Stagiaire assistant communication chez Liebherr - Aerospace pour le déploiement du système de management de la sécurité aérienne. Activités variées en communication et mise à jour de formation.
About the role
- Lead Information Security Engineer managing inbound web application security to protect enterprise web assets at Wells Fargo. Design and implement security measures against application-layer attacks.
Responsibilities
- Lead incident response for moderately complex events affecting public web applications, with emphasis on Layer‑7 attack detection, triage, containment, and recovery.
- Provide security consulting to internal application stakeholders, ensuring conformance with enterprise security policies and standards.
- Design, document, test, and maintain security controls for web applications at the edge.
- Engineer, deploy, and tune WAF policies/signatures (e.g., cross‑site scripting, injection, protocol anomalies), bot detection/mitigation, API protection (rate limiting, schema/behavior enforcement), and Layer‑7 DDoS defenses.
- Implement and refine rate limiting for web and API endpoints to ensure resiliency, performance, and abuse prevention.
- Review and correlate security logs and telemetry across edge providers and on‑prem platforms; distinguish real attacks from false positives.
- Apply industry best practices in availability, integrity, confidentiality, risk management, threat modeling, monitoring, incident response, access management, and business continuity.
- Collaborate across security engineering, networking, application owners, and operations to resolve issues and achieve shared goals.
- Support application onboarding/offboarding to the SaaS providers, using knowledge of DNS, WAF, L7 DDoS, bot policies, and GLB/routing considerations.
Requirements
- 5+ years of Information Security Engineering experience, or equivalent
- 2+ years in-depth knowledge and troubleshooting of HTTP-based web applications
- 5+ years implementing WAF signatures or virtual patches
- 5+ years hands-on with enterprise scale Web Application Firewalls
- 2+ years intermediate to advanced scripting/automation (e.g., Bash, Ansible playbook/role development, PowerShell, Python)
- 2+ years advanced understanding of network concepts (DNS, firewalls, load balancing)
- 1+ year change and incident management in medium/large enterprise environments
- 1+ year with Agile methodologies (Scrum or Kanban)
- 1+ year basic understanding of TLS, certificates, and mTLS authentication
Benefits
- Hybrid work schedule
- Relocation assistance: Not available
- Visa sponsorship: Not available for this role
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Cybersecurity intern supporting Desjardins Group with risk analysis and security practices. Collaborating on projects to ensure compliance with security measures while developing practical governance strategies.
Product Marketing Manager for Upwind Security, creating compelling narratives in cloud security. Collaborating with various teams to translate complex ideas into clear technical content.
CYE seeks Junior Cybersecurity Architect focusing on governance, risk analysis, and security processes. Work with security leaders, engineering teams, and customers to develop mitigation plans.
Senior leader responsible for designing and executing a corporate security program while collaborating with cybersecurity, IT and risk teams at LPL Financial.
Principal Security Engineer leading cyber security efforts and providing technical direction at Intact. Focusing on risk mitigation and mentoring security teams in a hybrid environment.
Operational Network and Security Manager overseeing technical teams and network security for a major client in Rennes. Engaging in tasks like project management and supplier coordination.
EU Project Manager blending project management and information security for EU - funded cybersecurity projects in Greece. Responsible for compliance, risk assessment, and stakeholder communication.
Personnel Security Specialist at PSI reviewing investigative documentation for federal and contractor employees. Ensuring security and compliance with federal guidelines in background investigations and data management.
FBI Personnel Security Specialist conducting security investigations and risk analysis for national security. Overseeing security program functions and managing personnel as needed.