Senior Web/Network Security Engineer

Manifest Solutions

$100K — $130K *
Information Technology
Less than 5 years of experience
Job Overview by Ladders

Qualifications

  • Experience in Bot Management and API Security
  • Knowledge of DDoS Protection strategies
  • Familiarity with CDN technologies
  • Proficient in DevSecOps practices and CI/CD pipelines
  • Hands-on experience with Kubernetes and container orchestration
  • Demonstrated skills in using Terraform for infrastructure as code
  • Relevant certifications (OWASP, ISC2 CISSP, GIAC, F5, Palo Alto Networks)

Responsibilities

  • Design and implement web and network security solutions
  • Secure internet-facing applications and associated technologies
  • Administer F5 Distributed Cloud WAF platform and maintain security configurations
  • Investigate and fine-tune security policies to reduce false positives
  • Conduct policy optimization reviews and support incident response
  • Collaborate with development teams on application security requirements
  • Develop automation and dashboards to enhance security operations

Benefits

  • Comprehensive health and dental plans
  • 401(k) matching contributions
  • Generous PTO and holiday leave
  • Continuous professional development opportunities
  • Flexible work arrangements
Full Job Description
Manifest Solutions is currently seeking a Senior Web/Network Security Engineer for an onsite position in Columbus, OH.
  • Design, implementation, and support of enterprise web application and network security solutions.
  • Responsible for securing internet-facing applications through F5 Distributed Cloud WAF, API security, bot protection, and network security technologies including Palo Alto firewalls and secure remote access solutions.
  • Administer and support F5 Distributed Cloud (XC) WAF platform.
  • Deploy and maintain WAF policies, signatures, and security controls.
  • Configure: API Protection, Bot Defense, DDoS Mitigation, Geolocation Policies, Rate Limiting, CAPTCHA Challenges
  • Investigate and tune false positives.
  • Perform application onboarding into WAF services.
  • Conduct WAF policy reviews and optimization.
  • Support incident response involving web application attacks.
  • Understand and mitigate: OWASP Top 10, Authentication attacks. API abuse, Credential stuffing, Session hijacking, Cross-Site Scripting (XSS), SQL Injection, SSRF, CSRF.
  • Review application architectures and recommend security improvements.
  • Partner with development teams during application onboarding and troubleshooting.
  • Network Security Administer and support: Palo Alto Networks, NGFW Prisma, Access Site-to-site VPNs, SSL decryption, NAT and security policies, Network segmentation, DNS and routing troubleshooting.
  • Support production incidents and participate in on-call rotation.
  • Develop automation using: Python REST APIs, Terraform, Git.
  • Build dashboards and reporting around security posture.
  • Automate repetitive operational tasks.
  • Participate in: Incident response, Threat hunting, Security assessments, Vulnerability remediation, Root cause analysis, Architecture reviews

Qualifications:
  • Bot Management
  • API Security
  • DDoS Protection
  • CDN technologies
  • DevSecOps
  • CI/CD pipelines
  • Kubernetes
  • Containers
  • Terraform
  • Certifications: OWASP Foundation certifications, ISC2 CISSP, GIAC certifications, F5 certifications, Palo Alto Networks certifications

Similar Jobs

More Jobs at Manifest Solutions

More Information Technology Jobs

Find similar Senior Web/Network Security Engineer jobs: