SOC - Cloud WAF Security Engineer
Base location: Belfast, N. Ireland (Hybrid model)
We're looking for a SOC - Cloud WAF Security Engineer to join our Advanced Security Response team.
The Advanced Security Response team is dedicated to providing the first response to security incidents and focuses on the operational aspect of web application security: analyzing threats, suggesting immediate methods of remediation and mitigation, and actively working to block attacks in real-time.
The scope of activity ranges throughout layers 3, 4, and 7, encompassing DoS & DDoS attacks, Brute-Force attacks, scraping and filtering unwanted traffic, and extending into initial analysis and mitigation of application attack vectors, such as XSS, SQLi, and Remote code execution.
A complementary aspect of this activity is to handle cases of false positives. The ASRT will own the task of investigating the root cause of the misfire, suggesting the optimal way to avoid further cases, and applying changes accordingly when required.
The ASRT will work closely with the first-tier support team, acting as a focal point for security-related events and incidents and maintaining a bi-directional line of communication with the Imperva Threat Research team to share findings and information.
As a member of the ASR team, the specialist is expected to possess a good working knowledge of web application security and the current threat landscape, together with an in-depth familiarity with Imperva's security policies and processes. The specialist will also maintain proficiency in field-related tools and methodologies and is encouraged to expand their knowledge of all security-related matters.
Job Requirements:
1. At least one year of hands-on experience in the security or networking fields.
2. Working knowledge of TCP/IP, HTTP/S, DNS, SSL, OWASP Top 10 Attacks (SQLi, XSS, RCE, RFI).
3. Excellent communication skills.
4. Experience in scripting languages: Python, Bash is an advantage.
5. Familiarity with popular tools in the industry of AppSec and their usage: Burp Suite, Postman, Wireshark.
In line with Thales' Baseline Security requirements, candidates will be asked to provide evidence of identity, eligibility to work in the UK and employment and/or education history for up to three years. Some vacancies may require full Security Clearance which can require further evidence to be provided.
At Thales we provide CAREERS and not only jobs. With Thales employing 80,000 employees in 68 countries, our mobility policy enables thousands of employees each year to develop their careers at home and abroad, in their existing areas of expertise or by branching out into new fields.
Thales UK is committed to providing an inclusive and barrier-free recruitment process. We will provide reasonable adjustments and support to ensure neuro-diverse applicants or those with a disability or long-term condition can be their best during the recruitment process.
Great journeys start here, apply now!
#J-18808-Ljbffr