Job Description

Ready to build the future with AI?
At Genpact, we don't just keep up with technology--we set the pace. AI and digital innovation are redefining industries, and we're leading the charge. Genpact's AI Gigafactory, our industry-first accelerator, is an example of how we're scaling advanced technology solutions to help global enterprises work smarter, grow faster, and transform at scale. From large-scale models to agentic AI, our breakthrough solutions tackle companies' most complex challenges.
If you thrive in a fast-moving, innovation-driven environment, love building and deploying cutting-edge AI solutions, and want to push the boundaries of what's possible, this is your moment.
Genpact (NYSE: G) is an advanced technology services and solutions company that delivers lasting value for leading enterprises globally. Through our deep business knowledge, operational excellence, and cutting-edge solutions - we help companies across industries get ahead and stay ahead. Powered by curiosity, courage, and innovation, our teams implement data, technology, and AI to create tomorrow, today. Get to know us at genpact.com and on LinkedIn, X, YouTube, and Facebook.
Inviting applications for the role of Assistant Manager - Internet & Proxy
We're seeking a seasoned L2/L3 Engineer to own and evolve our enterprise internet egress and secure web gateway (SWG) stack. This role leads complex design, implementation, and troubleshooting for web proxies, TLS/SSL inspection, URL/content filtering, PAC files, authentication, and user experience, while ensuring high availability, compliance, and threat protection. You'll act as the final escalation point for incidents, drive standardization and automation, and partner with Security, Network, and Endpoint teams to deliver secure, performant internet access at scale.
Responsibilities
Operations & Escalations (L3)

• Serve as the highest escalation point for Proxy incidents, Good Hands-on experience on Netskope and Zscaler, performance degradation, TLS handshake failures, authentication issues (Kerberos/NTLM/SSO), and PAC logic anomalies.
• Perform deep packet analysis (TLS/HTTP/HTTP2, QUIC/DoH/DoQ considerations) to isolate root cause across network, DNS, proxy, and endpoint layers.
• Lead problem management: document RCAs, corrective/preventive actions, and recurring issue eradication.

Design & Engineering

• Architect and maintain enterprise Proxy/SWG solutions (on prem and cloud), including transparent/explicit proxy modes, forward/reverse proxy, split tunneling, and branch/roaming user models.
• Own URL categorization/whitelisting/blacklisting, custom categories, malware/phishing protection, and data leakage guardrails aligned to policy.
• Design resilient egress: HA, geo redundancy, smart routing, fail open/closed behavior, and graceful bypass strategies.
• Define certificate & key management for SSL inspection (CA hierarchy, pinning exceptions, break/inspect policies, HSTS impacts).

Policy & Governance

• Translate security requirements into enforceable proxy policies; maintain baselines and change control.
• Develop governance for PAC file lifecycle (versioning, testing, rollbacks), exception management, and business approvals.
• Ensure compliance with regulatory and audit requirements; produce evidence and control narratives.

Automation & Observability

• Build automation for policy deployment, PAC updates, and configuration backups (API/CLI/Scripting).
• Implement robust monitoring: health checks, synthetic transactions, user experience telemetry, alerting thresholds, and SLOs.
• Create dashboards and reports: site performance, top blockers, decrypted traffic posture, exception sprawl, and risk trends.

Qualifications we seek in you!
Minimum Qualifications

• Partner with SOC for threat detection and proxy log enrichment; tune rules to reduce false positives.
• Work with Network (firewalls/DNS/NAT), Endpoint (cert distribution, agents), and IAM (SSO groups) to ensure end to end reliability.
• Mentor L2 engineers; develop runbooks, troubleshooting trees, and knowledge articles.

Preferred Qualifications/ Skills

• Educational: Bachelor's degree in computer science or equivalent subject
• Experience: Good experience in enterprise various Proxy Layer7 technologies for e.g Zscaler/ Netskope /Firewalls at L3 level.
• Technologies: Hands on with one or more:

o Cloud SWG/ZTNA: Zscaler Internet Access (ZIA), Netskope SWG.
o On prem Proxies: Blue Coat/Symantec ProxySG/ASG, Cisco WSA, Squid, NGINX/Envoy as forward proxy.
o Auth & Directory: Kerberos/NTLM, SAML/OAuth/OIDC with AD/Azure AD; group based policies.
o Certificates: PKI/CA, SSL inspection, certificate pinning exceptions, HSTS implications.

• Protocols: HTTP/1.1, HTTP/2, TLS 1.2/1.3, SNI, OCSP/CRL, DNS/DoH/DoQ, QUIC.
• Scripting: Python/PowerShell/Bash for automation (APIs, config templating, data parsing).
• Soft Skills: Strong ownership, clear documentation, stakeholder communication, and incident leadership.

Certifications (Good to Have)

• Zscaler ZIA Administrator / ZCCA IA or Netskope
• CompTIA Security+, CySA+, or equivalent
• GIAC/Global certifications relevant to network security

Why join Genpact?

• Lead AI-first transformation - Build and scale AI solutions that redefine industries
• Make an impact - Drive change for global enterprises and solve business challenges that matter
• Accelerate your career--Gain hands-on experience, world-class training, mentorship, and AI certifications to advance your skills
• Grow with the best - Learn from top engineers, data scientists, and AI experts in a dynamic, fast-moving workplace
• Committed to ethical AI - Work in an environment where governance, transparency, and security are at the core of everything we build
• Thrive in a values-driven culture - Our courage, curiosity, and incisiveness - built on a foundation of integrity and inclusion - allow your ideas to fuel progress

Come join the 140,000+ coders, tech shapers, and growth makers at Genpact and take your career in the only direction that matters: Up.
Let's build tomorrow together.
Genpact is an Equal Opportunity Employer and considers applicants for all positions without regard to race, color, religion or belief, sex, age, national origin, citizenship status, marital status, military/veteran status, genetic information, sexual orientation, gender identity, physical or mental disability or any other characteristic protected by applicable laws. Genpact is committed to creating a dynamic work environment that values respect and integrity, customer focus, and innovation.
Furthermore, please do note that Genpact does not charge fees to process job applications and applicants are not required to pay to participate in our hiring process in any other way. Examples of such scams include purchasing a 'starter kit,' paying to apply, or purchasing equipment or training.

Skills Required