OUR GOAL:
Treat our consultants and clients the way we would like others to treat us!Interested in joining our team? Check out the opportunity below and apply today!
We are seeking a Senior Cybersecurity Engineer to lead the design, implementation, and support of enterprise web application and network security solutions. This role will be responsible for securing internet-facing applications through F5 Distributed Cloud WAF, API security, bot protection, and network security technologies including Palo Alto firewalls and secure remote access solutions. The ideal candidate possesses a blend of application security, network security, and cloud security experience and is passionate about protecting critical enterprise services.
Responsibilities
Web Application Security
Administer and support F5 Distributed Cloud (XC) WAF platform.
Deploy and maintain WAF policies, signatures, and security controls.
Configure: API Protection Bot Defense DDoS Mitigation Geolocation Policies Rate Limiting CAPTCHA Challenges
Investigate and tune false positives.
Perform application onboarding into WAF services.
Conduct WAF policy reviews and optimization.
Support incident response involving web application attacks.
Application Security
Understand and mitigate: OWASP Top 10 Authentication attacks API abuse Credential stuffing Session hijacking Cross-Site Scripting (XSS) SQL Injection SSRF CSRF
Review application architectures and recommend security improvements.
Partner with development teams during application onboarding and troubleshooting.
Network Security
Administer and support: Palo Alto Networks NGFW Prisma Access Site-to-site VPNs SSL decryption NAT and security policies
Network segmentation
DNS and routing troubleshooting
Support production incidents and participate in on-call rotation.
Cloud & Automation
Develop automation using: Python REST APIs Terraform Git
Build dashboards and reporting around security posture.
Automate repetitive operational tasks.
Security Operations
Participate in: Incident response Threat hunting Security assessments Vulnerability remediation Root cause analysis Architecture reviews
Qualifications:
Preferred Qualifications
Experience with:
Bot Management
API Security
DDoS Protection
CDN technologies
DevSecOps
CI/CD pipelines
Kubernetes
Containers
Terraform
Certifications:
OWASP Foundation certifications
ISC2 CISSP
GIAC certifications
F5 certifications
Palo Alto Networks certifications
Reference: 1060305
Don't meet every single requirement? Studies have shown that women and people of color are less likely to apply to jobs unless they meet every qualification. At Revel IT, we are dedicated to building a diverse, inclusive, and authentic workplace, so if you're excited about this role, but your experience doesn't align perfectly with every qualification in the description, we encourage you to apply anyway. You might be the right candidate for this or our other open roles!
Revel IT is an Equal Opportunity Employer. Revel IT does not discriminate on the basis of race, religion, color, sex, gender identity, sexual orientation, age, non-disqualifying physical or mental disability, national origin, veteran status or any other basis covered by appropriate law. All employment is decided on the basis of qualifications, merit, and business need.
#gdr4900
Job ID:
1060305