Security Officer performing patrols, emergency response, and customer service at Climax Molybdenum. Managing site security and assisting with emergency situations at various locations.
About the role
- Senior WAF Security Engineer implementing and maintaining WAF and DDoS solutions at Warner Bros. Discovery. Collaborating with teams to enhance edge security across applications and services.
Responsibilities
- Implement, configure, and maintain enterprise-grade WAF and DDoS protections across a large portfolio of properties
- Develop and fine-tune custom firewall rules, bot mitigation controls, and DDoS mitigation security policies
- Perform log analysis to identify malicious traffic patterns, false positives, and opportunities for tuning
- Contribute to automation efforts (infrastructure as code, CI/CD integrations, scripts) to deploy and maintain security configurations
- Identify security vulnerabilities and guide developers and engineers in addressing these issues
- Participate in on-call rotation as a subject matter expert for WAF/DDoS incident response
- Partner with product, engineering, and operations teams to integrate WAF/Edge security controls into applications and services
- Provide technical guidance on perimeter security best practices within SDLC and cloud-native environments
- Research and stay current on the latest attack vectors, vulnerabilities, and exploits affecting web and API applications
- Recommend and implement improvements to strengthen defenses across the edge/perimeter layer.
Requirements
- Bachelor’s degree in Computer Science, Information Security, or equivalent work experience
- 5+ years of experience in application or network security with direct hands-on work in WAF/DDoS solutions
- Detailed understanding of the threats faced directly to consumer and digital platform organizations
- Proven expertise with at least one major WAF platform (Akamai, Fastly NGWAF, AWS WAF, Azure, or similar)
- Practical experience writing/modifying WAF rules (e.g., AWS WAF, Azure or Cloudflare custom rules)
- Strong understanding of HTTP/S protocols, OWASP Top 10, and API security models
- Proficiency with log analysis tools, scripting (Python, Bash, PowerShell), and automation frameworks
- Proven hands-on experience securing application across various Cloud Providers (AWS, GCP, Azure)
- Strong problem-solving skills with the ability to quickly analyze issues and implement effective mitigations
- Excellent collaboration and communication skills across security, engineering, and product teams.
Benefits
- health insurance coverage
- an employee wellness program
- life and disability insurance
- a retirement savings plan
- paid holidays and sick time
- vacation
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
Security Officer leading safety inspections and facility patrols at Crown Equipment Corporation. Assigning duties and responding to security incidents efficiently.
Security Officer overseeing safety inspections and personnel training for Crown Equipment Corporation. Responsible for monitoring facilities and responding to security incidents.
Manager of Security Risk at Grainger overseeing Information Security Risk team and managing security risk programs. Focused on regulatory compliance, leadership, and risk assessment integration.
SAP Security GRC Consultant involved in designing and implementing security architectures for Swiss clients. Collaborating with project teams on compliance and security solutions.
Senior Consultant with Wavestone providing SAP Security and IAM solutions in Switzerland. Collaborating on security architectures and supporting clients on SAP security transformations.
Network Security Engineer ensuring secure, highly available enterprise network systems with a focus on collaboration and technical excellence. Involves designing and implementing networking solutions.
Security Manager at Leonardo focusing on cyber compliance and risk management across OT and IT frameworks. Supporting clients in strategic initiatives and infrastructure assessments.
Senior Analyst leading cybersecurity governance initiatives at Elsevier. Developing and maturing governance programs for data protection and risk management across the organization.
Commercial Security Service Sales Executive promoting and selling security services at Johnson Controls. Building relationships and delivering solutions to protect people and property within assigned territories.