Pre-Sales Engineer— Cybersecurity (SASE/SSE&IAM), Leiden

We are Nomios At Nomios, we are dedicated to delivering cutting‑edge network solutions that drive the success of businesses worldwide. As a leading provider of network infrastructure and security, we pride ourselves on our innovative approach and commitment to excellence. Our team is passionate, skilled, and always ready to tackle new challenges.

Job Description As a Pre‑Sales Engineer specializing in Secure Access Service Edge (SASE), Security Service Edge (SSE) and Identity&Access Management (IAM), you serve as the technical counterpart to the account team during the sales cycle. You qualify opportunities, design target architectures, demonstrate vendor technologies, respond to RFPs, and lead proof‑of‑concept engagements for enterprise customers. You translate customer security and connectivity challenges — hybrid work, cloud adoption, Zero Trust, branch transformation, identity consolidation — into concrete, vendor‑backed designs, and collaborate with Nomios’ strategic partners before handing over to delivery and managed services once the deal closes. This is an individual contributor role that requires hands‑on technical involvement beyond architecture.

Scope

Customer segment– Enterprise organisations, typically 1,000+ employees, with hybrid/multi‑cloud environments and distributed workforces.

Primary technology focus– SASE/SSE platforms: Netskope, Zscaler, Palo Alto Prisma Access, Fortinet FortiSASE, and Cisco Secure Access/Umbrella.

Secondary technology focus– IAM and identity security: workforce IAM, SSO/MFA, privileged access, and identity governance within Zero Trust architectures.

Deal involvement– From qualification through to signed contract; technical owner of the solution.

Key Responsibilities

Technical Sales&Qualification

Qualify opportunities technically alongside the account manager; identify fit, risks, and competitive position early.

Lead discovery sessions with customer security, network, and identity teams to uncover requirements and constraints.

Present Nomios’ SASE/SSE and IAM propositions to audiences ranging from engineers to CISO level.

Solution Design

Produce high‑level and low‑level designs for SASE/SSE rollouts, including SWG, CASB, ZTNA, DLP, RBI and FWaaS components.

Design IAM integrations covering SSO, MFA, conditional access, and identity‑driven policy in SASE platforms.

Map designs to customer compliance drivers such as NIS2, ISO 27001, and DORA without overstating coverage.

Proofs of Concept&Demos

Build and run PoCs on at least two SASE/SSE platforms; configure tenants, policies, connectors, and client agents.

Define measurable PoC success criteria with the customer and document outcomes objectively.

Maintain personal demo environments and stay current as vendor platforms evolve.

RFP&Proposal Support

Own the technical response to RFPs and tenders: architecture, bill of materials, assumptions, and risks.

Work with the bid team to ensure proposals are technically accurate, deliverable, and priced against a real design.

Handover&Internal Collaboration

Produce clear handover documentation for professional services and managed services teams at deal close.

Feed field insights back to portfolio and vendor alliance teams; flag recurring gaps or new customer demands.

Support account managers with account planning for named enterprise accounts.

Job Requirements

Qualifications

4–7 years of experience in pre‑sales, solution architecture, or senior engineering within cybersecurity or enterprise networking.

Hands‑on experience with at least one major SASE/SSE platform in production or large‑scale PoC settings.

Working knowledge of IAM concepts and at least one enterprise IAM platform (e.g., Entra ID, Okta, Ping).

Solid grounding in enterprise networking: routing, DNS, TLS, IPsec, SD‑WAN concepts, and identity federation (SAML, OIDC, SCIM).

Experience running customer‑facing technical workshops and PoCs.

Bachelor’s degree in a relevant field, or equivalent demonstrated experience.

Certifications

One current vendor certification in a SASE/SSE or IAM platform is expected.

Preferred: Netskope NCCSA/NCCSI, Zscaler ZDTA/ZTCA, Palo Alto PCNSE or PCCSE, Fortinet NSE 6/7, Cisco CCNP Security.

Nice to have: an IAM‑vendor certification (e.g., Okta Certified Professional, Microsoft SC‑300), or a vendor‑neutral security certification such as CompTIA Security+.

Not required: CISSP, CCIE, JNCIE. Candidates holding them are welcome; they are not filters.

Language Requirements

Dutch– C1 – able to run customer workshops and write proposals.

English– C1 – working language with vendors and internal teams.

#J-18808-Ljbffr