Our client, one of the largest Amazon Web Services (AWS) partner for data services, is looking for a Senior Application Security Engineer to join their elite team of technologists to build and contribute to large-scale, innovative projects. Our client wants candidates who are eager to learn and grow with them as they work to move their market monitoring applications to modern big data platforms in the cloud where up to 60 billion market events are being processed each day. Summary: The Senior Application Security Engineer , ( Web Application Firewall WAF) is responsible for designing, operating, and supporting application-layer security controls that protect and defend applications during runtime. Job Responsibilities: Provide guidance to SOC personnel on basic security event triage and handling. Perform security event handling. Optimize and tune WAF and other security controls to optimize detection of legitimate issues while minimizing false positives. Coordinate with application-specific security SMEs where application-specific knowledge is required. Education/Experience: Bachelor s Degree Computer Science, Information Systems, - any emphasis in application security is a plus 2 years of experience with WAF. This includes deployment, operation, administration, and support. Experience with AWS-based WAF solutions (eg, SecureSphereor F5 running in AWS) and Software as a Service (SaaS) based WAF solutions (eg, Cloudflare, Incapsula) are a strong plus. 2 years of experience with common Web/App Servers (eg, IIS, Apache, Nginx, Node.js, Tomcat). Strong understanding of OWASP top 10, DoS, and common application-layer attacks. Good understanding of TCP/IP and basic networking concepts. Good understanding of common Web Applications architectures Familiarity with common programming languages and technologies (eg, PHP, Java, HTML, JavaScript, RegEx, REST) Other Desirable Experience: Amazon Web Services (AWS) fundamentals and security (eg, cloud computing, AWS security concepts including AWS access control and management, governance, logging, and encryption methods) Development Operations (DevOps) methodologies and tools, including agile development and deployment with an emphasis on Continuous Integration/Continuous Delivery (CI/CD) Financial services industry (eg, Insurance, Banking, Investments) ConsultNet is an Equal Opportunity Employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, ancestry, citizenship, disability, age, military or veteran status, and other characteristics protected under federal, state and local law. Id: 19-00021 - provided by Dice Agile, Apache, Development, DOS, Encryption, Firewall, HTML, IIS, Java, JavaScript, Management, Networking, PHP, Programming, Security, TCP/IP