security stacks, and monitoring network security components like Encryption, DNS Security, Network DLP, Zero TRUST, F.W, Segmentation, Security Logging, and Cyber Defense with Zscaler and/or other commercial network cybersecurity solutions. u00b7 Work closely with stakeholder teams (Compliance, Windows, Linux, Network, Chronicle, Remedy, Asset Management) to develop high value enterprise capabilities/results while reducing noise and false alarms. u00b7 Experience with managing Hardware Security Modules (HSMs) and encryption. u00b7 Experience with other cloud security solutions, such as Palo Alto Networks or Check Point. u00b7 Familiarity with DevOps tools, such as Jenkins or Docker. u00b7 Experience with scripting languages, such as Python or PowerShell. u00b7 Bacheloru2019s degree in computer science or related field highly preferred. Preferred u00b7 Multiple certifications in cybersecurity and data protection cybersecurity highly preferred (CISSP, GIAC, CISM, CCSP, CISA, or Security+, or other related certifications). u00b7 Zscaler Certified Security Engineer (ZCSE) u00b7 Zscaler Digital Transformation Administrator Certification, Zero Trust Certified Associate u00b7 Other Network Security Certifications including CISCO or Palo Alto Certified Whatu2019s in it for you At Schwab, youu2019re empowered to shape your future. We champion your growth through meaningful work, continuous learning, and a culture of trust and collaborationu2014so you can build the skills to make a lasting impact. Our Hybrid Work and Flexibility approach balances our ongoing commitment to workplace flexibility, serving our clients, and our strong belief in the value of being together in person on a regular basis. We offer a competitive benefits package that takes care of the whole you u2013 both today and in the future: + 401(k) with company match and Employee stock purchase plan + Paid time for vacation, volunteering, and 28-day sabbatical after every 5 years of service for eligible positions + Paid parental leave and family building benefits + Tuition reimbursement + Health, dental, and vision insuranceWhatu2019s in it for you: At Schwab, weu2019re committed to empowering our employeesu2019 personal and professional success. Our purpose-driven, supportive culture, and focus on your development means youu2019ll get the tools you need to make a positive difference in the finance industry. Our Hybrid Work and Flexibility approach balances our ongoing commitment to workplace flexibility, serving our clients, and our strong belief in the value of being together in person on a regular basis. We offer a competitive benefits package that takes care of the whole you u2013 both today and in the future: 401(k) with company match and Employee stock purchase plan Paid time for vacation, volunteering, and 28-day sabbatical after every 5 years of service for eligible positions Paid parental leave and family building benefits Tuition reimbursement Health, dental, and vision insurance Schwab is an affirmative action employer, focused on employing and advancing in employment, qualified women, racial and ethnic minorities, protected veterans, and individuals with disabilities in the workplace. If you have a disability and require reasonable accommodations in the application process, contact Human Resources at or call 800-275-1281.

Created: 2025-12-11