Lead Web Application Firewall Engineer - Remote

Company: Lumen Inc
Location: Boise
Posted on: September 15, 2023

Job Description:

**About Lumen** Lumen is guided by our belief that humanity is at its best when technology advances the way we live and work. With 450,000 route fiber miles serving customers in more than 60 countries, we deliver the fastest, most secure global platform for applications and data to help businesses, government and communities deliver amazing experiences. Learn more about Lumens network, edge cloud, security and communication and collaboration solutions and our purpose to further human progress through technology at news.lumen.com, LinkedIn: /lumentechnologies, Twitter: @lumentechco, Facebook: /lumentechnologies, Instagram: @lumentechnologies and YouTube: /lumentechnologies. **The Role** The Lead Information Security Engineer WAF, is responsible for Web Application Firewall (WAF) security design and implementation. The Engineer collaborates with Security Architecture to implement, maintain, and improve security architectures and roadmaps, while also playing a role in managing and improving Enterprise security solutions. In addition, the Engineer works with Product, IT, Network, DevSecOps, and Security teams to implement recommended solutions for cloud and data center applications. This role also ensures the implementation of security solutions using advanced technical expertise and will often serve as a lead on major projects. The Engineer should be capable of helping to develop the overall WAF direction and initiates and executes research and development activities that are vital to the current and future Lumen security strategies. **The Main Responsibilities** + **Web Application Firewall Management:** Deploy, configure, and maintain web application firewall systems to protect our web applications against potential threats and vulnerabilities. + **Create WAF** rules within Native Cloud Services within GCP, Azure, AWS to mitigate threats and implement best practices + **Network Integration:** Collaborate with the infrastructure team to **integrate the web application firewall with Networks** such ensuring seamless traffic management and content delivery. + **Security Incident Response:** Monitor and analyze security events, alerts, and logs generated by the web application firewall systems. Investigate and respond to potential security incidents, working closely with the Security Operations Center (SOC) and Cybersecurity teams. + **Detection and Analysis:** **Leverage SIEM** for detecting and analyzing potential security threats and vulnerabilities. Develop and maintain detection rules, alerts, and reports to proactively identify and mitigate risks. + **Data Management:** Work with large amounts of data from various sources, including data lakes and Data Bricks. Apply SQL and data analysis techniques to interpret WAF data and derive meaningful insights to enhance security controls and optimize system performance. + **Vulnerability Assessment:** Collaborate with the vulnerability management team to conduct periodic vulnerability assessments and penetration testing of web applications. Utilize WAF data to identify potential vulnerabilities and recommend appropriate remediation measures. + **Documentation and Reporting:** Maintain accurate documentation of WAF configurations, policies, and procedures. Prepare reports and metrics related to web application security, including trends, incident summaries, and mitigation strategies. + **Collaboration and Training:** Collaborate with cross-functional teams to ensure effective communication, knowledge sharing, and alignment of security objectives. Provide training and guidance to other team members on WAF best practices and security awareness. + **Develop advanced alerts/reports** to meet the requirements of key stakeholders + **Develop scalable** security management tools and processes + **Develop automation f** or security tools management and workflow integration + **Collaborate** with key stakeholders within Cybersecurity, Engineering, and Development teams to create specific use cases to address business needs and security requirements **What We Look For in a Candidate** + Strong knowledge of web application security concepts, OWASP Top 10 vulnerabilities, and related mitigation techniques. + Proficiency in deploying and managing web application firewalls (Netscaler preferred) + Prior experience working with Splunk for security event management, log analysis, and threat detection. + Previous experience in a Security Operations Center (SOC) or performing cybersecurity analysis is highly desirable. + Ability to work with large datasets and perform data analysis to extract meaningful insights. + Excellent problem-solving skills and the ability to make sound decisions under pressure. + Strong communication skills and the ability to collaborate effectively with cross-functional teams. Requisition #: 330941 When applying for a position, you may be subject to a background screen (criminal records check, motor vehicle report, and/or drug screen), depending on the requirements for the position. More information on whats included in these checks can be found in the Post Offer section of our FAQ page (https://jobs.lumen.com/global/en/faq) . Job-related concerns noted in the background screen may disqualify you from the new position or your current role. Background results will be evaluated on a case-by-case basis. **EEO Statement** We are committed to providing equal employment opportunities to all persons regardless of race, color, ancestry, citizenship, national origin, religion, veteran status, disability, genetic characteristic or information, age, gender, sexual orientation, gender identity, gender expression, marital status, family status, pregnancy, or other legally protected status (collectively, protected statuses). We do not tolerate unlawful discrimination in any employment decisions, including recruiting, hiring, compensation, promotion, benefits, discipline, termination, job assignments or training. **Disclaimer** The above job definition information has been designed to indicate the general nature and level of work performed by employees within this classification. It is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities, and qualifications required of employees assigned to this job. Job duties and responsibilities are subject to change based on changing business needs and conditions. **Salary Range** **Salary Min :** 94420 **Salary Max :** 182220 This information reflects the anticipated base salary range for this position based on current national data. Minimums and maximums may vary based on location. Individual pay is based on skills, experience and other relevant factors. This position is eligible for either short-term incentives or sales compensation. Director and VP positions also are eligible for long-term incentive. To learn more about our bonus structure, you can view additional information here. (https://jobs.lumen.com/global/en/compensation-information) We're able to answer any additional questions you may have as you move through the selection process. As part of our comprehensive benefits package, Lumen offers a broad range of Health, Life, Voluntary Lifestyle and other benefits and perks that enhance your physical, mental, emotional and financial wellbeing. You can learn more by clicking here. (https://centurylinkbenefits.com) Note: For union-represented postings, wage rates and ranges are governed by applicable collective bargaining agreement provisions.

Keywords: Lumen Inc, Boise , Lead Web Application Firewall Engineer - Remote, Engineering , Boise, Idaho