Zscaler Product Owner

Job Description:

This role is a strategic opportunity for a seasoned Product Owner to lead the vision, roadmap, and delivery of enterprise Zero Trust and secure access capabilities. You'll drive discovery, translate business needs into clear requirements, and partner closely with engineering to deliver high-value ZTNA, SASE, and cloud security features that improve reliability, speed, and user experience. The position blends deep technical understanding with strong backlog management, stakeholder alignment, and outcome-driven delivery—ensuring security products evolve in step with business and compliance demands. It's ideal for a PO who excels at shaping direction, influencing across functions, and bringing complex security products to life at scale.

Requirements:

• Proven ability to lead discovery, document business requirements, and build capability roadmaps and high-level designs using techniques like Event Storming and User Story Mapping.
• Deep expertise in ZTNA, secure remote access, and modern architectures such as SASE, including practical knowledge of VPNs, segmentation, NAC, threat detection, and cybersecurity mesh concepts.
• Strong hands-on experience with SWG, CASB, FWaaS, cloud security (AWS/Azure/GCP), and core networking protocols (TCP/IP, DNS, BGP, SD-WAN), along with DNS security, TLS, and routing/switching fundamentals.
• Demonstrated success leading network or security engineering teams in high-velocity environments with a focus on secure, efficient service delivery and continuous improvement.
• Proficiency in Agile frameworks (Scrum/Kanban), backlog/workflow management, and SRE metrics/reporting (e.g., MTTR, SLOs, deployment frequency).

Nice to have:

• Strong experience integrating secure access with identity platforms (Azure AD, Okta, Ping) using SAML, OAuth2, and OIDC, along with familiarity in security logging/telemetry, SIEM tools like Splunk, and automation via REST APIs and IaC tools such as Terraform and Ansible.

• Knowledge of key security frameworks (NIST , ISO 27001, CIS Controls) with the ability to support governance, risk management, policy enforcement, and audit readiness across complex environments.
• Experience in driving complex, transformational network security initiatives from conception through to enterprise-wide adoption, including securing stakeholder buy-in and investment.
• Outstanding communication, negotiation, and influencing skills to navigate a complex stakeholder landscape (including business leaders, technology peers, risk, compliance, and audit functions) and foster a culture of security-by-design.

Responsibilities:

• Lead the discovery, documentation, and translation of business requirements into capability roadmaps and high-level system designs, using techniques such as Event Storming and User Story Mapping to drive clarity for network security automation initiatives.
• Architect and evolve Zero Trust and secure access solutions—including ZTNA, SASE, SWG, CASB, FWaaS, segmentation, and modern VPN alternatives—to deliver resilient, scalable, and secure access across cloud and on-prem environments.
• Oversee engineering execution within Agile/SRE operating models, managing backlogs, facilitating sprint planning, refining workflows, and ensuring measurable improvements in MTTR, deployment frequency, SLO attainment, and platform reliability.
• Provide hands-on leadership to network engineering and security teams, guiding solution delivery, enforcing best practices, and driving continuous improvement across secure connectivity services and platforms.
• Design and validate secure integration patterns across identity platforms (Azure AD, Okta, Ping), cloud environments (AWS, Azure, GCP), and security ecosystems leveraging SAML, OAuth2, OIDC, APIs, and automation frameworks.
• Ensure effective observability and governance by defining logging, telemetry, and SIEM integrations, supporting compliance initiatives, and aligning architectures to frameworks such as NIST , ISO 27001, and CIS Controls.
• Engage and influence senior stakeholders across business, technology, and risk functions, driving consensus, securing investment for strategic security initiatives, and promoting a security-by-design culture throughout the organization.