Zero Trust Security Analyst -- 16719
Seneca Resources Company, LLC · Vienna, VA · 2 mo ago
Information Technology$55/hrContract
Key Responsibilities
- Analyze enterprise firewall rules, network segmentation policies, address groups, and identity-based access controls to support Zero Trust initiatives.
- Review existing identity sources including Active Directory (AD), Entra ID, RBAC models, and IGA structures to identify reusable access models.
- Evaluate application access patterns across web, API, database, console, and internal services environments.
- Identify overly permissive security rules, policy gaps, and overlapping controls requiring remediation.
- Assess existing security controls and determine readiness for Zero Trust enforcement.
- Recommend reuse or redesign of firewall policies, user groups, application definitions, and security objects.
- Validate proposed Zero Trust access requirements using least-privilege security principles.
- Support application onboarding and Zero Trust policy alignment initiatives.
- Document detailed security analysis documentation outlining current-state security configurations, reusable controls and access structures, net-new security objects and dependencies.
- Partner with Zero Trust Engineering and security operations teams to support implementation planning.
- Maintain audit-ready traceability between applications, security objects, identity groups, and Zero Trust policies.
- Aid with compliance reviews, security assessments, and governance initiatives.
Required Skills/Education
- 5+ years of experience in cybersecurity, network security analysis, IAM, or Zero Trust security environments.
- Strong understanding of enterprise network security fundamentals including firewalls, security zones, and Layer 4/Layer 7 policies.
- Experience analyzing enterprise firewall rule bases such as Palo Alto Networks or similar platforms.
- Familiarity with identity and access management concepts including Active Directory, Entra ID, RBAC, and group-based access controls.
- Ability to interpret complex security configurations and translate findings into actionable technical requirements.
- Strong documentation, analytical, and communication skills.
- Experience working within enterprise security, infrastructure, or cloud transformation programs.
Preferred Qualifications
- Experience with Zero Trust Network Access (ZTNA) frameworks or user-based firewall policies.
- Exposure to IAM, Identity Governance & Administration (IGA), or access governance tools.
- Familiarity with CMDB platforms, service onboarding workflows, and application dependency mapping.
- Prior experience supporting security audits, compliance initiatives, or risk assessments.
- Knowledge of least-privilege access models and modern Zero Trust architecture principles.