~~~Web Security Specialist at Alert Logic~~~
The primary responsibility of the Web Security Specialist is to ensure the highest level of web-based application protection without impacting availability of services for legitimate users. This includes responding to and escalating blocked requests, working directly with the customer or partner to determine the legitimacy of blocked requests, tuning the Web Application Firewall (WAF) to allow valid requests, and augmenting the WAF to provide coverage for previously undetected attacks. Additional responsibilities include conducting manual and automated vulnerability scans to assess the effectiveness of recently created or modified rules. A comprehensive list of analyst activities is available in section 2.2 regarding service scenarios.
Alert customers on activity blocked by the WAF
Work directly with customer to identify and allow legitimate activity
Escalate web application threat incidents detected by the other means to the client’s attention
Tune WAFs to ensure maximum availability of customer applications while providing coverage for new threats
Verify client protection by conducting assessments of recently applied or modified WAF rules
Meet the expectations of Alert Logic clients in accordance with their Service Level Agreement
Provide customer service experience that exceeds customer expectations
Produce reporting artifacts at customer or auditor’s request
Two years of LAMP administration
Strong familiarity with experience in manual application security testing
Strong familiarity with OWASP Top Ten
Strong familiarity with Regular Expression, HTTP, TLS, XML, and JSON.
Strong working knowledge of MySQL, Oracle, and MSSQL
Exceptional written and verbal communication skills
Exceptional customer service skills
Excellent time management skills
Strong attention to detail
Familiarity with PCI requirements
Must be a fast learner and team player
Alert Logic sits at the nexus of two of the hottest trends in IT: the adoption of cloud technologies and increased security and compliance requirements driven by an increasingly connected world. In a typical month, Alert Logic processes over 100 million security events and store petabytes of data for over 1,300 enterprise customers. We are an established company with a history of almost 10 years, yet maintain a pace, energy and agility that allows us to advance our offerings and technology and preserve a startup-like culture. Our revenues are strong. Our customer base is growing rapidly.