Security Engineer – Zscaler – L2 at Salt South Africa

We are seeking an experienced Security Engineer with strong expertise in Zscaler cloud security solutions and Fortinet FortiGate firewalls. The successful candidate will be responsible for designing, implementing, managing, and optimising our security infrastructure to ensure robust protection across the enterprise environment.
This role requires strong hands-on technical capability, advanced problem-solving skills, and the ability to collaborate effectively with cross-functional IT and security teams.


Responsibilities
Zscaler Security


Design, configure, and maintain Zscaler Internet Access (ZIA) and Zscaler Private Access (ZPA).
Oversee Zscaler security policies, including URL filtering, SSL inspection, DLP, CASB, and threat protection features.
Troubleshoot Zscaler user traffic, authentication issues (SAML/SSO), and policy enforcement challenges.
Optimise Zscaler configurations to enhance performance, strengthen security posture, and improve user experience.
Perform log analysis and reporting using Zscaler dashboards, Zscaler Nanolog, and Splunk integrations.


Fortinet / FortiGate Security


Deploy, configure, and administer FortiGate firewalls across distributed environments.
Manage firewall policies, NAT rules, VPNs (IPsec/SSL), and high availability (HA) configurations.
Implement and optimise FortiAnalyzer, FortiManager, and other Fortinet ecosystem tools.
Conduct regular firewall audits, rule clean-ups, and network segmentation improvements.
Monitor threat alerts and respond to security incidents involving Fortinet infrastructure.


General Security Engineering


Participate in security architecture design, vulnerability assessments, and risk mitigation planning.
Manage identity and access controls, ensuring alignment with Zero Trust principles.
Support incident response activities, including investigation, containment, and remediation.
Develop and maintain documentation, including SOPs, diagrams, runbooks, and security policies.
Collaborate with network, cloud, and IT teams to ensure security alignment across the organisation.


Experience


Matric and Tertiary Qualification
5+ years of experience as a Security Engineer / Network Security Engineer
Hands-on expertise with Zscaler
Strong experience with Fortinet FortiGate firewalls, including advanced security features
Solid understanding of Zero Trust architecture and cloud security best practices
Experience with VPN technologies, SD-WAN, DNS security, and SSL inspection
Strong troubleshooting and analytical skills (network packets, logs, security events)
Familiarity with identity platforms (Azure AD, Okta, SAML, OAuth)


Preferred


Zscaler Certified (ZCCA-IA, ZCCP-IA, ZCP-PA)
Fortinet NSE certification (NSE 4 / NSE 5 / NSE 6)
Experience with SIEM tools (Splunk, QRadar, Sentinel)
Knowledge of scripting (Python, PowerShell) for automation
Exposure to cloud platforms (Azure, AWS, GCP)