IT Consultant specializing in Security Engineering, working on national and international IT Security projects. Responsible for identifying security vulnerabilities and assisting customers' Security Management.
About the role
- WAF Security Engineer reducing threats to web applications for Fiserv. Collaborating with security teams and developing protections using cyber technologies.
Responsibilities
- Work in a dynamic and challenging environment where your focus is on reducing the potential impact of threats to Internet facing web application systems.
- Frequently interact with Security Assessment, Security Operations and Cyber Security Incident Response Teams working together to identify ongoing threats to the application.
- Develop protections for web applications utilizing state of the art cyber technologies (Web Application Firewalls, Network Firewalls, Intrusion Prevention, Network Traffic Scrubbing) protecting operational applications in real-time.
- Maintain and operate Web Application Firewall Configurations.
- Perform false positive analysis on WAF events.
- Be comfortable driving work efforts outside business-hours, when necessary, as part of on-call rotation schedule.
- Act as a front-line and escalation interface to the business, reviewing trouble tickets and executing the required actions.
- Be Self-motivated to identify requirements for projects and process improvements.
Requirements
- 10+ years related IT and cyber protection experience.
- Strong understanding of cyber threats as related to Internet facing web applications.
- Experience with utilizing NIST CVE data relating to web application vulnerabilities to develop threat response actions utilizing OSI Layer 4 through 7 deep inspections.
- Experience with threat analysis of web application network traffic protocols and patterns.
- Experience using scripting or automation to reduce team workload on repetitive tasks and communicating with CISO/CIO/CTO level leadership.
- CISSP or other professional cyber certification desirable.
- Bachelor’s degree in cyber security, Computer Science, Engineering, Mathematics or an equivalent combination of education, work, or military experience.
- Expert knowledge of and experience with maintaining cyber technologies that can protect operational web application systems, such as: Signal Sciences WAF / F5 Big IP Application Security Manager. F5 Local Traffic Manager / F5 Silverline WAF & Denial of Service (DDOS) Scrubbing systems. F5 Distributed Cloud WAF / Radware WAF.
Benefits
- Annual incentive opportunity (mix of cash bonus and equity awards)
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
IT Info Security Specialist managing ERIE's information security program to protect digital assets. Collaborating with various teams to enforce security measures and resolve identity access issues.
CISA Auditor Cyber Security at an international bank, planning and conducting IT audit examinations, focusing on cyber threats. Requires IT auditing experience and a Master in Information Systems or Engineering.
Security Engineer responsible for managing cyber risk remediation measures at Tiime startup in Paris. Collaborating with product teams to ensure application security and risk evaluation.
Cybersecurity Engineer managing complex IT environments and providing support for clients. Involved in cloud, cybersecurity, and managed services within a dynamic startup environment.
Security Engineer ensuring compliance and managing security processes at Relax Gaming. Responsible for security operations, risk assessments, and developing secure systems.
Information Security Consultant at heyData supporting businesses in compliance with DORA and ISO 27001. Engaging with clients and enhancing security offerings in a dynamic startup environment.
Information Security Manager at NVISO, leading cybersecurity initiatives and managing a team of consultants. Focused on enhancing clients’ security posture through strategic program implementation.
Senior Cyber Security Consultant working to enhance software development security for diverse clients. Collaborating with major international firms while leading projects in secure application development.
Information Security Officer at Specialty Systems supporting cybersecurity for Navy systems. Role involves RMF implementation, vulnerability management, and collaboration with technical teams.