Full Time Specialist Network Infrastructure Engineer (WAF, DDoS) l Penang Jobs, in Commerz Global Service Solutions Pulau Pinang - Maukerja

Job Purpose:

As an security engineer you will work in a team to ensure some security related services. The primary focus of a security engineer is technical. You are responsible for managing day to day operations of security devices – WAF/API Protection (WAAP), DDoS protection together with other team members or the vendor.

In the Cluster Supply Organization, the teams are organized in cells, using agile methods.

You need to have a technical background, especially knowledge of implementation, configuration, and management of DDoS & WAF protection solutions in a multi-hybrid cloud environment. You need to be able to research topics to stay up to date regarding new technologies and trends in IT and always learning new skills. It would be a great advantage, if you are fluent in German, but it is not mandatory.

Key Activities:

• Provide 2nd level security network support for Frankfurt/Kelsterbach Datacenter
• Very good experience with WAF, management environments including reporting and monitoring
• Configure, deploy, and maintain the WAF solution with API protection onPrem or in multi-cloud
• Creation of WAF rules, signatures to mitigate threats and implements best practices
• Excellent understanding of DDoS protection, manage strategies for mitigating DDoS attacks
• Handle Requests, Incidents, Changes and Problems in production security network environment
• Support migration projects
• Participate in weekends, public holiday and on-call support when required
• Contribute as an effective team player in an agile team
• Working arrangement during EMEA hours, 3PM - 12AM Malaysia time.

Skills Requirement:

• Understanding of WAF techniques, creation of WAF rules, signatures mitigation mechanisms
• Experience in TCP/IP, web protocols and vulnerabilities
• Understanding of DDoS and mitigation mechanisms
• Experience in OWASP Top 10, OWASP Risks, and vulnerabilities
• Good understanding of DDoS monitoring and logging (SYSLOG, SIEM)
• Experience in agile methods

Personal Skills:

• Successfully completed studies in computer science, business informatics or comparable training
• High level of responsibility, team ability and initiative
• Good communication skills and strong analytical skills, as well as the pleasure of solving complex questions and getting to know new topics
• Willingness to participate in on call services and travel to foreign locations