Revel IT
OUR GOAL:
Treat our consultants and clients the way we would like others to treat us!
Interested in joining our team? Check out the opportunity below and apply today!
We are seeking a Senior Cybersecurity Engineer to lead the design, implementation, and support of enterprise web application and network security solutions. This role will be responsible for securing internet-facing applications through F5 Distributed Cloud WAF, API security, bot protection, and network security technologies including Palo Alto firewalls and secure remote access solutions. The ideal candidate possesses a blend of application security, network security, and cloud security experience and is passionate about protecting critical enterprise services.
Responsibilities
- Web Application Security
- Administer and support F5 Distributed Cloud (XC) WAF platform.
- Deploy and maintain WAF policies, signatures, and security controls.
- Configure:
- API Protection
- Bot Defense
- DDoS Mitigation
- Geolocation Policies
- Rate Limiting
- CAPTCHA Challenges
- Investigate and tune false positives.
- Perform application onboarding into WAF services.
- Conduct WAF policy reviews and optimization.
- Support incident response involving web application attacks.
- Application Security
- Understand and mitigate:
- OWASP Top 10
- Authentication attacks
- API abuse
- Credential stuffing
- Session hijacking
- Cross-Site Scripting (XSS)
- SQL Injection
- SSRF
- CSRF
- Review application architectures and recommend security improvements.
- Partner with development teams during application onboarding and troubleshooting.
- Network Security
- Administer and support:
- Palo Alto Networks NGFW
- Prisma Access
- Site-to-site VPNs
- SSL decryption
- NAT and security policies
- Network segmentation
- DNS and routing troubleshooting
- Support production incidents and participate in on-call rotation.
- Cloud & Automation
- Develop automation using:
- Python
- REST APIs
- Terraform
- Git
- Build dashboards and reporting around security posture.
- Automate repetitive operational tasks.
- Security Operations
- Participate in:
- Incident response
- Threat hunting
- Security assessments
- Vulnerability remediation
- Root cause analysis
- Architecture reviews
Qualifications:
Preferred Qualifications
- Experience with:
- Bot Management
- API Security
- DDoS Protection
- CDN technologies
- DevSecOps
- CI/CD pipelines
- Kubernetes
- Containers
- Terraform
Certifications:
- OWASP Foundation certifications
- ISC2 CISSP
- GIAC certifications
- F5 certifications
- Palo Alto Networks certifications
Reference: 1060305
Don’t meet every single requirement? Studies have shown that women and people of color are less likely to apply to jobs unless they meet every qualification. At Revel IT, we are dedicated to building a diverse, inclusive, and authentic workplace, so if you’re excited about this role, but your experience doesn’t align perfectly with every qualification in the description, we encourage you to apply anyway. You might be the right candidate for this or our other open roles!
Revel IT is an Equal Opportunity Employer. Revel IT does not discriminate on the basis of race, religion, color, sex, gender identity, sexual orientation, age, non-disqualifying physical or mental disability, national origin, veteran status or any other basis covered by appropriate law. All employment is decided on the basis of qualifications, merit, and business need.
#gdr4900
To apply for this job please visit www.revelit.com.