Senior Specialist Cybersecurity - Web Application Firewall (WAF) Security
AT&T
**Job Description:**
**About the Company:**
At AT&T, we’re connecting the world through the latest tech, top-of-the-line communications and the best in entertainment. Our groundbreaking digital solutions provide intuitive and integrated experiences for millions of customers across online, retail and care channels. Join our mission to deliver compelling communication and entertainment experiences to customers around the world as we continue to evolve as a technology-powered, human-centered organization. As part of our team, you’ll transform the way we deliver a seamless customer experience with digital at the center of all you do. In our world, digital is much larger than just an eCommerce channel, we are transforming all channels to digitally perform as one team to create a better customer experience. As we move into 2024, the digital transformation will revolutionize the digital space and you can build a career that will propel your future.
**About the Role:**
This career step requires senior level experience. Responsible for cyber security areas across products, services, infrastructure, networks, and/or applications while providing protection for AT&T, our customers and our vendors/partners. Works with senior team members on various projects relating to the protection of devices, customers, assets, data, information technology, and networks. Supports innovation, strategic planning, technical proof of concepts, testing, lab work, and various other technical program management related tasks associated with the cyber security programs.
The Lead Engineer in this role will have expertise in holistic enterprise Web Application Firewall (WAF) policy management, architecture, configuration, management, troubleshooting, optimization, governance, risk assessment and automation.
**Roles & Responsibilities** include:
+ Perform Enterprise Web Application Firewall (WAF) policy management, architecture, configuration, management, troubleshooting, optimization, governance, risk assessment and automation
+ Perform Proxy policy operations and provide required support.
+ End to End life cycle of Web Application Firewalls (F5, Akamai, Barracuda, Cloud)
+ Proxy SWATs and Call to Work – US off hours
+ Perform migration of unprotected applications
+ Perform API security (Akamai/NoName) related operations & tasks
**Required Skills**
+ Over 8 years of experience in Cybersecurity engineering with experience configuring, operating and managing forward and reverse proxies.
+ Extensive experience providing SME level support in large, highly dynamic enterprise environment.
+ Engineering, administrative, and operational experience supporting F5, Barracuda, Forcepoint, Secure Service Edge, Cloud Proxy and Cloud WAF platforms
+ Understanding and practical experience with web applications, web platforms, application firewalls, frameworks and protocols with respect to application development, deployment, and operation including tuning of policies and signatures.
+ Strong understanding of TCP/IP, web protocols and networking concepts
+ Expertise with mainstream operating systems, web services, programming languages, regular expressions, analyzing log files, packet captures, network devices and attack vectors
+ Script writing and programming using common shell and mainstream languages
+ Senior level understanding of PKI Technology
+ Experience exploiting web apps and web services security vulnerabilities including cross-site scripting, cross-site request forgery, SQL injection, DoS attacks, XML/SOAP, and API attacks
+ Understanding of OWASP Risks, Vulnerabilities and Mitigation Mechanisms
**Cyber Defense and Incident Response:**
+ Solid understanding of Incident Response process
+ Prior experience in Cybersecurity operations and Incident Response
+ Working level understanding of Cybersecurity operations and processes
**Desirable Skills:**
+ Excellent communication skills including metrics/performance documentation/presentation, technical drawing/architecture origination and modification
+ Operates well under pressure and urgent circumstances
+ Self-reliant and diligent in follow-through for assigned tasks
+ Ability to work with a geographically disperse team
+ Engaged collaborator, contributor and team player
+ CISSP, CISM, SANS GIAC, GWEB or relevant cybersecurity
+ Flexible to provide coverage in US morning hours on a need-basis, and as required
+ Experience working in an environment where coordination with multiple teams is essential to success
+ Ability to prioritize individual/group work in a high-stress and time-bound environment
**Weekly Hours:**
40
**Time Type:**
Regular
**Location:**
Bangalore, Karnataka, India
It is the policy of AT&T to provide equal employment opportunity (EEO) to all persons regardless of age, color, national origin, citizenship status, physical or mental disability, race, religion, creed, gender, sex, sexual orientation, gender identity and/or expression, genetic information, marital status, status with regard to public assistance, veteran status, or any other characteristic protected by federal, state or local law. In addition, AT&T will provide reasonable accommodations for qualified individuals with disabilities.
AT&T will consider for employment qualified applicants in a manner consistent with the requirements of federal, state and local laws
We expect employees to be honest, trustworthy, and operate with integrity. Discrimination and all unlawful harassment (including sexual harassment) in employment is not tolerated. We encourage success based on our individual merits and abilities without regard to race, color, religion, national origin, gender, sexual orientation, gender identity, age, disability, marital status, citizenship status, military status, protected veteran status or employment status
Confirm your E-mail: Send Email
All Jobs from AT&T