Principal Cybersecurity – Proxy Web Filtering – Web Application Firewall – CASB Engineer

Principal Cybersecurity – Proxy Web Filtering – Web Application Firewall – CASB Engineer

Requirements

• 7+ years of experience in Cybersecurity engineering with experience configuring, operating, and managing on-premises and cloud-based Proxy, Web Application Firewall, SSE Secure Web Gateways and CASB.
• Extensive experience providing SME level support in large, highly dynamic enterprise environment.
• Engineering, administrative experience of Akamai, Barracuda, F5, Forcepoint, Linux, Windows systems
• SME level experience with Secure Service Edge architectures supporting Proxy, Web Application Firewall, and SSE-CASB/SWG/ZTNA
• SME level experience with IdP, SSO, SAML, AD, Microsoft Entra
• Solid understanding and practical experience with web applications, web platforms, web application security, application firewalls, frameworks and protocols with respect to application development, deployment, and operation
• Strong understanding of TCP/IP, web protocols, networking, DNS and security concepts
• Expertise with mainstream operating systems, web services, programming languages, network devices and attack vectors
• Advanced expertise reviewing and analyzing log files, data correlation and packet captures
• Script writing and programming using common shell and mainstream languages
• Senior level understanding of PKI Technology
• Working knowledge of open source and commercial application security tools and frameworks
• Excellent communication skills including metrics/performance documentation/presentation, technical drawing/architecture origination and modification
• Operates well under pressure and urgent circumstances
• Self-reliant and diligent in follow-through for assigned tasks
• Ability to work with a geographically disperse team
• Engaged collaborator, contributor and team player
• CISSP, CISM, SANS GIAC, GWEB or relevant cybersecurity or technical certification
• Bachelor’s degree or equivalent experience in engineering, computer science, information security/systems

Responsibilities

• Operates and maintains Secure Web Gateways (Proxy), Web Application Firewalls, Secure Service Edge including CASB integrations with SaaS application environments
• Creates and implements best practices for policies/rules/signatures to mitigate threats and address data leakage
• Integrate Applications/platforms with Identity Providers leveraging current IAM technologies for SSO support
• Develops advanced alerts/reports to meet requirements of key stakeholders and business units
• Develops automation for security tools management and workflow integration
• Collaborates with key stakeholders within Information Security and Engineering teams to develop specific use cases to address specific business requirements
• Creation and implementation of custom alerting dashboards in SIEM for regular monitoring and investigations as needed
• Works extensively with Business Units/stakeholders across organization to setup and tune CASB policies to secure SaaS applications
• Aids in gathering, presenting metrics for measuring key performance and key risk indicators
• Provides ongoing support to existing monitoring capabilities and data collection systems
• Leads troubleshooting efforts in complex issues involving multiple platforms and network flows
• Coordinating with vendors and other technical teams on troubleshooting and escalations
• Technical Leadership: Proven track record of executing scaled security controls engineering and operations work responsibilities
• Operate within a follow the sun model and participate in an on-call rotation to ensure continuous 24/7 support
• Track and analyze performance metrics and KPIs, identifying areas for improvement and implementing solutions to enhance efficiency, security efficacy, and ROI
• Prepare and present regular reports to senior management, highlighting the program’s progress, challenges, and achievements.

Preferred Qualifications

No preferred qualifications provided.