Application Security Engineer - Remote

6d6 days ago

Precision Solutions

US · Full-time · $150,000 – $200,000

About this role

The Application Security Engineer role requires a strong background in cybersecurity, web application security, and zero trust proxy practices. Primary responsibility involves ensuring effective deployment, configuration, and maintenance of systems for global customers. This position sits within the Application Edge Protection Service of the CyberSecurity pillar, focusing on Web Application Firewalls, Zero Trust Proxy, and cloud security.

Day-to-day tasks include deploying and configuring WAF and Zero Trust Proxy systems, monitoring security alerts, and analyzing logs for threats. Respond to incidents in collaboration with the Security Operations Center and develop detection rules to mitigate risks. Integrate WAF with CDNs like Akamai and Radware for seamless traffic management.

Work closely with infrastructure, application, and engineering teams to explain security details and align objectives. Provide guidance on best practices and vulnerability remediation using WAF data. Collaborate cross-functionally to improve information security posture through shared findings.

Leverage automation knowledge in Python, Terraform, AI, and cloud-native concepts across AWS, Azure, and Google Cloud. Maintain documentation, reports, and metrics on security trends and incidents. Contribute to proactive risk identification and mitigation for enhanced global customer protection.

Requirements

4+ years of experience with minimum 2 years in network security and 2 years in application security
Strong knowledge of web application security concepts, OWASP Top 10 vulnerabilities, and related mitigation techniques
Understanding of authentication and authorization flows (OAuth, SAML, OIDC)
Strong technical background with Web Application Firewall (WAF), Zero Trust Network Access, APIs, and Cloud security policies
Understanding of API security issues and API authentication
Previous experience in a Security Operations Center (SOC) or performing cybersecurity analysis, log analysis, and threat detection
Knowledgeable in automation processes, Python, Terraform, AI, and cloud-native concepts with AWS, Azure, and Google Cloud
US Citizen required for remote position within the US

Responsibilities

Deploy, configure, and maintain web application firewall systems to protect web applications against threats and vulnerabilities
Deploy, configure, and maintain Zero Trust Proxy systems including defining and maintaining policies and connectors
Monitor and analyze security events, alerts, and logs from web application firewall systems; investigate and respond to incidents with SOC
Develop and maintain detection rules, alerts, and reports utilizing logs to identify and mitigate risks
Collaborate with infrastructure and application teams to integrate web application firewall with CDNs such as Akamai and Radware
Utilize WAF data to identify potential vulnerabilities and recommend remediation measures to customers
Maintain documentation of WAF configurations, policies, and procedures; prepare reports on security trends and incidents
Collaborate with cross-functional teams to explain security details and provide guidance on application security best practices