Thales
From Aerospace, Space, Defence to Security & Transportation, Thales helps its customers to create a safer world by giving them the tools they need to perform critical tasks.
Location: BELFAST ARNOTT HOUSE, United Kingdom
Thales people architect identity management and data protection solutions at the heart of digital security. Business and governments rely on us to bring trust to the billions of digital interactions they have with people. Our technologies and services help banks exchange funds, people cross borders, energy become smarter and much more. More than 30,000 organizations already rely on us to verify the identities of people and things, grant access to digital services, analyze vast quantities of information and encrypt data to make the connected world more secure.
Title: SOC - Cloud WAF Security Engineer
Base location: Belfast, N. Ireland (Hybrid model)
We're looking for SOC - Cloud WAF Security Engineer to join our Advanced Security Response team.
The Advanced Security Response team is dedicated to providing the first response to security incidents and is focused on the operational aspect of web application security: analysing the threat, suggesting immediate methods of remediation and mitigation, and actively working to block attacks in real time.
The scope of activity ranges throughout layers 3, 4, and 7, encompassing DoS & DDoS attacks, Brute-Force attacks, Scraping and filtering unwanted traffic, and extending into initial analysis and mitigation of application attack vectors, such as XSS, SQLi, and Remote code execution.
A complementary aspect of this activity is to handle cases of false positives. The ASRT will own the task of investigating the root cause of the misfire, suggesting the optimal way to avoid further cases, and applying changes accordingly when required.
The ASRT will work closely with the first-tier support team, acting as a focal point for security-related events and incidents, and will have a bi-directional line of communication with the Imperva Threat Research team to share findings and maintain updated knowledge of current policies.
As an ASR team member, the specialist is expected to possess a good working knowledge of web application security and the current threat landscape, together with an in-depth familiarity with Imperva's security policies and processes. The specialist will also maintain proficiency in field-related tools and methodologies and is encouraged to expand his knowledge of all security-related matters.
Job Requirements:
1. At least one year of hands-on experience in the security or networking fields.
2. Working knowledge of TCP/IP, HTTP/S, DNS, SSL, OWASP Top 10 Attacks (SQLi, XSS, RCE, RFI).
3. Excellent communication skills.
4. Advantage for experience in scripting languages: Python, Bash.
5. Familiarity with popular tools in the industry of AppSec and their usage: Burp Suite, Postman, Wireshark.
In line with Thales' Baseline Security requirements, candidates will be asked to provide evidence of identity, eligibility to work in the UK and employment and/or education history for up to three years. Some vacancies may require full Security Clearance which can require further evidence to be provided.
At Thales we provide CAREERS and not only jobs. With Thales employing 80,000 employees in 68 countries, our mobility policy enables thousands of employees each year to develop their careers at home and abroad, in their existing areas of expertise or by branching out into new fields. Together we believe that embracing flexibility is a smarter way of working.
Thales UK is committed to providing an inclusive and barrier-free recruitment process. We will provide reasonable adjustments and support to ensure neuro-diverse applicants or those with a disability or long-term condition can be their best during the recruitment process.
Great journeys start here, apply now!
#J-18808-Ljbffr