Cyber Security Engineer

Cyber Security Engineer

Full-time, Permanent

Hybrid

EMEA Region

The successful candidate will be based in one of our EMEA offices, either in #Amsterdam, #Dublin, #Luxembourg, #London.

What You Will Do:

• Provide expertise in the Application Security areas of Web Application Security Services, API Security and Application
• Security Testing.
• Developing Policies to protect web application and API’s from malicious payload aCacks, provide virtual patching
• capabilities and validation with Security Testing.
• Assist in developing an automated security framework for robust deployment tools and processes, leveraging various
• scripting languages and open-source solutions.
• Collaborating with all stakeholders in managing and improving Application Security posture of CSC Applications

What You Will Bring:

• Experience in building the F5 WAF, API Security, BOT protection, DOS/DDOS protection policies and extending them
• to hybrid cloud environment -AWS and Azure environment.
• Familiarity with DevSecOps ecosystem: Terraform, Ansible, GitHub, Jenkins, Azure DevOps, SAST, DAST & SCA
• As a Application Security Engineer bring in the expertise to address risks and manage day to day BAU operations in
• Application Security and escalating/updating to Application Security Lead/Manager in critical urgent task and
• scenarios
• Knowledge of Cloud & Kubernetes Resource Security, Secure Network and Architecture, SDLC standard and policies.
• Familiarity with Web App Protection AWS and Azure App Protection Policy, Configuration, and Security Management
• tools
• Expertise in Programming languages Python, NodeJS, SQL query and Vulnerable Code remediation.
• Provide training and guidance to the development team on secure coding practices.
• Stay up-to-date with the latest application security threats and trends.

Required:

• Prior experience (2+ years) in an Application Security or related position.
• Proficiency in designing, implementing, and maintaining effective security policies for web applications using WAF
• technologies.
• Experience coordinating and performing vulnerability assessments using automated and manual tools.
• Ability to review and analyse WAF logs to detect and respond to security incidents promptly.
• Ability to review and analyse vulnerability data to identify security risks to the organization's network, infrastructure,
• and application's and determine any reported vulnerabilities that are false positives.
• Strong experience with BI Design and Development.
• Familiarity with Information Security frameworks/standards (i.e. CIS, NIST, RFC2196, etc.).
• Experience in File upload scan technology like Metadefender.
• Familiarity with common security libraries, security controls, and common security flaws.

Other Applica9on Security Engineer Role requirement for CSC:

• Manage security integration into the SDLC process at CSC.
• Help evolve CSC’s application security functions and services.
• Responsible for Security bug intake and remediation process for CSC.
• Identify security exposures and develop mitigation plans.
• Identify, report and fix technical debt.
• Assist Manager of Application Security on all application security activities.
• Become a representative for the CSC Information Security program.
• Be productive and participate in security initiatives with minimal supervision.
• Becomes a subject maCer expert for security solutions within the CSC plahorm, knowledge of SANS 25 and Owasp Top 10.
• Use the tools and technologies used throughout CSC InfoSec.
• Own and document medium/large epics and follow through until completion.
• Present security solutions to a larger CSC audience.
• Troubleshoot issues and performance boClenecks.
• Follow Security best practices
• Strong foundation in core information security principles and goals.
• Proven expertise in enterprise security solutions.
• Knowledge of common and emerging security threats.
• In-depth knowledge of security best practices.
• Exceptional analytical aptitude and attention to detail.
• Excellent communication skills.
• Ability to explain complex security topics in simple language.
• Fast learner / a strong willingness to learn.
• Good team player who is self-motivated and well organized.

At CSC®, we’re always looking ahead, finding ways to improve and anticipate the future needs of our customers. Curiosity fuels our innovation and productivity drives our results. This proactive mindset has helped us adapt and create solutions that have enabled businesses to run smoother and smarter for more than 120 years.

CSC is committed to attracting, developing, and retaining talented people whose personal values align with ours. We empower our employees to bring the right solutions to market to meet customer demand. That is why we are the premier provider of global solutions for more than 180,000 businesses.

• CSC is a great place to work with smart and dedicated people.

• We have been voted a Top Workplace every year since 2006.

• We offer challenging work and career opportunities. Most positions are filled with internal moves and employee referrals.

• Employees are eligible for success sharing, bonus, or commission plans based on role and individual performance.

• CSC offers a competitive and comprehensive benefits package as part of your Total Rewards that includes annual leave, tuition reimbursement, employee referral bonuses, and more.

When applying for this role, please note that additional background checks may be carried out and an original of your criminal record (n*3) may be requested as evidence of integrity justified with regard to the specific needs of the position to be filled.