Truist

Senior Engineer, AWS WAF / AWS Network Firewall

Truist

full-time

Posted on:

Location Type: Office

Location: Charlotte • North Carolina • 🇺🇸 United States

Visit company website
AI Apply
Apply

Job Level

Senior

Tech Stack

AWSCyber SecurityFirewallsSDLC

About the role

  • Responsible for developing and maintaining the technical IT / cyber security capabilities necessary for safeguarding the firm's information systems and applications (software development lifecycle), including every phase of the SDLC and software stack
  • Design, plan, test and implement phases of cybersecurity technology projects
  • Develop and maintain capabilities including threat modeling of application designs, static application security testing (SAST), software composition analysis (SCA), dynamic application security testing (DAST), and penetration testing
  • Lead efforts related to designing, planning, enhancing, and testing all cybersecurity technologies used throughout the enterprise including base-lining current systems, trend analysis, and capacity planning
  • Analyze information to determine, recommend, and plan the use of new information security technologies or modifications to existing equipment and systems
  • Lead the implementation of new information security technologies or integration of existing technologies including initial configuration, installation, change management, and operational handoff
  • Provide technical support of information security technologies providing expert problem analysis and resolution in a timely manner
  • Lead teams or projects with moderate resource requirements, risk, and complexity
  • Implementation and configuration of AWS WAF, AWS Firewall Manager, AWS Common Bot Control, and AWS Shield Advanced

Requirements

  • Seeking a hardcore AWS WAF engineer with hands-on experience
  • Implementation and Configurations for: AWS Web Application Firewall, AWS Firewall Manager, AWS Common Bot Control, AWS Shield Advance
  • Bachelor’s degree and eight years of experience in systems engineering or administration or an equivalent combination of education and work experience
  • Deep specialized and/or broad functional knowledge in applied enterprise information security technologies including but not limited to firewalls, intrusion detection/prevention systems, network operating systems, identity management, database activity monitoring, encryption, content filtering, and Mainframe security
  • Previous experience in leading complex IT projects
  • Master’s degree or MBA and ten years of experience or an equivalent combination of education and work experience (preferred)
  • Banking or financial services experience (preferred)
  • Other security certifications (e.g. CCNA Security, GSEC, GCED, GPPA, etc.) (preferred)
  • Other technical Certifications (e.g. CCNA, RHCE, MCSE, etc.) (preferred)
  • Certification in Information Security Management (e.g. CISSP, CRISC, CISM) or related security certification(s) (preferred)
  • Language Fluency: English (Required)
  • Work Shift: 1st shift (United States of America)
  • Travel: Minimal and up to 10%
  • Availability: Able to work all hours scheduled, including overtime as directed by manager/supervisor and required by business need
  • Physical/other requirements: Sitting Constantly (More than 50% of the time); Visual/Audio/Speaking; Manual Dexterity/Keyboarding
Benefits
  • medical
  • dental
  • vision
  • life insurance
  • disability
  • accidental death and dismemberment
  • tax-preferred savings accounts
  • 401k plan
  • no less than 10 days of vacation (prorated based on date of hire and by full-time or part-time status)
  • 10 sick days (also prorated)
  • paid holidays
  • may be eligible for Truist’s defined benefit pension plan, restricted stock units, and/or a deferred compensation plan
  • reasonable accommodation for disability requests during application

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard skills
AWS WAFAWS Firewall ManagerAWS Common Bot ControlAWS Shield Advancedstatic application security testing (SAST)software composition analysis (SCA)dynamic application security testing (DAST)penetration testingthreat modelinginformation security technologies
Soft skills
leadershipproblem analysisproject managementcommunication
Certifications
CISSPCRISCCISMCCNA SecurityGSECGCEDGPPACCNARHCEMCSE