Information Security Specialist

AmdocsSt. Louis, MO
10hOnsite

About The Position

Amdocs helps the world’s leading communications and media companies deliver exceptional customer experiences through reliable, efficient, and secure operations at scale. We provide software products and services that embed intelligence into how work runs across business, IT, and network domains –delivering measurable outcomes in customer experience, network performance, cloud modernization, and revenue growth. With our talented people, and more than forty years of experience running mission-critical systems around the globe, Amdocs runs billions of transactions daily. Our technology is relied on every day, connecting people worldwide and advancing a more inclusive, connected world. Together, we help those who shape the future to make it amazing. Amdocs is listed on the NASDAQ Global Select Market (NASDAQ: DOX) and reported revenue of $4.53 billion in fiscal 2025. For more information, visit www.amdocs.com At Amdocs, our mission is to empower our employees to 'Live Amazing, Do Amazing' every day. We believe in creating a workplace where you not only excel professionally but also thrive personally. Through our culture of making a real impact, fostering growth, embracing flexibility, and building connections, we enable them to live meaningful lives while making a difference in the world. In one sentence We’re seeking a hands‑on Network Security Specialist to engineer, operate, and continuously improve our perimeter and edge security stack – who will be responsible for the configuration, fine‑tuning, lifecycle management, security monitoring, incident response, and compliance readiness of network security controls including Cisco & Check Point Firewalls, Cisco & Palo Alto IPS, Tufin Firewall Analyzer, Imperva CDN/WAF, F5 ASM WAF, DDoS protection services, CrowdStrike, and Arcsight SIEM integrations in a hybrid environment. The ideal candidate brings strong operational rigor, a “measure‑twice‑cut‑once” change mindset, and the ability to work collaboratively as a team with cross-functional partners across Security, Networking, and Application teams to reduce risk while enabling the business in globally distributed locations.

Requirements

  • 8+ years in network security engineering/operations or related roles.
  • Hands‑on expertise with firewalls and IPS (policy design, advanced troubleshooting, VPNs, packet capture/analysis).
  • Practical experience with F5 ASM and/or Imperva WAF/CDN policy creation, tuning, and attack mitigation.
  • Experience managing DDoS protection (cloud scrubbers, BGP/RTBH, or appliance‑based).
  • Experience with Tufin Firewall Analyzer (SecureTrack/SecureChange) for rule governance and compliance workflows.
  • Strong understanding of TCP/IP, routing, switching, TLS/SSL, DNS, HTTP/HTTPS, and CDN architectures.
  • SIEM log analysis and detection triage; ability to write queries and create dashboards.
  • Demonstrated incident response experience focused on network perimeter and web threats.
  • Working knowledge of PCI DSS, SOC 2, and ISO 27001 control requirements relevant to network security.
  • Scripting/automation proficiency (preferably Python; YAML/Ansible a plus).
  • Bachelor’s degree in Computer Science, Information Security, or equivalent experience.
  • Excellent communication skills with the ability to translate technical risks for non‑technical stakeholders.

Nice To Haves

  • Certifications: CCNP Security, CCSA/CCSE, F5‑ASM, Imperva, Tufin TCP, CISSP, GCIH/GCIA (or equivalents).

Responsibilities

  • Design, implement, and harden policies for Cisco/Check Point firewalls; manage access control, NAT, VPN and advanced threat features.
  • Configure and optimize IPS signatures and profiles (Cisco/Check Point/Palo Alto) to maximize detection while minimizing false positives.
  • Deploy, fine‑tune, and maintain F5 ASM and Imperva WAF/CDN policies, bot management, rate limiting, and positive security models for web applications and APIs.
  • Maintain DDoS protection configurations including runbooks, thresholds, and upstream coordination with providers.
  • Use Tufin Firewall Analyzer (SecureTrack/SecureChange) for rule lifecycle, policy optimization, risk analysis, recertification, and change governance.
  • Integrate CrowdStrike intelligence and detection telemetry with network enforcement points and ArcSight SIEM for correlated detections and automated response where applicable.
  • Own the day‑to‑day monitoring for network security tools; triage alerts, tune rules, and drive continuous reduction of noise.
  • Perform log analysis and correlation via SIEM (ArcSight) to identify threats, campaign patterns, and attacker TTPs.
  • Conduct policy audits and rule hygiene (remove shadowed/unused rules, right‑size overly permissive rules, validate business justifications).
  • Ensure high availability, redundancy, and health of security appliances and services; manage upgrades, patches, and hotfixes with change control discipline.
  • Active participation in an on‑call for high‑severity incidents and maintenance windows (including some after‑hours/weekend work).
  • Lead or support network‑centric incident handling: scoping, containment, eradication, and recovery for web attacks (L7), DDoS, command‑and-control, data exfiltration, and lateral movement.
  • Develop and maintain playbooks/runbooks for common attack scenarios (WAF blocks, IPS hits, DDoS events, suspicious egress, VPN abuse).
  • Produce clear, executive‑ready incident summaries, root-cause analyses, and lessons learned; track corrective actions to closure.
  • Align network security controls and evidence to PCI DSS, SOC 2, and ISO/IEC 27001 requirements (e.g., segmentation, logging, change control, vulnerability management, access reviews).
  • Prepare and provide audit artifacts (policy snapshots, rule reviews, change tickets, testing results) and remediate findings in partnership with control owners.
  • Enforce least privilege and segregation of duties in access and change workflows.
  • Partner with Networking & Application teams to safely enable new business services through secure design reviews and pre‑deployment testing.
  • Automate routine tasks (e.g., rule recertification, object inventory, config backups, compliance evidence pulls) using Python, Ansible, vendor APIs, or Tufin workflows.
  • Maintain accurate documentation (HLD/LLD, diagrams, baselines, standards, and runbooks).

Benefits

  • Opportunity to collaborate globally: You will get to work closely with cross‑functional teams across multiple geographies, gaining exposure to diverse perspectives and innovative ways of problem‑solving.
  • High-impact role: Your work directly contributes to critical business outcomes, making this a position where your contributions are visible and valued.
  • Professional growth: The dynamic nature of the role provides continuous learning opportunities and the chance to expand both technical and leadership skills.
  • Collaborative culture: You’ll be part of a supportive, team‑oriented environment that encourages open communication, knowledge sharing, and mutual success.
© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service