Application Security Engineer

Get AI-powered advice on this job and more exclusive features.

This range is provided by Cbase Inc. Your actual pay will be based on your skills and experience — talk with your recruiter to learn more.

$60.00/hr - $65.00/hr

Direct message the job poster from Cbase Inc

Position : Application Security Engineer/ WAF Engineer

Location : REMOTE – St. Louis, MO

Duration : 12 Months

Job Description:

• Client, operating the National, Client, and Alamo car rental brands is looking for a WAF/Network and Application Security Engineer to join client’s amazing Information Technology team!
• Client is the largest and fastest growing privately owned automotive rental and leasing company in the North America.
• Client is powered by technology, and IT is a critical area of the business.
• As a diverse team of idea enablers and problem solvers, client’s innovative IT professionals design, develop and drive the tech that is redefining how customers rent, buy and share vehicles from client’s family of brands.
• Here, candidate will be part of a team that creates and delivers powerful technical solutions for client’s branch locations and employees across the world with the resources and support to develop in a variety of career paths.
• As a Security Engineer, candidate will be responsible for using candidate’s technical knowledge of professional concepts to solve business problems.
• Client is looking for a talented individual that can serve as a subject matter expert in their area of focus and represent their department on complex assignments.
• Candidates will be responsible for evaluating elements of technology’s effectiveness through requirements gathering, testing, research and investigation and make recommendations for improvements that result in increased quality and effectiveness.
• Candidates will be required to listen to and evaluate customer needs to determine and provide high quality solutions that align with customer expectations.
• The Network Security team within the Network Engineering organization designs and supports client’s Web Application Firewall (WAF) technologies. Being part of this team, candidates will have the opportunity to design and develop security solutions that meet client’s business objectives.
• Candidates will have the opportunity to grow candidate’s technical skills as candidates work with different areas within IT to meet future business demands.
• As candidates’ knowledge and ability to work across the environment increase, candidates will have opportunities for increased responsibility and career progression through a variety of network security, engineering, and architect roles.
• This role requires the ability to perform application security analysis on solutions end to-end, including identifying gaps, recommending, and implementing configuration changes and the ability to create custom threat signatures.
• The candidate will also ensure existing infrastructure and configuration standards are adhered to when delivering projects.
• Must have a strong understanding of DNS, networking, analysis, system administration, and common application frameworks.
• In addition, the candidate should have an in depth understanding of cryptography, application, and network security domains.
• Additionally, the candidate should possess effective communication skills and be comfortable interacting with multiple teams at all levels.

Equal Opportunity Employer/Disability/Veterans:

Required:

• Must be presently authorized to work in the U.S. without a requirement for work authorization sponsorship by client’s company for this position now or in the future.
• Must be committed to incorporating security into all decisions and daily job responsibilities.
• Must have three years of related professional experience.
• Ability to model API request using tool such as Postman.
• Understanding of API attack vectors
• Ability to interpret the different components of Web Requests and responses.
• Demonstrated experience writing and reviewing business, user, and nonfunctional/system level requirements.
• Strong knowledge of system architecture and network applications.
• Familiarity with OWASP & API OWASP Top 10.
• Experience in information security or a related field.
• Investigate security breaches and other cybersecurity incident.
• Monitor email and ticketing systems for security related issues and follow through until resolution.
• Monitor events and triage alerts across various security platforms.
• Ability to manage conflicting priorities effectively.
• Proven ability to meet tight deadlines.
• Provide On call/afterhours support.
• Ability to do Packet Captures (PCAPs) and interpret results
• 1 plus years of experience using a SIEM
• 1 plus years hands on experience with administration of Web Application Firewall technologies.

Preferred:

• Bachelor’s degree in computer science, Computer Information Systems, Management Information Systems, or related field preferred
• Experience with Akamai or Imperva WAF solutions.
• Understanding of scripting and content creation. (e.g., Splunk dashboards, threat signature creation, Python scripts, Powershell scripts.)
• Experience with automation tools such as Ansible and Terraform
• Managing cloud security operations, including identity & access control, secure configuration management, network security, Infrastructure as Code, data security, and logging.
• 1 plus year experience securing cloud applications (AWS/AZURE).
• Understanding of Version control and ability to work in Git.
• Comfortable dealing with stakeholders, developers, and architects during facilitated sessions.
• Strong communication and conceptual skills with desire to share knowledge and cross train.
• Experience managing and configuring bot mitigation platforms. (ie. Cequence Security)

• Seniority level
  Mid-Senior level

• Employment type
  Full-time

• Job function
  Information Technology
• Industries
  Technology, Information and Media

Referrals increase your chances of interviewing at Cbase Inc by 2x

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.