Senior Cybersecurity Engineer – Cyber Governance
GEICO
Cyber SecurityServiceNow
Senior Security Engineer, WAF
Warner Bros. Discovery
full-time
Posted on:
Location Type: Hybrid
Location: Atlanta • District of Columbia, Maryland • 🇺🇸 United States
Visit company websiteSalary
💰 $105,280 - $195,520 per year
Job Level
Senior
Tech Stack
AWSAzureCloudGoogle Cloud PlatformPythonSDLC
About the role
- Implement, configure, and maintain enterprise-grade WAF and DDoS protections across a large portfolio of properties
- Develop and fine-tune custom firewall rules, bot mitigation controls, and DDoS mitigation security policies
- Perform log analysis to identify malicious traffic patterns, false positives, and opportunities for tuning
- Contribute to automation efforts (infrastructure as code, CI/CD integrations, scripts) to deploy and maintain security configurations
- Identify security vulnerabilities and guide developers and engineers in addressing these issues
- Participate in on-call rotation as a subject matter expert for WAF/DDoS incident response
- Partner with product, engineering, and operations teams to integrate WAF/Edge security controls into applications and services
- Provide technical guidance on perimeter security best practices within SDLC and cloud-native environments
- Research and stay current on the latest attack vectors, vulnerabilities, and exploits affecting web and API applications
- Recommend and implement improvements to strengthen defenses across the edge/perimeter layer.
Requirements
- Bachelor’s degree in Computer Science, Information Security, or equivalent work experience
- 5+ years of experience in application or network security with direct hands-on work in WAF/DDoS solutions
- Detailed understanding of the threats faced directly to consumer and digital platform organizations
- Proven expertise with at least one major WAF platform (Akamai, Fastly NGWAF, AWS WAF, Azure, or similar)
- Practical experience writing/modifying WAF rules (e.g., AWS WAF, Azure or Cloudflare custom rules)
- Strong understanding of HTTP/S protocols, OWASP Top 10, and API security models
- Proficiency with log analysis tools, scripting (Python, Bash, PowerShell), and automation frameworks
- Proven hands-on experience securing application across various Cloud Providers (AWS, GCP, Azure)
- Strong problem-solving skills with the ability to quickly analyze issues and implement effective mitigations
- Excellent collaboration and communication skills across security, engineering, and product teams.
Benefits
- health insurance coverage
- an employee wellness program
- life and disability insurance
- a retirement savings plan
- paid holidays and sick time
- vacation
Applicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard skills
WAFDDoS protectionfirewall rulesbot mitigationlog analysisinfrastructure as codeCI/CDscriptingHTTP/S protocolsAPI security
Soft skills
problem-solvingcollaborationcommunication
