Security Engineer - Proxy

Job Title: Security Engineer – Web Proxy (Zscaler & Broadcom Symantec)

Location: [Mumbai, Maharashtra]

Experience: 3–4 years

Employment Type: Full-time

⸻

Role Overview:

The Security Engineer – Web Proxy will be responsible for managing, maintaining, and optimizing the organization’s secure web gateway infrastructure, specifically focusing on Zscaler Internet Access (ZIA) and Broadcom Symantec ProxySG platforms. This role involves daily operational management, policy administration, troubleshooting, user incident resolution, and ensuring compliance through regular audits and proactive security measures.

⸻

Key Responsibilities:

1. Proxy Operations & Policy Management

• Administer, monitor, and maintain Zscaler and Broadcom Symantec Proxy devices.

• Create, update, and review proxy access policies and URL filtering rules as per business and compliance requirements.

• Implement and maintain authentication, SSL inspection, and traffic redirection policies.

• Ensure proper logging and integration with SIEM tools for visibility and incident correlation.

2. Incident & Request Management

• Respond to and resolve end-user issues related to web access, proxy authentication, and policy enforcement.

• Handle service requests for website access changes, whitelist/blacklist updates, and access troubleshooting.

• Analyze incident trends and propose improvements to reduce recurring issues.

3. Security & Compliance

• Conduct regular configuration reviews and compliance checks to ensure alignment with organizational security standards.

• Participate in internal and external audits; prepare and maintain audit evidence and compliance documentation.

• Create and update standard operating procedures (SOPs) for proxy management and related operations.

4. Continuous Improvement & Reporting

• Develop and maintain dashboards/reports on proxy utilization, performance, and incidents.

• Identify optimization opportunities in policy structure, performance tuning, and bandwidth management.

• Prepare Plan of Actions (POA) for identified vulnerabilities, gaps, or audit findings, and track remediation progress.

5. Collaboration & Communication

• Work closely with Network, SOC, and Endpoint teams to ensure end-to-end security visibility.

• Collaborate with vendors (Zscaler/Broadcom) for technical support, upgrades, and new feature implementation.

• Communicate effectively with end users via email for policy clarifications, access requests, and incident updates.

⸻

Required Skills & Qualifications:

• Bachelor’s degree in Computer Science, Information Security, or related field.

• 3–6 years of hands-on experience with Zscaler Internet Access (ZIA) and Broadcom Symantec ProxySG/ASG.

• Strong understanding of HTTP/HTTPS, SSL inspection, URL filtering, and authentication mechanisms (Kerberos, NTLM, SAML, etc.).

• Experience with policy management, PAC file handling, and traffic redirection via GRE/IPsec tunnels.

• Familiarity with incident management tools (ServiceNow, Remedy, etc.) and ITIL processes.

• Excellent analytical and troubleshooting skills.

• Strong written and verbal communication skills for handling user communication and audit documentation.