Client - State of Ohio
Onsite
Looking for an experienced and highly motivated Senior Lead Security Engineer. A self-starter with a comprehensive understanding of F5 Application Security Manager (ASM) and knowledge of protecting systems with Web Application Firewall (WAF) policies. The Senior Lead Security Engineer will be responsible for designing, implementing and managing security solutions for ensuring compliance with security standards and best practices. The ideal candidate for this role must have a minimum of 5 years of experience with F5 ASM, WAF, and iApps, strong understanding of network security protocols, and experience with network engineering and infrastructure projects. Additionally, the Senior Lead Security Engineer should have excellent communication and problem-solving skills, and the ability to lead, mentor, and motivate a team.
- The ideal candidate will possess a robust skill set and the ability to effectively navigate complex firewall infrastructures with minimal oversight
- Extensive hands-on experience designing, implementing, and managing F5 ASM and WAF policies and advanced network security systems in large-scale enterprise environments
- In-depth knowledge of network protocols, load balancing techniques, and complex architectures, with the ability to optimize them for performance and security
- Proven ability to work independently, lead projects with precision and accountability, and deliver results within established deadlines
- Strong analytical and problem-solving skills, with a keen aptitude for diagnosing and resolving complex network security issues
- Expert-level knowledge of F5 Web Application Firewall (WAF), Application Security Manager (ASM), and iApps.
- Deep understanding of network security principles, including firewall rules and access control policies
- Solid experience with network protocols such as TCP/IP, UDP, ICMP.
- Familiarity with network security architectures, including DMZs, VPNs, and segmentation
- Experience with network monitoring and analysis tools (e.g., Wireshark, Splunk, ELK stack)
- Proficiency in scripting languages (e.g., Python, Bash) for automating network tasks and configurations
- Understanding of security compliance frameworks and regulations (e.g., PCI-DSS, HIPAA, GDPR)
- Excellent problem-solving and analytical skills, with the ability to think critically and troubleshoot complex issues
- Strong project management skills, with the ability to prioritize tasks, manage timelines, and communicate progress effectively
- Ability to work collaboratively with cross-functional teams, including network operations, security operations, and application development teams
- Excellent communication skills, with the ability to articulate complex technical concepts to both technical and non-technical audiences
- Continuous learning mindset, staying up-to-date with the latest security threats, technologies, and best practices.
- F5 Application Security Manager (ASM) skills desired
- Application Security Configuration
- Protocol Security Configuration
- Network Firewall Configuration
- DoS Protection Configuration
- Bot Defense Configuration
- Cloud Services Configuration
- Event Logs
- Application Security Configuration
- Security Policies
- Login Page Configurations
- Traffic Learning and Building
- Parameters, Sessions, Device ID Configurations
- Protocol Security Configuration
- Security Profiles
- Network Firewall Configuration
- Ip Intelligence and Policies
- DoS Protection Configuration
- Protection Profiles
- Bot Defense Configuration
- Bot profiles and Signatures
- Cloud Services Configuration
- Cloud Security Applications
- Event Logs
- Application
- Protocols
- Network
- DoS
- Bot Defense
- Logging Profiles
- Also the ability to not only know these facets of the F5 but be able to teach onsite staff to use the tool and help us build out documentation.
- Profile Tuning
- Transitioning from a transparent policy and enforced policy, lessons learned, gotcha’s and low hanging security settings.
Skills: security,network security,application,firewall,application security,skills,bot,profiles,cloud,dos