Professional Resume Template for

Zero Trust Security Architect

Adrian T. Reyes

Arlington, VA

(703) 555-0187

adrian.reyes@zerotrust-mail.com

linkedin.com/in/adrian-reyes-zt | github.com/adrianreyes-zt | reyessecurity.io

Professional Summary

Methodical Zero Trust Security Architect with 6 years of experience designing and implementing identity-centric continuous verification frameworks across enterprise hybrid-cloud environments. Proven track record in aligning architectures with NIST SP 800-207, configuring secure micro-segmentation, and deploying passwordless phishing-resistant MFA. Reduced unauthorized lateral movement risk across endpoints by 48% and shortened security incident response times by 36% through automated identity orchestration. Proficient in Microsoft Entra ID, Okta, Zscaler Private Access, Palo Alto Prisma Access, HashiCorp Vault, and CrowdStrike Falcon.

Work Experience

Zero Trust Security Architect — NovaShield Technologies

Arlington, VA | January 2023 – Present

  • Designed and executed a comprehensive Zero Trust Network Access (ZTNA) migration utilizing Zscaler Private Access for 18,000 global remote workers, replacing legacy VPNs and reducing unauthorized lateral movement attempts by 54%.
  • Architected phishing-resistant passwordless authentication protocols using Microsoft Entra ID and FIDO2 keys for 8,500 enterprise identities, decreasing credential-related attack paths by 68%.
  • Implemented micro-segmentation policies within AWS and Azure cloud environments using Palo Alto Prisma Access and Terraform, isolating critical database clusters and lowering network-level exposure by 42%.
  • Authored and maintained the corporate Zero Trust architecture roadmap in compliance with NIST SP 800-207, achieving 100% federal agency security alignment on annual third-party audits.

Associate Zero Trust Security Engineer — Aegis Cyber Solutions

Fairfax, VA | August 2020 – December 2022

  • Configured and managed Okta identity policies and context-aware access rules for 120+ internal SaaS integrations, resulting in a 38% reduction in policy exception tickets.
  • Deployed HashiCorp Vault across 4 development environments to automate secrets rotation and on-demand credential generation, decreasing hardcoded secret exposures by 74%.
  • Integrated CrowdStrike Falcon endpoint telemetry with the corporate SIEM system, reducing average identity-related threat investigation time by 45% (MTTR).
  • Conducted quarterly access reviews for 3,200 active users, purging 450+ stale accounts and ensuring 100% adherence to least-privilege principles.

Education

Bachelor of Science in Cybersecurity

George Mason University · Fairfax, VA · 2020

Skills

Zero Trust Architecture (ZTA), NIST SP 800-207, Identity & Access Management (IAM), Phishing-resistant MFA, ZTNA implementation, Micro-segmentation, Context-aware access policies, Secrets management, SIEM telemetry integration, Microsoft Entra ID, Okta, Zscaler Private Access, Palo Alto Prisma Access, HashiCorp Vault, CrowdStrike Falcon

Projects

Enterprise Passwordless Migration

Role: Lead Security Architect

Tools: Microsoft Entra ID, FIDO2 Security Keys, YubiKey, PowerShell

Architected and executed passwordless auth rollout for 8,500 users, reducing password-reset service desk volume by 62% and eliminating credential stuffing risk.

Legacy VPN to ZTNA Transition

Role: Zero Trust Engineer

Tools: Zscaler Private Access (ZPA), Okta, Palo Alto NGFW, Terraform

Migrated 18,000 users from legacy IPSec VPNs to ZTNA over 6 months, reducing network latency by 28% and preventing unauthorized lateral movement.

Certifications

  • CISSP (Certified Information Systems Security Professional) (2024)
  • CCSP (Certified Cloud Security Professional) (2023)
  • Forrester Zero Trust Certified Professional (ZTCP) (2021)

Additional information

  • Languages: English (Native), Spanish (Conversational)
  • Professional Memberships: Information Systems Security Association (ISSA) Member (2021 – Present)
  • Technical Presentations: Speaker on NIST SP 800-207 patterns at Federal Cyber Summit (2025)

Ready to use this template?

Customize this template

Job Market Insights

Market data and opportunities for

Zero Trust Security Architect

Job Market Insights

$135,000

-

$185,000

Avg:

$160,000

Growth Outlook:

The employment of information security analysts, which includes Zero Trust Security Architects, is projected to grow 29% from 2024 to 2034, much faster than the average for all occupations. The demand is heavily fueled by Executive Order 14028 directing federal agencies and contractors to adopt Zero Trust architectures, as well as the commercial sector's rapid migration from perimeter-based firewalls to identity-centric continuous verification frameworks.

29% growth over 10 years (2024–2034)

Key Skills Required

Focus on these skills when customizing your resume for recruiter screenings.

Hands-on experience designing and implementing ZTNA and identity-centric access control policies (NIST SP 800-207) || Deep proficiency with enterprise IAM tools (Microsoft Entra ID, Okta) and phishing-resistant MFA || Working knowledge of network micro-segmentation, secrets management (HashiCorp Vault), and endpoint telemetry integrations

Search Jobs

Explore live openings for

Zero Trust Security Architect

roles and tailor your resume to match the market demand.

Search

FAQ

Common questions about the

Zero Trust Security Architect

position

What is the core philosophy of Zero Trust architecture?
How does NIST SP 800-207 define Zero Trust?
What is ZTNA and how does it replace legacy VPNs?
What are the most common challenges in a Zero Trust migration?
What role does identity play in Zero Trust?
Which certifications are most relevant for Zero Trust Architects?
Use this template