Zero Trust Security Policy Analyst / Zero Trust Security

About

The Zero Trust Security Analyst is responsible for analyzing existing network, identity, and access configurations to determine what can be reused, refined, or must be newly created to support Zero Trust security policies. This role focuses on investigation, discovery, and design input, not rule implementation. The analyst works closely with Zero Trust Engineers, application owners, IAM teams, and firewall/security teams to ensure Zero Trust policies are grounded in accurate understanding of the current environment and avoid unnecessary duplication or overly permissive controls.

Required Skills & Experience

• Strong understanding of network security fundamentals (firewalls, zones, L4/L7 rules).
• Experience analyzing enterprise firewall rule-bases (Palo Alto or similar).
• Familiarity with identity-based access controls (AD groups, Entra ID groups, RBAC).
• Ability to read and interpret complex security configurations and translate them into actionable requirements.
• Experience documenting security findings in a clear, structured manner.

Preferred Qualifications

• Experience with Zero Trust Network Access (ZTNA) or user-based firewall policies.
• Exposure to IAM, IGA, or identity governance tooling.
• Familiarity with CMDB, application identifiers, and service onboarding workflows.
• Prior experience supporting audits or security assessments.

Success Looks Like

• Minimal re work due to accurate upfront analysis.
• Clear reuse of existing controls where appropriate.
• Well defined, least privilege Zero Trust requirements handed to engineering teams.

Benefits

• Medical insurance
• Dental insurance
• Vision insurance
• Disability insurance
• 401(k)

Additional Information

• Location: Hybrid role - Thrice a week onsite - Vienna, VA
• Compensation Rate: $65/hr to $75/hr
• Work sponsorship is not available for this position. Applicants must be a United States citizen, Green card holder or EAD Green Cards at the direction of our client.