Zero Trust Network Operations Engineer

MARS Solutions Group is looking for an experienced Network Engineer for a remote role. Our client is a Technology Services leader looking for high-quality talent to make a difference. They are known to respect a traditional work week and often extend contracts for added job security and stability.

Description

As part of Client's global Network Security Operations function, the Zero Trust Network Operations Engineer is responsible for the day to day operation, monitoring, support, and lifecycle management of the enterprise network security infrastructure. This role focuses on maintaining availability, enforcing security policies, executing approved changes, and responding to incidents across a large, globally distributed environment.

The environment supports 1,000+ sites and 100,000+ users, including datacenters, manufacturing plants, sales offices, and customer contact centers. Technologies include Cisco, Fortinet, Zscaler, Silver Peak SD WAN, Akamai Guardicore, Tufin, Forescout NAC, Microsoft Azure, Google GCP, and related security platforms.

This is a hands-on operational role working closely with global IT operations teams, security partners, and managed service providers to ensure secure, stable, and compliant network services.

Mandatory Technical Skills

• Strong hands-on experience with Forescout (primary required platform)
• Strong networking and security engineering background
• Hands-on experience with Cisco technologies and enterprise networking environments
• Experience supporting:
• Network segmentation
• Device classification
• Zero Trust security initiatives
• Unmanaged device environments
  

How You Will Do It

Operational Support & Maintenance

Operate and support enterprise Zero Trust platforms, primarily Forescout NAC and Infoblox DDI.

Perform daily monitoring, health checks, and troubleshooting of network access control services, DNS, and DHCP.

Manage network access exceptions, MAC address repository (MAR) whitelisting, and device compliance checks for corporate and BYOD/Guest networks.

Data Analytics & Asset Management

Leverage data analytics skills to analyze, correlate, and reconcile asset data across Forescout, Infoblox, Axonius, and ServiceNow CMDB.

Assist in identifying, classifying, and managing the lifecycle of over 30,000 unmanaged, IoT, and OT devices across the global network.

Incident & Problem Management

Respond to network access control incidents, including 802.1X/RADIUS authentication failures and Guest Captive Portal (JCI-Internet) loading issues.

Work collaboratively with the Network TOC, Service Desk, and field IT teams during security events or network service degradations.

Change & Configuration Management

Implement approved access control rules, semi-trust policies, and network segmentation changes (VLAN assignments/ACLs) in production environments.

Execute DNS/DHCP configuration changes and IPAM updates following formal change management processes.

Automation & Continuous Improvement

Identify opportunities to automate repetitive operational tasks (e.g., utilizing PowerApps/Power Automate to streamline MAC address approvals).

Assist with operational runbooks, standard operating procedures, and knowledge documentation for L1/L2 support teams.

Required

What we look for:

Hands-on operational experience supporting enterprise network security, network access control, or DDI environments.

Working knowledge of network authentication protocols (802.1X, RADIUS, MAB) and core networking concepts (TCP/IP, VLANs, routing/switching).

Experience troubleshooting DNS, DHCP, and IP address management (IPAM) issues.

Experience working within ITIL-based operational processes (incident, change, problem).

Desirable

Direct experience operating Forescout, Infoblox, or Axonius platforms.

Experience with ServiceNow CMDB and building automated workflows (e.g., PowerApps).

Exposure to Zero Trust Network Architecture and IoT/OT device classification from an operational perspective.

Qualifications

Basic scripting or automation experience (Python preferred).

Bachelor s degree in Computer Science, Information Systems, Data Analytics, or other applicable disciplines.

Security or networking certifications (e.g., Forescout FSCA/FSCP, CCNA, Security+) are a plus.

About MARS Solutions Group

MARS Solutions Group provides a range of opportunities for meaningful work by understanding that employment fit is a combination of people, process, and technology. We leverage our experienced and compassionate team to bring humanity to matching you with the right advanced technology role, and stay connected with you to help you attain your professional goals.