Security Engineer

Location

Pune | India

Job description

Job Position: F5 AWAF Security Engineer

Job Type: Full-Time

Location: Pune, IN

Experience: - 8 to 10+ Years

Domain: Domain knowledge of Internet protocol concepts (IP, TCP, DNS, SSL/TLS).

Must Have: F5 LTM and ASM/AWAF, AWAF, Bot and DOS/DDos protection, AWS/Google/Azure, web-based Attacks, OWASP, Cybersecurity Policy, Agile methodologies

Skills

1. The F5 Advanced Web Application Firewall Engineer would need to have at least 7 to 10-+ years of experience in this domain. For this role, you must be a dynamic and highly-motivated individual that is seeking a position with the global leader in commercial real estate services.
2. Troubleshoots and resolves system service failures by identifying and analyzing the situation and provides corrective actions.
3. Develops, installs, and tests new network hardware and software releases, system upgrades, evaluates and installs patches and resolves software related problems.
4. Monitors systems activities and fine tunes system parameters and configuration to optimize performance and ensure security of systems.
5. Raise Change Requests in detail and drives Change to complete approval. Performs 4 eyes check on other Changes for their colleagues
6. False positive analysis, reviewing threat logs in AWAF .
7. Utilize automation for configuration deployments
8. Provides senior level expertise on decisions and priorities regarding systems architecture.
9. Engages with application development teams on current infrastructure projects.
10. Evaluates existing solutions and infrastructure and provides recommendations.
11. Approves system designs and functions as a project lead as required.
12. Facilitates the establishment and implementation of standards and guidelines that guide the design of technology solutions including architecting and implementing solutions.
13. Manages and maintains the hardware, software, security, and connectivity to the Internet as well as middleware components.
14. Performs other duties as assigned. Decisions made with thorough understanding of procedures, company policies, and business practices to achieve general results and deadlines.
15. Provides informal assistance such as technical guidance, and/or training to co-workers.

Following requirements:

1. Expertise in F5 LTM and ASM/AWAF deployment, tuning and troubleshooting experience.
2. Understanding of Web application Technologies, Protocols and Security ( API, TLS, DNS, CDN etc)
3. Experience of implemented Bot and DOS/DDos protection plus domain understanding
4. Experience of implementing WAF in one or more cloud environments (AWS, Google, Azure...)
5. Experience with web-based attacks, OWASP Top 10 web vulnerabilities, web application testing with tools like.
6. Self-motivated and pro-active when working remotely

Additionally, below are good to have requirement:

1. Deploy, configure and maintain cloud native web application firewalls including: Logging of all WAF events.
2. Good knowledge of scripting languages ( Bash, Python, Ansible, Terraform, JavaScript ect .) and automation experience
3. Experience in engaging with cybersecurity policy makers
4. Responding to WAF events and Developing WAF incident response plans.
5. Updating threat models based on WAF event patterns.
6. Change Request experience
7. DDoS, WAF and Bot protection expertise (Akamai), IDS/IPS, Firewalls, VPNs, SSL/TLS
8. CI/CD – GitHub, Bitbucket, Jenkins, Teamcity, Bamboo, Octopusdeploy, MSRM
9. Domain knowledge of Internet protocol concepts (IP, TCP, DNS, SSL/TLS ).
10. Strong understanding of Agile methodologies

Job tags

Salary