About The Position
Zscaler accelerates digital transformation to ensure our customers can be more agile, efficient, resilient, and secure. As an AI-forward enterprise, we are constantly pushing the envelope, leveraging the world’s largest security data lake to power our cloud-native Zero Trust Exchange platform. This innovation protects our customers from cyberattacks and data loss by securely connecting users, devices, and applications in any location. Here, impact in your role matters more than title and trust is built on results. We say, impact over activity. We seek innovators who actively use AI to amplify their impact and who thrive in an environment where we leverage intelligent systems to stay ahead of evolving threats. We believe in transparency and value constructive, honest debate—we’re focused on getting to the best ideas, faster. We build high-performing teams that can make an impact quickly and with high quality. To do this, we are building a culture of execution centered on customer obsession, collaboration, ownership, and accountability. We value high-impact, high-accountability with a sense of urgency where you’re enabled to do your best work and embrace your potential. If you’re driven by purpose, thrive on solving complex challenges, and want to be part of the team that’s helping to secure the AI age, we invite you to bring your talents to Zscaler and help shape the future of cybersecurity. We are looking for an ACAS Lead / Staff Vulnerability Engineer to join our Engineering team. This is a fully onsite role based near Crystal City, VA, reporting to the VP of Product Security. You will operate as the founding vulnerability management engineer inside a brand-new U.S. Federal IL6 (SCIF) environment. This role is critical to maintaining our multitenant architecture and global security footprint. This is a rare "Zero-to-One" opportunity to build the vulnerability management engine, engineer the offline infrastructure, and establish the governance playbook from the ground up, free from legacy technical debt. You will define the end-to-end vulnerability management architecture, including platform selection, sizing, and security control implementation strategy for the new air-gapped IL6 environment. You will ensure we enable organizations worldwide to harness speed and agility while operating strictly within a U.S. SCIF and adhering to one-way diode transfer protocols.
Requirements
- U.S. Citizenship with an active U.S. Secret clearance
- Experience in End-to-End Vulnerability Management, specifically building and administering Tenable.sc, Nessus Manager, or ACAS in disconnected/air-gapped environments
- Solid understanding of risk-based prioritization (CVSS, EPSS), remediation lifecycle, and SLA governance
Nice To Haves
- DoD 8570/8140 IAT Level II certification (e.g., Security+ CE, GSEC, SSCP, or CySA+)
- Experience with modern scanning methodologies, including CSPM (Cloud Security Posture Management) concepts, Web Application Scanning (WAS), and Container Security
- Scripting skills for automation in disconnected environments
- Understanding of government cloud and container operations, including classified environments (AWS C2S/SC2S, ECS/Kubernetes, VM hardening) and exposure to FedRAMP High/Moderate isolated ticketing workflows (Jira or ServiceNow)
Responsibilities
- Design and execute authenticated and unauthenticated network and host scanning using IL6-approved tools (Tenable.sc, Nessus Manager, or ACAS)
- Advance the continuous security monitoring controls in the environment as autonomous and innovative systems
- Oversee patch and system hardening campaigns (aligning with DISA STIGs and IAVM directives) in collaboration with IL6 service owners
- Develop and deliver high-impact reports, integrating POA&M tracking and remediation status
- Maintain essential documentation including runbooks, SOPs, exception governance, and change control processes within the SCIF environment
Benefits
- Various health plans
- Time off plans for vacation and sick time
- Parental leave options
- Retirement options
- Education reimbursement
- In-office perks
- Comprehensive and inclusive benefits to meet the diverse needs of our employees and their families throughout their life stages
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
Education Level
No Education Listed
Number of Employees
1,001-5,000 employees
