DevSecOps Web Application Security 80%-100% (f/m/d)

Stellenbeschreibung

Aufgaben

• Operate the existing Web Application Firewall (WAF) and Client Identity and Access Management Solution (CIAM) infrastructure together with our team of IAM and WAF engineers
• Collaborate with various stakeholders globally to onboard new web applications to the global CIAM platform
• Review new or changed requirements and assess their feasibility as well as their impact on the surrounding systems, standards and guidelines
• Troubleshoot issues as part of the 2nd and 3rd level support organization and take part in the on-call duty rotation
• Enhance the automation and scalability of the WAF and CIAM infrastructure
• Continuously improve the overall service reliability, security, performance and monitoring of the WAF / CIAM infrastructure

Anforderungen

• Four or more years of experience with operating Identity and Access Management or Web Application Firewall solutions such as Nevis, F5, Airlock, Cloudflare or open-source alternatives such as ModSecurity
• Alternatively five or more years in software development (Java, Spring Boot, React, Typescript)
• Profound understanding of security best practices of web applications and APIs
• Proven experience with implementation of authentication and federation mechanisms such as SAML, OAuth, OIDC and FIDO
• Solid foundation in networking fundamentals with advanced understanding of internet protocol suite (TCP, DNS, HTTP, TLS, etc.)
• Strong troubleshooting and structured problem-solving skills
• Good understanding of Linux operating systems and its command line tools
• Experience with containerization technologies and automation capabilities is of advantage