Manager at PwC contributing to digital transformation in Utilities through technology consulting and stakeholder management. Focused on creating strategies and providing technology solutions in a data - driven world.
About the role
- WAF Security Engineer reducing threats to web applications for Fiserv. Collaborating with security teams and developing protections using cyber technologies.
Responsibilities
- Work in a dynamic and challenging environment where your focus is on reducing the potential impact of threats to Internet facing web application systems.
- Frequently interact with Security Assessment, Security Operations and Cyber Security Incident Response Teams working together to identify ongoing threats to the application.
- Develop protections for web applications utilizing state of the art cyber technologies (Web Application Firewalls, Network Firewalls, Intrusion Prevention, Network Traffic Scrubbing) protecting operational applications in real-time.
- Maintain and operate Web Application Firewall Configurations.
- Perform false positive analysis on WAF events.
- Be comfortable driving work efforts outside business-hours, when necessary, as part of on-call rotation schedule.
- Act as a front-line and escalation interface to the business, reviewing trouble tickets and executing the required actions.
- Be Self-motivated to identify requirements for projects and process improvements.
Requirements
- 10+ years related IT and cyber protection experience.
- Strong understanding of cyber threats as related to Internet facing web applications.
- Experience with utilizing NIST CVE data relating to web application vulnerabilities to develop threat response actions utilizing OSI Layer 4 through 7 deep inspections.
- Experience with threat analysis of web application network traffic protocols and patterns.
- Experience using scripting or automation to reduce team workload on repetitive tasks and communicating with CISO/CIO/CTO level leadership.
- CISSP or other professional cyber certification desirable.
- Bachelor’s degree in cyber security, Computer Science, Engineering, Mathematics or an equivalent combination of education, work, or military experience.
- Expert knowledge of and experience with maintaining cyber technologies that can protect operational web application systems, such as: Signal Sciences WAF / F5 Big IP Application Security Manager. F5 Local Traffic Manager / F5 Silverline WAF & Denial of Service (DDOS) Scrubbing systems. F5 Distributed Cloud WAF / Radware WAF.
Benefits
- Annual incentive opportunity (mix of cash bonus and equity awards)
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
Research Associate conducting advanced research in iOS security within a leading institute for applied cybersecurity. Emphasis on secure application development and vulnerability analysis.
Cybersecurity Engineer focused on threat monitoring and incident response for Verizon's network security. Collaborating on security architecture and vulnerability management across multiple locations.
Senior Manager of Application Security leading initiatives to protect applications at Nordstrom through strategic leadership and AI - driven tooling. Collaborating with engineering to ensure secure software development practices.
Information Security Engineer responsible for deploying and supporting security tools across cloud and on - premise systems. Collaborating with IT to mitigate security risks in a hybrid work environment.
Casual Retail Security Officer for MSS Security ensuring safety at Tweed Mall in Tweed Heads. Responsible for patrols, incident response, and customer service.
Financial security advisor at Desjardins developing client relationships and selling life and health insurance products. Focusing on customer satisfaction and personalized financial solutions.
Principal Information Security Consultant at Westpac focusing on security protocols and employee benefits for staff. Hybrid role centrally located with opportunities for professional development and employee perks.
Engineer supporting secure development lifecycle processes for product lines in the energy sector. Collaborating with R&D on security requirements and compliance audits.
Automation Oversight Engineer providing oversight of compliance in automated device configurations for Comcast Business. Managing configuration checks and reporting, ensuring reliable oversight and improvement strategies.