Application Security Engineer
Employment Information
Report this job
Job expired or something wrong with this job?
Job Description
Application Security Engineer responsible for implementing web application security and zero trust practices. Collaborating with teams to enhance cybersecurity measures for global customers.
Responsibilities:
- Web Application Firewall Management: Deploy, configure, and maintain web application firewall systems to protect our web applications against potential threats and vulnerabilities.
- Zero Trust Proxy: Deploy, configure, and Zero Trust Proxy systems to support identity gates to include defining and maintaining policies and connectors.
- Security Incident Response: Monitor and analyze security events, alerts, and logs generated by the web application firewall systems. Investigate and respond to potential security incidents, working closely with the Security Operations Center (SOC) and other Cybersecurity teams.
- Detection and Analysis: Develop and maintain detection rules, alerts, and reports to proactively identify and mitigate risks utilizing logs. Provides investigation findings to relevant business units to help improve information security posture.
- CDN Integration: Collaborate with the infrastructure and application teams to integrate the web application firewall with CDNs such Akamai and Radware, ensuring seamless traffic management and content delivery.
- Vulnerability Assessment: Utilize WAF data to identify potential vulnerabilities and recommend appropriate remediation measures to customers.
- Documentation and Reporting: Maintain accurate documentation of WAF configurations, policies, and procedures. Prepare reports and metrics related to web application security, including trends, incident summaries, and mitigation strategies, as needed.
- Collaboration: This role requires ability to explain security details to non- security teams such as application and engineering teams. Must be able to collaborate with cross-functional teams to ensure effective communication, knowledge sharing, and alignment of security objectives. Provide guidance to application teams on application security best practices and security awareness, as needed.
- Automation: This role required individuals who are knowledgeable of automation processes, python terraform, use of AI and Cloud native concepts with AWS, Azure and Google cloud.
Requirements:
- 4+ years with minimum 2 years in network security and 2 years in application security
- Strong knowledge of web application security concepts, OWASP Top 10 vulnerabilities, and related mitigation techniques.
- Understanding of authentication and authorization flows (OAuth, SAMAL, OIDC)
- Strong technical background with Web Application Firewall (WAF), Zero Trust Network Access, APIs, and Cloud security policies.
- Understanding of API security issues and API authentication.
- Previous experience in a Security Operations Center (SOC) or performing cybersecurity analysis, log analysis, and threat detection is highly desirable.
- Good understanding of information security principles and policy enforcement.
- Solid comprehension of HTTP protocol and demonstrated ability to troubleshoot using HTTP logs
- Strong technical background in web development and familiarity with potential attack vectors/methods
- Understanding of Authentication, DNS, Networks, Firewalls, SSL Certificates
- Experience in the following areas are strongly preferred: Knowledge of Web Application Firewall technologies (Akamai)
- Knowledge of Zero Trust framework and technologies
- Experience integrating zero trust with WAF
- Familiarity with cloud security services, concepts, and best practices (AWS, Azure, GCP)
- Infrastructure as code (Terraform) and automation using Python
- Ethical hacking
- ServiceNow experience
- Technical documentation experience
- CISSP, CISM, CISA, GIAC or other security certifications are desired
- Familiarity and comfortability using AI tools
- High degree of personal integrity and ethics with a passion for protecting people and systems against cybersecyurity threats
- Excellent written and oral communication and presentation skills for technical and business audiences
- Advanced critical thinking, problem solving and technical troubleshooting abilities
- Track record of getting things done quickly and with high levels of quality
- Demonstrated ability to operate in a dynamic, evolving environment
- Ability to coordinate completion of multiple tasks and meet aggressive time frames
- Strong analytical skills with high attention to detail and accuracy
- Experience with and the ability to thrive in a complex and fast-paced technology and/or information security organization, within a large enterprise environment
- Bi-lingual a plus
Benefits:
- Remote work
- Approximately 8 Month Contract (w/ possible extensions)
Similar Jobs
Application Engineer
Application Engineer overseeing AI vision inspection cameras for production line optimization. Providing technical support and system integration in Penang, Malaysia.
AI Application Engineer – Azure OpenAI Services
AI Application Engineer focusing on Azure OpenAI Services for fully remote work in Mexico. Need experience in AI solutions and collaboration with multidisciplinary teams.
Application Engineer
Application Engineer providing pre-sales technical support for S&C products in the electrical power industry. Collaborating with teams and addressing customer challenges while driving sales.
Application Security Engineer, AI-Assisted Vulnerability Management
Application Security Engineer designing and operating AI-assisted vulnerability management workflows for Eclipse Foundation. Collaborating across open source projects to enhance security processes and outcomes.
Application Engineer – Energy & Power
EPLAN Application Engineer collaborating with Professional Services to deliver engineering solutions in Energy & Power sector. Engaging in software implementations and customer interactions to elevate brand expertise.
Staff Applications Engineer
Applications Engineer responsible for integrating Swift Navigation's positioning technology products with customer platforms. Collaborating with global teams to enhance customer experience and product integration.
Manager, Application Development Engineering
Manages a team responsible for designing, developing, and implementing complex enterprise software solutions for healthcare improvements. Collaborates with various technical and business roles across projects.
Application Engineer
Application Engineer responsible for developing lubrication solutions and providing technical support for SKF Colombia. Collaborating with clients across Latin America and contributing to business proposals.
Applications Engineer
Application Engineer at XP Power focusing on AC/DC power supply solutions for North American clients. Collaborating with distributors and technical teams while working US hours in the Philippines.
Technology Field Application Engineer
Technology Field Application Engineer driving technical sales for embedded microcontrollers and microprocessors. Involves customer discovery, technical support, and collaboration with sales teams.
Application Engineer
Application Engineer specializing in sound and vibration measurement solutions. Collaborating with sales and engineering teams in a remote role within the United States with some travel.
Senior Application Engineer
Seeking Senior Application Engineer for VFD systems focusing on technical solution design and cost estimation. Role involves managing tenders and collaborating with sales for successful outcomes.
Senior Field Application Engineer
Senior Field Application Engineer generating the greatest number of design wins for customers at Avnet. Interface with engineering departments to provide pre/post sales support and develop solutions.
Application Engineer, Eplan
Eplan Application Engineer focusing on enabling educational institutions to utilize Eplan products effectively. Collaborating with Sales and Professional Services to drive customer success in electrical engineering.
Application Development Engineer II
Application Development Engineer designing and implementing custom enterprise software solutions for Centene while collaborating with technical and non-technical roles.
Sales and Application Engineer – Specialist
Sales Application Engineer/Specialist supporting mechanical engineers and promoting HVAC solutions. Building relationships, conducting seminars, and driving product penetration in key markets.
Implementation Applications Engineer
Camino Implementation Engineer deploying engaging graphics systems for Daktronics. Working with clients worldwide to deliver impactful digital display experiences.
Application Support Engineer
Application Support Engineer providing Level 2 technical support for software-defined vehicle solutions at Cubic³. Collaborating with development teams and optimizing application performance in a fast-paced environment.
Applications Engineer, CNC
Applications Engineer at Phillips transforming technical education in CNC machining and CAM programming. Bridging the gap between raw hardware and peak manufacturing performance with expert technical support.
Senior Applications Engineer
Senior Applications Engineer collaborating with cross-functional teams to enhance product features and support customers. Engaging in hardware design and validation for high-speed connectivity solutions at NXP.