Toronto,

General

  • Has a deep understanding of web application architecture
  • Experience with Application Security tools (static code analysis, dynamic scanning, WAF,API Gateway , F5 ASM)
  • Detailed understanding of common web application deployment models and components
  • Engineering, deployment, and operations of Web Application Firewall security solutions and integration of those platforms with other security solutions as required.
  • Performing hands-on Web Application Firewall deployment, configuration, policy fine-tuning and maintenance
  • Have a knack for finding flaws in software and can efficiently communicate how to fix them
  • Proven ability to communicate and educate engineering and architecture teams as to why security efforts are necessary and add value
  • Can think like an attacker and use that context to develop threat models
  • Experience in reviewing and analyzing log files and data correlation
  • Excellent Logical and Practical understanding of SSDLC
  • Experience with managing Web/Application Servers 
  • Creates WAF rules/signatures to mitigate threats and implements best practices
  • Creation and implementation of custom alerting dashboards in SIEM for investigations
  • Experience and familiarity with widely accepted vulnerability frameworks and guidance (i.e., CVSS, OWASP, NIST, etc.)
  • Demonstrable experience scripting with languages like Python, PowerShell, bash, etc. to create and automate security controls
  • Familiarity with technical security controls, guidelines, and frameworks outlined by standards such as SOC2, ISO 27001/27013, NIST 800-53

Process/Decisions

  • Excellent technical skills and understanding of API Gateway, WAF and DDoS
  • Deploy and configure application into reverse proxy with WAF /DDoS and API Gateway. Monitor and continuously tune the policies for effective protection.
  • Troubleshoot and isolate network and access failures
  • Use performance monitoring solutions and interpret results

Skills and Abilities

  • Bachelor’s degree in Computer Science, Engineering, or a related field
  • Minimum of 3+ years overall IT industry experience
  • Extensive knowledge of:
    • OWASP Risks, Vulnerabilities and Mitigation Mechanisms
    • operating systems, web services, programming languages, network devices, application vulnerabilities and attack vectors
    • exploiting web apps and web services security vulnerabilities including cross-site scripting, cross-site request forgery, SQL injection, DoS attacks, XML/SOAP, and API attacks.
  • Strong understanding of TCP/IP, web protocols and networking concepts
  • Working knowledge of API Gateway such as Google APIgee
  • WAF/DDoS (F5, Akamai, Cloudflare etc.), OSCP (Offensive Security) and CCNA/CCNP certification a plus
  • Effective oral and written communication
  • Ability to establish and maintain cooperative and effective working relationships with others

#LI

Qualifications

Education:

Bachelor's Degree

Skills

Certifications:

Languages:

Years of Experience:

2 - 4 Years

Work Experience:

Additional Information

Travel:

Yes, 10% of the Time

Relocation Eligible:

No

Applied Materials is committed to diversity in its workforce including Equal Employment Opportunity for Minorities, Females, Protected Veterans and Individuals with Disabilities.

Toronto,

A global leader in the nanomanufacturing technology solutions for the electronics industry, Applied Materials is built on the strength of talented people. We offer a wide variety of job opportunities for experienced professionals and recent college students/graduates that will capitalize on your current skills while broadening your experience and engaging you in a dynamic, fast-changing industry.

Here, you will work in community to achieve a common goal and encounter exciting new challenges every day. Our company is continually evolving: implementing innovations to make semiconductors more portable, powerful, and affordable than ever before.

 

 

Similar jobs