DevSecOps Engineer

Horizontal Talent - Minneapolis, MN

posted 2 months ago

Full-time - Mid Level
Minneapolis, MN

About the position

In this DevSecOps Engineer role, you will engage in industry-leading bot mitigation techniques, deep traffic analysis, and threat modeling. You will build and utilize partnerships across multiple internal organizations with product and engineering teams to imagine, design, and implement edge and down stack solutions for bot mitigation and identity protection. This position is crucial for developing counter strategies for malicious scanners and credential stuffing, as well as operational tooling and automation against APIs for WAF configuration changes, edge and origin bot mitigation, anti-fraud measures, and load-shedding to protect critical infrastructure and sensitive external-facing endpoints. You will ideate novel and clever solutions for detecting and mitigating emerging bot-related threat vectors. Additionally, you will respond to production incidents, partnering with Operations, ERC, and Engineering teams to mitigate bot and other related malicious traffic at the edge. This role requires a burning desire to learn and do more in the edge security space with bot mitigation techniques and anti-fraud efforts at scale. The successful applicant will have a strong background in DevSecOps or software development, with a focus on security practices integrated into the software development lifecycle. You will be expected to leverage your experience to enhance the security posture of the organization while collaborating with various teams to ensure the effectiveness of implemented solutions.

Responsibilities

  • Engage in industry-leading bot mitigation techniques and deep traffic analysis.
  • Build partnerships across multiple internal organizations with product and engineering teams.
  • Design and implement edge and down stack solutions for bot mitigation and identity protection.
  • Develop counter strategies for malicious scanners and credential stuffing.
  • Create operational tooling and automation against APIs for WAF configuration changes.
  • Implement edge and origin bot mitigation, anti-fraud measures, and load-shedding to protect critical infrastructure.
  • Ideate solutions for detecting and mitigating emerging bot-related threat vectors.
  • Respond to production incidents and partner with Operations/ERC/Engineering teams to mitigate malicious traffic.

Requirements

  • 5 or more years of experience in DevSecOps or software development.
  • Proficiency with working from GNU shell environments (git, curl, jq/yq, sed/awk/grep parsing, pipes, and redirection, ssh/scp/rsync, OpenSSL, gpg).
  • Experience with scripting languages such as shell/bash, ruby, javascript, and python.
  • Familiarity with WAF technologies (Akamai, AWS Cloudfront, Azure Application Gateway, Fastly, Citrix, F5, Imperva, Barracuda, ModSecurity, Snort, Owasp).
  • Knowledge of logging/monitoring platforms for analysis (Splunk, ELK/Kibana, Dynatrace, Akamai Luna Security Center, Graphite/Grafana).
  • Deep understanding of web technologies (REST, CORS, CDN Caching, Cloud ELB tiers and scaling, TCP/IP, AJAX, Certs, Ciphers).

Benefits

  • Attractive pay rate
  • Flexible working conditions

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service