Security Solutions Architect

It takes powerful technology to connect our brands and partners with an audience of nearly 900 million. Whether you’re looking to write mobile app code, engineer the servers behind our massive ad tech stacks, or develop algorithms to help us process trillions of data points a day, what you do here will have a huge impact on our business—and the world. Want in?

Edgecast part of Yahoo Platform is looking for an experienced Security Solutions Architect who will act as a trusted advisor for key clients and provide technical solutions, guidance and support for managing their security posture through Edgecast Content Delivery Network security solutions. The position requires broad experience in securing web properties from cyber threats, DDoS, web application exploits and malicious web bots.

• 
  
• Responsible for the definition, design, development and successful and timely completion of Security Solutions based on customer’s requirements.
  
• Actively work with customers for Managed Cloud Security Services
  
• Conduct Managed Onboarding for Web Application Firewall (WAF) services
  
• Assess and analyze web applications logs/dashboard and web traffic to help identify threats and potential vulnerabilities
  
• Create and implement custom web application firewall rules
  
• Assist customers with DDoS and threat mitigation
  
• Partner with Business Support, Sales, Engineering, Product Development and Customer Care to resolve issues that arise during customer trials, integrations or post-implementation support
  
• Accurately scope implementation timelines for integration
  
• Identify technical risks and provide mitigation strategies
  
• Review configurations with other Professional Service team members to ensure quality and accuracy to requirements
  
• Drive the security strategy process for the Professional Services Group. This will include coordinating strategy team sessions, developing strategic plans, proposals and options and working across the broader organization to gather input and feedback.
  
• Support internal teams with RFPs and other commercial requirements.
  
• Some travel in support of customer meetings, quarterly reviews and other customer facing requirements may be needed.
  

• 
  
• Bachelor’s degree or equivalent in Computer Science / engineering discipline
  
• Solid demonstrated experience in technology industry
  
• Experience with IT solution delivery / internet related technologies
  
• Worked with internet and web application security
  
• Security solution delivery experience, preferably within a consulting organization
  
• Proven experience of prior customer-facing experience with strong written and verbal communication skills
  
• Experience writing/decoding exploit, vulnerability, and attack detection signatures
  
• Strong understanding of common types of web attacks, their attack vectors, how to detect and mitigate them.
  
• Understanding of content delivery networks, website and application delivery, HTTP, TCP/IP and DNS routing.
  
• Knowledge and experience with Content Delivery Networks, web application security, web application firewall (WAF) concepts and technologies, identity management, web fraud, automated web threats and/or related products
  
• Exposure to web-related programming or scripting languages
  
• Ability to creatively solve complex technical issues and customer needs involving multiple stakeholders.
  
• Passionate and knowledgeable about the current security industry and trends with experience working in internet, web security, identity management and web fraud
  
• Passion for security
  

• 
  
• In depth understanding of HTTP, SSL/TLS protocols and ciphers and public key encryption
  
• Experience with network troubleshooting using tcpdump, wireshark etc
  
• Knowledge of web programming (HTML, javascript, ASP, JSP)
  
• Experience with Python or other scripting languages
  
• Strong skills on WAF management, preferably ModSecurity
  
• Familiarization with the current OWASP Top 10
  
• Understanding of modern technologies used to detect and deter attacks, malware and vulnerabilities and protect assets
  
• Understanding of modern network and cloud technologies (AWS / Azure / Google Cloud )
  
• An industry-recognized security certification (CISSP, CISA, Security+, etc.).
  

• 
  
• Highly motivated and self-driven
  
• Possesses excellent communication and people skills: written, verbal, presentation, and interpersonal
  
• A forward-thinker, who operates with urgency, focus, discipline, and minimal supervision
  
• Ability to learn new technologies quickly and articulate best practices to stakeholders
  
• Experience working in a fast-paced startup environment is highly desired
  
• Ethical, fair and of high integrity
  

Yahoo is proud to be an equal opportunity workplace. All qualified applicants will receive consideration for employment without regard to, and will not be discriminated against based on age, race, gender, color, religion, national origin, sexual orientation, gender identity, veteran status, disability or any other protected category. Yahoo is dedicated to providing an accessible environment for all candidates during the application process and for employees during their employment. If you need accessibility assistance and/or a reasonable accommodation due to a disability, please submit a request via the Accommodation Request Form ( ) or call 4 Requests and calls received for non-disability related issues, such as following up on an application, will not receive a response. xcfaprz
US Only: Please be aware that Yahoo requires all employees entering a U.S. Yahoo office and/or attending a company event (including client events) are required to be vaccinated for COVID-19. This position will require the successful candidate to obtain and show proof of a vaccination to enter a U.S. Yahoo office and/or attending a company event (including client events). Yahoo is an equal opportunity employer, and will provide reasonable accommodation to those individuals who are unable to be vaccinated consistent with federal, state, and local law.