Zscaler Engineer II
Braze
At Braze, we have found our people. We’re a genuinely approachable, exceptionally kind, and intensely passionate crew.
We seek to ignite that passion by setting high standards, championing teamwork, and creating work-life harmony as we collectively navigate rapid growth on a global scale while striving for greater equity and opportunity – inside and outside our organization.
To flourish here, you must be prepared to set a high bar for yourself and those around you. There is always a way to contribute: Acting with autonomy, having accountability and being open to new perspectives are essential to our continued success.
Our deep curiosity to learn and our eagerness to share diverse passions with others gives us balance and injects a one-of-a-kind vibrancy into our culture.
If you are driven to solve exhilarating challenges and have a bias toward action in the face of change, you will be empowered to make a real impact here, with a sharp and passionate team at your back. If Braze sounds like a place where you can thrive, we can’t wait to meet you.
WHAT YOU'LL DO
We’re seeking a Zscaler Engineer II with deep expertise in secure access architecture, zero trust principles, and enterprise-grade infrastructure. In this role, you’ll be the technical lead for our Zscaler environment, owning design, deployment, and operational excellence across Zscaler Internet Access (ZIA), Zscaler Private Access (ZPA), and Zscaler Digital Experience (ZDX). You’ll drive strategic improvements in secure connectivity, act as a trusted partner to our Technology Services organization, and champion automation and scalability as we grow.
You’ll be part of a team that values reliability, resiliency, scalability, and extensibility in everything we build. We operate with a shared sense of ownership and purpose, supporting one another’s growth, holding a high bar for quality, and working together to deliver impactful solutions for our users and the business. Collaboration, curiosity, and a commitment to excellence define how we show up for each other and the company.
If you're excited about reducing risk, improving user experience, and implementing modern access strategies in a cloud-first environment, we’d love to meet you.
Responsibilities:
- Serve as the primary owner and architect of Zscaler services such as ZIA/ZPA/ZDX—managing global configurations, access policies, integrations, and governance
- Lead design and implementation of secure access frameworks in collaboration with Security, IT Network Engineering, and DevOps
- Build and maintain automations that streamline policy assignments, traffic steering, and onboarding/offboarding across the Zscaler platform
- Integrate Zscaler with identity (Okta), MDM (Jamf/Kandji), and SaaS infrastructure to support dynamic and context-aware access controls
- Analyze traffic flows, logs, and security alerts to continuously optimize Zscaler performance, policy enforcement, and user experience
- Act as a point of escalation and subject matter expert for complex troubleshooting, incidents, and post-mortems related to secure access and remote connectivity
- Contribute to security audits, risk assessments, and policy documentation that reflect Zscaler's role in our broader compliance program
- Mentor the wider Information Technology team and provide guidance on Zscaler usage, secure access best practices, and automation techniques
- Stay ahead of industry trends and proactively introduce features, configurations, and strategies to improve security posture and operational agility
WHO YOU ARE
- Extensive hands-on experience architecting and administering Zscaler Internet Access (ZIA) and Private Access (ZPA) in a complex, distributed environment
- Demonstrated success leading cross-functional projects involving secure access, SASE, or zero-trust network architecture
- Proficient in integrating Zscaler with identity providers (Okta/SSO/MFA), endpoint platforms (Jamf, Kandji), and cloud services (AWS/GCP/Azure)
- Strong knowledge of networking concepts, including DNS, IPsec/GRE tunnels, SSL inspection, authentication protocols (SAML/OAuth), and traffic forwarding
- Adept in scripting and automation with Python, Bash, or PowerShell—especially using APIs to manage Zscaler and adjacent systems
- Comfortable working across Security, Infrastructure, and Compliance teams to align technical controls with enterprise risk frameworks
- Experienced in incident response, root cause analysis, and proactive system monitoring in security-sensitive environments
Bonus Points if you:
- Zscaler Certified Professional or Architect certification (ZIA/ZPA)
- Okta, Jamf, or MDM platform certifications
- Experience using Jira for project tracking, access requests, or change management
- Experience designing access controls for hybrid or fully remote workforces at scale
- Background in network security, identity architecture, or SASE design
- Familiarity with infrastructure as code and configuration management (e.g., Terraform, Ansible)
For candidates based in the United States, the pay range for this position at the start of employment is expected to be between $110,700 and $123,000/year with an expected On Target Earnings (OTE) between $123,000 and $136,700/year (including bonus or commission). Your exact offer may vary depending on multiple individualized factors, including market location, job-related knowledge, skills, and experience. In addition to cash compensation, Braze offers full- and part- time employees a comprehensive Total Rewards package that includes equity grants of restricted stock (RSUs) so that all Braze employees own a piece of our company.
#LI-Hybrid
WHAT WE OFFER
Braze benefits vary by location, and we encourage you to review our specific benefits offerings for each country here. More details on benefits plans will be provided if you receive an offer of employment.
From offering comprehensive benefits to fostering hybrid ways of working, we’ve got you covered so you can prioritize work-life harmony. Braze offers benefits such as:
- Competitive compensation that may include equity
- Retirement and Employee Stock Purchase Plans
- Flexible paid time off
- Comprehensive benefit plans covering medical, dental, vision, life, and disability
- Family services that include fertility benefits and equal paid parental leave
- Professional development supported by formal career pathing, learning platforms, and a yearly learning stipend
- A curated in-office employee experience, designed to foster community, team connections, and innovation
- Opportunities to give back to your community, including an annual company-wide Volunteer Week and donation matching
- Employee Resource Groups that provide supportive communities within Braze
- Collaborative, transparent, and fun culture recognized as a Great Place to Work®
ABOUT BRAZE
Braze is the leading customer engagement platform that empowers brands to Be Absolutely Engaging.™ Braze allows any marketer to collect and take action on any amount of data from any source, so they can creatively engage with customers in real time, across channels from one platform. From cross-channel messaging and journey orchestration to Al-powered experimentation and optimization, Braze enables companies to build and maintain absolutely engaging relationships with their customers that foster growth and loyalty.
Braze is proudly certified as a Great Place to Work® in the U.S., the UK, Australia, and Singapore. In 2025, we were recognized as one of Built In’s Best Places to Work. In 2024, we were included in U.S. News & World Report’s Best Companies to Work For (Top 10%) and recognized in Great Place to Work’s Fortune Best Medium Workplaces, Fortune Best Workplaces in Technology, Fortune Best Workplaces for Parents, and Fortune Best Workplaces for Women.
Additionally, we were featured in Great Place to Work UK’s Best Workplaces, Best Workplaces in Europe, Best Workplaces for Development, Best Workplaces for Wellbeing, Best Workplaces for Women, and Best Workplaces in Technology.
You’ll find many of us at headquarters in New York City or around the world in Austin, Berlin, Bucharest, Chicago, Dubai, Jakarta, London, Paris, San Francisco, Singapore, São Paulo, Seoul, Sydney and Tokyo – not to mention our employees in nearly 50 remote locations.
BRAZE IS AN EQUAL OPPORTUNITY EMPLOYERAt Braze, we strive to create equitable growth and opportunities inside and outside the organization.
Building meaningful connections is at the heart of everything we do, and that includes our recruiting practices. We're committed to offering all candidates a fair, accessible, and inclusive experience – regardless of age, color, disability, gender identity, marital status, maternity, national origin, pregnancy, race, religion, sex, sexual orientation, or status as a protected veteran. When applying and interviewing with Braze, we want you to feel comfortable showcasing what makes you you.
We know that sometimes different circumstances can lead talented people to hesitate to apply for a role unless they meet 100% of the criteria. If this sounds familiar, we encourage you to apply, as we’d love to meet you.
Please see our Candidate Privacy Policy for more information on how Braze processes your personal information during the recruitment process and, if applicable based on your location, how you can exercise any privacy rights.