Pre-Sales Engineer — Cybersecurity (SASE/SSE & IAM)

We are Nomios

At Nomios, we are dedicated to delivering cutting-edge network solutions that drive the success of businesses worldwide. As a leading provider of network infrastructure and security, we pride ourselves on our innovative approach and commitment to excellence. Our team is passionate, skilled, and always ready to tackle new challenges.

As a Pre-Sales Engineer specialising in Secure Access Service Edge (SASE), Security Service Edge (SSE) and Identity & Access Management (IAM), you are the technical counterpart to the account team during the sales cycle. You qualify opportunities, design target architectures, demonstrate vendor technologies, respond to RFPs, and lead proof-of-concept engagements for enterprise customers.

You translate customer security and connectivity challenges — hybrid work, cloud adoption, Zero Trust, branch transformation, identity consolidation — into concrete, vendor-backed designs. You work closely with Nomios' strategic SASE/SSE and IAM partners and hand over cleanly to delivery and managed services once a deal closes.

This is an individual contributor role. You are expected to be hands-on with the technology, not only architectural.

Scope:

• Customer segment — Enterprise organisations, typically 1,000+ employees, with hybrid/multi-cloud environments and distributed workforces.

• Primary technology focus — SASE/SSE platforms — Netskope, Zscaler, Palo Alto Prisma Access, Fortinet FortiSASE, and Cisco Secure Access / Umbrella.

• Secondary technology focus — IAM and identity security — workforce IAM, SSO/MFA, privileged access, and identity governance, integrated as part of Zero Trust architectures.

• Deal involvement — From qualification through to signed contract; technical owner of the solution, not the commercial owner.

Key Responsibilities:

1-Technical Sales & Qualification

• Qualify opportunities technically alongside the account manager; identify fit, risks, and competitive position early.

• Lead discovery sessions with customer security, network, and identity teams to uncover requirements and constraints.

• Present Nomios' SASE/SSE and IAM propositions to audiences ranging from engineers to CISO level.

2-Solution Design

• Produce high-level and low-level designs for SASE/SSE rollouts, including SWG, CASB, ZTNA, DLP, RBI and FWaaS components.

• Design IAM integrations covering SSO, MFA, conditional access, and identity-driven policy in SASE platforms.

• Map designs to customer compliance drivers (NIS2, ISO 27001, DORA where applicable) without overstating coverage.

3-Proofs of Concept & Demos

• Build and run PoCs on at least two SASE/SSE platforms; configure tenants, policies, connectors, and client agents.

• Define measurable PoC success criteria with the customer upfront and document outcomes objectively.

• Maintain personal demo environments and stay current as vendor platforms evolve.

4-RFP & Proposal Support

• Own the technical response to RFPs and tenders: architecture, bill of materials, assumptions, and risks.

• Work with the bid team to ensure proposals are technically accurate, deliverable, and priced against a real design.

5-Handover & Internal Collaboration

• Produce clear handover documentation for professional services and managed services teams at deal close.

• Feed field insights back to portfolio and vendor alliance teams; flag recurring gaps or new customer demands.

• Support account managers with account planning for named enterprise accounts.

Qualifications:

• 4–7 years of experience in a pre-sales, solution architecture, or senior engineering role within cybersecurity or enterprise networking.

• Demonstrable hands-on experience with at least one major SASE/SSE platform in production or large-scale PoC settings (Netskope, Zscaler, Palo Alto Prisma Access, Fortinet FortiSASE, or Cisco Secure Access).

• Working knowledge of IAM concepts and at least one enterprise IAM platform (e.g. Entra ID, Okta, Ping).

• Solid grounding in enterprise networking: routing, DNS, TLS, IPsec, SD-WAN concepts, and identity federation (SAML, OIDC, SCIM).

• Experience running customer-facing technical workshops and PoCs.

• Bachelor's degree in a relevant field, or equivalent demonstrated experience.

Certifications:

One current vendor certification in a SASE/SSE or IAM platform is expected. Additional certifications are welcome but not stacked as requirements.

• Preferred — Netskope NCCSA/NCCSI, Zscaler ZDTA/ZTCA, Palo Alto PCNSE or PCCSE, Fortinet NSE 6/7, Cisco CCNP Security.

• Nice to have — An IAM-vendor certification (e.g. Okta Certified Professional, Microsoft SC-300), or a vendor-neutral security certification such as CompTIA Security+.

• Not required at this level — CISSP, CCIE, JNCIE. Candidates holding them are welcome; they are not filters.

Language Requirements:

• Dutch: C1 — able to run customer workshops and write proposals.

• English: C1 — working language with vendors and internal teams.