**This role is a hybrid that sits 3 days per week onsite in Birmingham, Alabama."**
Overview:
We are seeking an experienced Network Security Engineer to manage and secure our Web Application and API Protection (WAAP) suite. The role involves handling Global Load Balancer and DNS management, SSL/TLS, HTTP(s), and ensuring the security of web applications and APIs. You will work closely with cross-functional teams to implement security best practices, automate tasks, and mitigate traffic-related threats.
Responsibilities:
- Manage and configure Web Application Firewalls (WAF) and WAAP products, focusing on bot management and attack prevention.
- Develop solutions to detect and reduce unwanted traffic, such as account takeover, content scraping, and loyalty abuse.
- Work with security, development, and engineering teams to apply best practices for web and API security.
- Manage Global Load Balancers and DNS, and troubleshoot related issues (DNS, SSL/TLS, HTTP(s)).
- Automate WAAP management using Python and shell scripting.
- Troubleshoot network and security issues using tools like curl, dig, traceroute, openssl, and git.
- Apply cloud security practices to safeguard web applications and APIs.
- Utilize knowledge of internet protocols (TCP/UDP) and the OSI model to enhance security.
Qualifications:
- 3+ years of experience in network security, WAF/WAAP management, DNS, and load balancer configuration.
- Strong knowledge of DNS, SSL/TLS, HTTP(s), and web application security.
- Experience with bot management and traffic mitigation.
- Proficiency in Python and shell scripting for automation.
- Familiarity with command-line tools like curl, dig, traceroute, openssl, and git.
- Security certifications (CISSP, CISM, etc.) preferred.
- Cloud security experience is a plus.
Additional Skills:
- Strong problem-solving and troubleshooting abilities.
- Good communication skills and the ability to collaborate across teams.
- Proactive in identifying and mitigating security risks.
