Klanik - Web Security Engineer

Contenuto del lavoro

For one of our client we are looking for a Web Application Firewall Security Expert.

Your mission

Building, testing, deploying, analyzing, administering, and maintaining enterprise F5 Platforms with a focus on Reverse Proxy, Authentication, Monitoring & Protection (RAMP) services
Configuring, conducting, and managing the F5 LTM module
Configuring and maintaining the F5 ASM module (security policies, updates, new applications integration...)
Develop, maintain and optimize customized F5 iRules and scripts
Assist application developers and enforce secure coding best practices.
Technical testing of significant maintenance, operational, upgrade activities and process enhancements/updates
Automating configuration and implementation activities
Design, deliver and support the integration layer between operating systems and business applications.
Integration of Web application in the Web Infrastructure for the intranet as well as for the DMZ.
Share knowledge with colleagues on technology subjects, solutions, best practices on vendor specific and also on generic security components
Establish and document installations, guidelines, policies and procedures for relevant stakeholders.
Assist in production support (incident, problem and change management) for the Web Application Firewall squad.
Assist architects in order to perform cost-benefit analyses of proposed Web implementations, enhancements and modifications.
Set and enforce compatibility and interoperability standards that ensure site accessibility for all users.
Monitor and report on Web site traffic and performance.
Participate in the industrialization of our assets
Participate in the On-Call calendar (7/7 18:00 - 7:30)
Work on-site (~3 days)

Your profile

At least 2 years of experience with F5 ASM WAF
At least 3 years of experience in Web Security
A professional experience of at least 5 years, some in infra automation.

Mandatory:
Strong knowledge on Web application Firewalls, HTTP, TCP, SSL and PKI
Strong System administration experience with the F5 Big-IP Application Security Manager (ASM) and Local Traffic Manager (LTM) including tmsh and iRules
Strong experience in iRules development.
Experience in Web vulnerability management.
Experience in (infra) automation with Python.
Experience in scripting languages such as Perl and Bash.
Generic knowledge on: Web access management, Anti-virus, Firewalls, load balancers, networks and DMZ
Experience in technical documentation.
High awareness to risks related to the financial sector
Follows the defined processes for projects, incident and change management with high attention to business and financial impact
Experience with working in a complex organization.
Being standalone and team worker, analytical minded, meet commitment, ability to work in a dynamic and multi-cultural environment, flexible, customer-oriented
Ability to work in a fast-paced, Agile environment and flexibility to accommodate demanding sprint schedules
Ability to work effectively with a wide range of constituencies in a diverse community