π Location: Fully Remote
π Engagement: Full-Time
β° Working Hours: Standard EST Business Hours
π° Compensation: Competitive & Negotiable + 20 PTOs
π‘ About Zazz
At Zazz.io, we build world-class custom digital solutions that power innovation across industries. With over 763 successful application releases, weβve partnered with startups, Fortune 500 companies, and government agencies to deliver cutting-edge products in healthcare, finance, e-commerce, and entertainment.
Our mission is simple: turn bold ideas into impactful digital experiences.
π The Opportunity
Weβre looking for a Network & Security Consultant with deep expertise in MDR/XDR, firewalls, VPNs, penetration testing, and vulnerability management to join our advanced security team.
In this role, you will lead security architecture and implementation projects for SMB and mid-market clients, conduct vulnerability assessments, and drive improvements in cybersecurity posture. This is a high-impact role for someone passionate about hands-on security engineering and proactive threat mitigation.
β‘ What Youβll Do
- Design, deploy, and secure Sophos Firewalls, including site-to-site VPNs, remote access, network segmentation, and access control policies for SMB and mid-market clients.
- Configure and integrate Acronis Cyber Protect security modules (anti-malware, patching, vulnerability scanning) for endpoint and server environments.
- Implement Sophos XDR/MDR and Huntress for layered detection, response, and endpoint visibility.
- Conduct vulnerability assessments and penetration testing using tools like Nessus, Qualys, Burp Suite, and Acronis VA modules β including network, application, and endpoint layers.
- Deliver security posture assessments, gap analyses, and accessibility/security configuration reviews against frameworks like NIST CSF, CIS Controls, and HIPAA technical safeguards.
- Develop structured remediation plans and coordinate with Infrastructure/Endpoint teams for closure.
- Enforce Zero Trust, DLP, and Conditional Access policies leveraging Microsoft 365, Acronis, Intune, and NinjaOne.
- Support vCIO in compliance readiness (HIPAA, SOC 2, GDPR) through control implementation and evidence preparation.
- Produce network/security architecture diagrams and maintain detailed technical documentation per client.
π What You Bring
- 6β10 years of hands-on experience in network & security consulting, ideally within an MSP or MSSP.
- Strong expertise in MDR/XDR, endpoint security, and firewall design/implementation.
- Proven track record conducting comprehensive vulnerability assessments and penetration tests across infrastructure, endpoint, and web applications.
- Familiarity with accessibility & configuration assessments, Zero Trust enforcement, and DLP implementation.
- Experience delivering security assessments and remediation roadmaps mapped to compliance frameworks (NIST, HIPAA, SOC 2, GDPR).
- Strong documentation and reporting skills for both technical and leadership stakeholders.
Tools & Platforms
- Firewalls: Sophos XGS Series
- Security: Sophos XDR/MDR, Huntress, Acronis Cyber Protect
- Vulnerability & Pen Testing: Nessus, Qualys, Burp Suite, Acronis VA module, manual testing methodologies (OWASP Top 10)
- Cloud Security: Microsoft Compliance & Security Center
- VPN: Sophos Remote Access & Site-to-Site
- Automation & Enforcement: NinjaOne Policies, Intune Baselines
π Why Youβll Love Working Here
- Be part of a remote-first, collaborative, high-performing team
- Lead innovative security projects for top-tier global clients
- Enjoy a culture that values your voice, ideas, and career growth
