• Engineering
  • Anywhere
  • Salary: $110,000 - 129,999
  • Education: Bachelor’s Degree
  • Years of experience: 10+
  • Skillset: Configuration Management experience such as Ansible, Chef, Puppet, or similar
  • Licensures: Professional security certification desired (CISSP, CISM, CISA
  • Add to Favorites

PostMatches By WorkStaff USA

Use skills, experience, and talent to help Key grow an effective information security program by analyzing, assessing, and helping mitigate security issues.

Applicant will design, build, configuration, deployment and support of Web Application Firewall  and BOT mitigation policies for on premise and in the cloud  deployments. The successful candidate must have working experience with F5  versed in cybersecurity concepts and possess the ability to work on various complex security engineering solutions.

Applicant must have an excellent technical background across a wide range of security disciplines and solutions and must have excellent presentation, writing, communication, and customer interface skills.

Essential job Functions


Conduct a comprehensive assessment of the management, operational, and technical security controls and control enhancements employed within or inherited by a system to determine the effectiveness of the controls.
Engineer, configure, deploy, and maintain Web Application Firewall solutions on premise and in the cloud (GCP, Azure, etc.).
Configure new sites and applications for WAF protection, analysis of traffic to remove false positives.
Create WAF rules/signatures to mitigate threats and implements best practices.
Create and update documentation including security diagrams, policies, procedures, playbooks, and run books
Develop automation for security tools management and workflow integration.
Perform root cause analysis on incidents, issues, and determines the proper course of action.
Update threat models based on WAF event patterns.
Develop, maintain, test, and troubleshoot on prem & cloud web application firewalls and rulesets.
Analyze WAF traffic and tuning rules or creating remediation action plans for the Lines of business and respond to WAF events.
Configure deploys and maintains WAF solutions on-prem and in the cloud
Supports and ensures stability of the WAF platforms
Evaluate applications and determine if applications are in-scope for WAF
Should have experience with web-based attacks, OWASP Top 10 web vulnerabilities, web application testing with tools like Zed Attack Proxy, and extensive knowledge of networking protocols.

Knowledge of:

Cybersecurity, privacy principles, threats, vulnerabilities, risk management, and IT security methods. (e.g., firewalls, demilitarized zones, encryption).
Server and client operating systems including measures or indicators of system performance and availability.
System administration, network, and operating system hardening techniques.
Network security architecture concepts including topology, protocols, components, and principles (e.g., application of defense-in-depth).
Personal Identifiable Information (PII) and Payment Card Industry (PCI) data security standards.
System/server diagnostic tools and fault identification techniques.
Network protocols such as TCP/IP, Dynamic Host Configuration, Domain Name System (DNS), and directory services (e.g., Microsoft Active Directory, LDAP, etc.)


Designing and implementing functional network infrastructure.
Oversee changes to the network and system deployment (HW/SW) to ensure security protection.
Configuring and optimizing software for on-premise or cloud solutions.
Conducting system/server planning, management, and maintenance.
Installing system and component upgrades. (i.e., servers, appliances, network devices).
Configuration Management experience such as Ansible, Chef, Puppet, or similar.
Working experience with Regular Expression, JSON, Python and other scripting familiarity.
Working experience with F5 WAF, Bot Defense and with cloud web application firewalls with major cloud service providers including Google and Azure.


Document and define corporate security policies and standards.
Manage accounts, network rights, and access to systems and equipment.
Plan, execute, and verify data redundancy and system recovery procedures.
Install, update, patch and troubleshoot systems/servers for availability, functionality, integrity, efficiency and provide ongoing optimization and problem-solving support.
Diagnose and perform repairs on faulty system/server hardware and troubleshoot hardware/software interface and interoperability problems.

Required Qualifications

Bachelor’s degree or equivalent years (5-8+) as a WAF Security Engineer.
Results oriented, a team player, and self-starter with ability to work with general direction.
Ability to manage competing priorities and projects.
Basic understanding of security threats and knowledge of financial industry.
Strong risk-based analysis and decision-making skills.
Professional security certification desired (CISSP, CISM, CISA, etc.).
Proven ability to identify and implement process improvement opportunities.


Please Login/Sign Up to Apply!