Job title : 

Security Services Engineer

Transition/Unit/Cluster : Cluster Network & Security Infrastructure

Language Skills

English:

Mandatory

Junior: B1,

Regular and higher: B2

English:B2

German;

NOT mandatory

For all roles - German: B1/B2 optional / as an advantage  (not mandatory)

Job Purpose : 

As an security engineer you will work in a team to ensure some security related services. The primary focus of a security engineer is technical. You are responsible for managing day to day operations of security devices –

WAF/API Protection (WAAP), DDoS protection together with other team members or the vendor.

 In the Cluster Supply Organization, the teams are organized in cells, using agile methods.

You need to have a technical background, especially knowledge of implementation, configuration, and management of DDoS & WAF protection solutions in a multi-hybrid cloud environment. You need to be able to research topics to stay up to date regarding new technologies and trends in IT and always learning new skills. It would be a great advantage, if you are fluent in German, but it is not mandatory. 

• Provide 2nd level security network support for Frankfurt/Kelsterbach Datacenter
• Very good experience with WAF, management environments including reporting and monitoring
• Configure, deploy, and maintain the WAF solution with API protection onPrem or in multi-cloud
• Creation of WAF rules, signatures to mitigate threats and implements best practices
• Excellent understanding of DDoS protection, manage strategies for mitigating DDoS attacks
• Handle Requests, Incidents, Changes and Problems in production security network environment
• Support migration projects
• Participate in weekends, public holiday and on-call support when required
• Contribute as an effective team player in an agile team

Main Skills :

1) Security networking knowledge with a minimum of 3-8 years experiences -

Working knowledge in topics: WAF/API protection or BotM

Experience Level : High  knowledge

Description [what is the task related to the required skill] : 

Understanding of WAF techniques, creation of WAF rules, signatures mitigation mechanisms

Experience in TCP/IP, web protocols and vulnerabilities

2) Security networking knowledge with a minimum of 3-5 years experiences -

Working knowledge in topics: DDoS protection onPrem or cloud

Experience Level : High  knowledge

Description [what is the task related to the required skill] : 

Understanding of DDoS and mitigation mechanisms

Experience in OWASP Top 10, OWASP Risks, and vulnerabilities

Good understanding of DDoS monitoring and logging (SYSLOG, SIEM)

3) Agile Methods, JIRA Knowledge

Windows, Linux, Unix environment

Experience Level : Good  knowledge

Description [what is the task related to the required skill] : 

Experience in agile methods

Personal Skills : 

• Successfully completed studies in computer science, business informatics or comparable training
• High level of responsibility, team ability and initiative
• Good communication skills and strong analytical skills, as well as the pleasure of solving complex questions and getting to know new topics
• Willingness to participate in on call services and travel to foreign locations