Senior Security Engineer - Web Application & Network Protection

Primary Talent Partners

Columbus, OH

JOB DETAILS
SALARY
$69–$79 Per Hour
SKILLS
(XSS) Cross Site Scripting, Application Programming Interface (API), Applications Security, Authentication, Automation, CISSP - Certified Information Systems Security Professional, Cloud Computing, Content Delivery Network (CDN), Continuous Deployment/Delivery, Continuous Integration, Cryptography, DNS (Domain Name System), Denial of Service (DoS), F5 Network Software, Firewalls, GIAC - Global Information Assurance Certification, Geolocation, Git, Hunting, Identify Issues, Incident Response, Injections, International Information Systems Security Certification Consortium (ISC)2, Internet Application, Internet Security, NAT (Network Address Translation), Network Security, Oil and Gas, On Call, Onboarding, Production Support, Python Programming/Scripting Language, REST (Representational State Transfer), Remote Access, Reporting Dashboards, Root Cause Analysis, SQL (Structured Query Language), SSL-TLS (Secure Socket Layer - Transport Layer Security), Security Analysis, Security Architecture, Security Attacks, Software Administration, Traffic Shaping, VPN (Virtual Private Network)
LOCATION
Columbus, OH
POSTED
4 days ago
Primary Talent Partners has a new contract opening for a Senior Security Engineer -  Web Application & Network Protection to join a gas and electric company in Columbus, OH. This is a 12-month contract to start with the potential for extensions. 

Pay:$69.00 - $79.00/hr; W2 contract, no PTO, no Benefits. ACA-compliant supplemental package available for enrollment. Candidates must be legally authorized to work in the United States and must be able to sit on Primary Talent Partners W2 without sponsorship.


Description:

We are seeking a Senior Cybersecurity Engineer to lead the design, implementation, and support of enterprise web application and network security solutions.

This role will be responsible for securing internet-facing applications through F5 Distributed Cloud WAF, API security, bot protection, and network security technologies including Palo Alto firewalls and secure remote access solutions.

The ideal candidate possesses a blend of application security, network security, and cloud security experience and is passionate about protecting critical enterprise services.



Responsibilities:

Web Application Security

  • Administer and support F5 Distributed Cloud (XC) WAF platform.

  • Deploy and maintain WAF policies, signatures, and security controls.
  • Configure:
    • API Protection
    • Bot Defense
    • DDoS Mitigation
    • Geolocation Policies
    • Rate Limiting
    • CAPTCHA Challenges
  • Investigate and tune false positives.
  • Perform application onboarding into WAF services.
  • Conduct WAF policy reviews and optimization.
  • Support incident response involving web application attacks.

Application Security

  • Understand and mitigate:
    • OWASP Top 10
    • Authentication attacks
    • API abuse
    • Credential stuffing
    • Session hijacking
    • Cross-Site Scripting (XSS)
    • SQL Injection
    • SSRF
    • CSRF
  • Review application architectures and recommend security improvements.
  • Partner with development teams during application onboarding and troubleshooting.

Network Security

  • Administer and support:
    • Palo Alto Networks NGFW
    • Prisma Access
    • Site-to-site VPNs
    • SSL decryption
    • NAT and security policies
    • Network segmentation
    • DNS and routing troubleshooting
  • Support production incidents and participate in on-call rotation.

Cloud & Automation

  • Develop automation using:
    • Python
    • REST APIs
    • Terraform
    • Git
  • Build dashboards and reporting around security posture.
  • Automate repetitive operational tasks.

Security Operations

  • Participate in:
    • Incident response
    • Threat hunting
    • Security assessments
    • Vulnerability remediation
    • Root cause analysis
    • Architecture reviews

Qualifications
Preferred Qualifications
Experience with:
  • Bot Management
  • API Security
  • DDoS Protection
  • CDN technologies
  • DevSecOps
  • CI/CD pipelines
  • Kubernetes
  • Containers
  • Terraform


Certifications:

  • OWASP Foundation certifications
  • ISC2 CISSP
  • GIAC certifications
  • F5 certifications


Primary Talent Partners is an Equal Opportunity / Affirmative Action employer committed to diversity in the workplace. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, age, national origin, disability, protected veteran status, gender identity, or any other factor protected by applicable federal, state, or local laws.

If you are a person with a disability needing assistance with the application or at any point in the hiring process, please contact us at info@primarytalentpartners.com


#PTPJobs

#LI-PTP

About the Company

P

Primary Talent Partners