Sr Information Security Engineer-Web App/Akamai

About The Position

Requirements

• 5+ years in InfoSec with hands-on experience in Akamai WAF and bot mitigation.
• Strong understanding of web application security, HTTP protocol behavior, and bot evasion techniques.
• Experience working with cross-functional teams in agile environments.
• Familiarity with CI/CD pipelines, SRE principles, and cloud-native architectures.
• Applies comprehensive knowledge / skill, acts with independence and provides guidance and training to others.
• Maintains systems/services and information security, integrity, compliance and continuity.
• Implements transaction security and computer/network virus protection.
• Ensures the confidentiality, integrity, and availability of information.
• Follows confidentiality procedures, ensuring that restricted information is only shared with approved recipients, that data sharing is done so using approved/secure communication methods, and that data is kept safe and secure at all times.
• Understands, deploys, and manages cloud-based infrastructure and services.
• Creates the rules for requirements and design quality, performs verification activities, and maintains quality control.
• Archives, backs up, and restores data and servers to specified states.
• Creates clear, comprehensive, effective, and user-friendly guides, manuals, narratives, and reports that convey complex technical concepts, using documentation tools to craft structured and visually appealing content that meets the intended purposes.
• Determines and analyzes trends from data that is collected to assist in compiling reports that will help in decision-making.

Nice To Haves

• Acquires, organizes, protects and processes data in order to fulfill business objectives.
• Proficiently uses and troubleshoots a wide range of IT hardware, software, and network systems to ensure optimal performance and user experience.
• Understands and effectively uses standard office equipment and standard software packages to support business processes.
• Understands, evaluates, uses, and engages with digital technology and information, as well as creates and shares digital content, while being aware of essentials like safety, privacy and ethical considerations.

Responsibilities

• Develop and maintain custom WAF rulesets for application-specific protections.
• Monitor WAF logs and analytics to identify false positives, tuning thresholds and exceptions accordingly.
• Conduct regular WAF policy reviews with AppDev and SRE to align with evolving application architectures.
• Integrate WAF alerts into SIEM and incident response workflows.
• Analyze bot traffic using behavioral scoring, fingerprinting, and anomaly detection.
• Lead POCs and production rollouts of Akamai Content Protector and Bot Manager Premier.
• Maintain dashboards and reporting for bot activity, blocked requests, and mitigation effectiveness.
• Act as InfoSec liaison to AppDev and SRE teams for Akamai-related security initiatives.
• Participate in sprint planning and release reviews to ensure WAF and bot protections are considered early.
• Provide security guidance on CDN/ION, Site Shield, FastDNS, and Prolexic configurations.
• Facilitate tabletop exercises and post-incident reviews involving Akamai services.
• Track Akamai security service usage and performance metrics to identify optimization opportunities.
• Coordinate with Akamai account teams and professional services for roadmap alignment and escalations.
• Contribute to enterprise security architecture discussions involving edge security and traffic routing.

Benefits

• Competitive Wages & Paid Time Off
• Stock Purchase Plan & 401k with Employer Contributions Starting Day One
• Medical, Dental, & Vision Insurance with Optional Flexible Spending Account (FSA)
• Team Member Health/Wellbeing Programs
• Tuition Educational Assistance Programs
• Opportunities for Career Growth