Network Security Engineer
Type: Long term
Location: Remote
We need someone who is skilled in F5 LTM, GTM, and ASM/AWAF (ideally SSLO as well). We would love to have someone who is also skilled in a cloud WAF/CDN solution like Cloudflare, Akamai, Imperva, F5 XC, etc.
Qualifications:
• 8+ years experience troubleshooting and maintaining application delivery controllers (load balancers such as F5, AVI, A10, Citrix, WAF etc)
• 4+ years experience troubleshooting and maintaining other network appliances (switches, routers, firewalls, proxies, etc)
• 3+ years experience automating network infrastructure tasks
• 3+ years supporting cloud native applications in Azure, GCP, or AWS and securing via CDN security stacks such as cloudflare or F5 XC
• Advanced knowledge of HTTP, SSL/TLS encryption, DNS, switching and routing, and Application Security, mitigating OWASP top 10 security threats
Job Description:
• Maintain a large inventory of application delivery controllers (load balancers - F5, A10, AVI, WAF, Cloudflare, etc) alongside a team of engineering colleagues (~10 U.S. based engineers and ~10 International engineers on the team)
• Positively contribute to over 99.99%+ application uptime by deploying load balancers and configuring load balanced applications
• Effectively troubleshoot complex network layer 1-7 issues while clearly and concisely communicating status updates to stakeholders until resolution
• Execute assigned projects in a timely manner without causing application impact while following change control process requirements
• Projects such as: load balancer software or hardware upgrades, onboarding applications to Web App Firewalls, migrating applications along with WAF to cloud infrastructures, and deploying SSL/TLS inspection, amongst others
• Engineer innovative ways to solve problems and build helpful tools using scripting/automation focus with a software engineering mindset
• Automate repeatable tasks using scripting languages and/or Terraform/Ansible/Chef/Puppet/Jenkins/etc tools
• Document topology diagrams and MOPs for repeatable manual engineering tasks
• Secure applications from malicious HTTP/S traffic using web application firewalls
• Respond to high priority on-call engagements within 15 minutes in a rotation one out of every 4 weeks from 8am to 8pm IST
• Able to work occasional weekends and nights during off hour change windows as necessary to support the business
• Generally work is self-directed and not prescribed
• Works with less structured, more complex issues
• Serves as a resource to others in addition to individual engineering contributions
• Ideal candidate has experience on F5 LTM, F5 GTM (DNS), F5 ASM (AWAF), F5 SSLO, A10 load balancers, AVI load balancers, Shape Bot Protection, major cloud providers native console tools such (AWS, Azure, GCP), CDN solution such as cloudflare, Akamai, F5 XC and scripting automation
• Interview process: 2 to 3 rounds of virtual interviews with hiring manager, engineers and key leaders, interviews will be technical asking network engineering and information security specific questions on how networks, load balancers, firewalls, etc systems work exactly