Job #: 2016-68
Title: Web Security Engineer
Job Type: Permanent
Region: New York City
Salary Range: $125,000 to $150,000
Contract Pay Rate: N/A
Function: Engineer
Specialty:
Degree: Bachelors
Job Details:
Skill Required
– Extremely Deep Bluecoat ProxySG Appliance experience required; must know advanced CPL writing, proxy debugging and SSL interception capabilities
– Minimum 5-7 year’s hands-on progressive experience with building, managing and deploying more than 50 devices in a highly heterogeneous environment
– Practical and theoretical knowledge of web and web application server components such as IIS, Apache, Tomcat, Websphere, !JBoss, etc…
– Malware/exploit exposure vectors (Malvertising, hidden frames, XSS/XSRF, etc) and anti-malware/exploit tactics and strategies
– Deep Linux Experience; must know bother userland *and* adminstrative roles and tasks
– In-depth Load Balancer knowledge revolving around how they work, various deployment models and how they’re used in proxied environments
– Expert knowledge of web security concepts and cyber attack vectors covering network through application layers
– Incredibly profound understanding of the protocols underpinning the web – TCP/IP, HTTP, SSL/TLS etc… Must be able to intelligently dissect and discuss all 7 layers of the OSI stack
– Experience working in DMZ environments with good understanding of hardware load-balancing, firewalls, multi-tiered architectures.
– Experience with monitoring strategies to detect and mitigation approaches to remedy (D)DoS attacks
Skills Desired
– Hands-on F5/A10 load balancer knowledge
– Velocity programming experience
– Linux hands-on system administration (RHEL) knowledge
– Practical knowledge of Web Application Firewall (WAF) configuration
– CISSP or similar recognised cyber security qualifications
– Experience with configuration and use of content delivery networks (Akamai, Cloudflare, etc)
– Development experience in Perl or Java is a plus
– Experience operating in large, siloed enterprise environments