DevSecOps Web Application Security 80%-100% (f/m/d)

Job description

DevSecOps Web Application Security 80%-100% (f/m/d)

Tasks

• Design, maintenance, and continuous improvement of authentication flows and increased protection
• Providing a seamless desktop and mobile login experience for our customers
• Operation of the existing web application firewall (WAF) and client identity and access management solution (CIAM) infrastructure together with our team of IAM and WAF engineers
• Collaborating with various stakeholders worldwide to upload new web applications to the global CIAM platform
• Reviewing new or changed requirements and assessing their feasibility and their impact on surrounding systems, standards and guidelines
• Troubleshooting as part of the 2nd and 3rd level support organization and participation in the on-call duty rotation
• Improving the automation and scalability of the WAF and CIAM infrastructure
• Continuous improvement of overall service reliability, security, performance and monitoring of WAF / CIAM infrastructure

Requirements

• Four or more years of experience operating identity and access management or web application firewall solutions such as Nevis, F5, Airlock, Cloudflare, or open-source alternatives such as ModSecurity
• Alternatively, five or more years of experience in software development (Java, Spring Boot, React, Typescript)
• Sound understanding of security best practices for web applications and APIs
• Proven experience with the implementation of authentication and federation mechanisms such as SAML, OAuth, OIDC, and FIDO
• Solid foundation in networking fundamentals with advanced understanding of internet protocol suite (TCP, DNS, HTTP, TLS, etc.)
• Strong troubleshooting and structured problem solving skills
• Good understanding of Linux operating systems and their command line tools
• Experience with containerization technologies and automation skills is an advantage.

We offer

No explicit benefits mentioned.