Job Description

Implement and maintain network security policies, firewalls, and access controls . Monitor network traffic for anomalies, volumetric spikes, and security breaches . Utilize Akamai Security Operations Command Center (SOCC) for real-time threat intelligence and alerting. Conduct vulnerability assessments and penetration testing to identify risks. 2. DDoS Attack Mitigation (L3/L7Protection) Identify and mitigate L3 volumetric attacks (TCP SYN floods, UDP floods, ICMP floods, amplification attacks). Mitigate L7 application-layer attacks targeting APIs, HTTP/S endpoints, and critical services. Implement traffic scrubbing, geo-blocking, rate limiting, and ACLs for DDoS prevention. Work with ISPs and enterprise clients to counter large-scale network attacks. 3. Web Application Firewall (WAF)Management Configure, tune, and optimize Akamai WAF to block application-layer threats. Monitor and mitigate OWASP Top 10 vulnerabilities (SQL Injection, XSS, CSRF, etc.). Perform log analysis and security rule updates to adapt to evolving threats. 4. Microsegmentation (Guardicore) Zero Trust Security Implement network microsegmentation using Akamai Guardicore to restrict lateral movement. Design and manage zero-trust security architectures for enterprise environments. Continuously optimize segmentation policies to enhance network isolation and compliance . 5. Incident Response SecurityOptimization Develop and execute incident response plans for DDoS, WAF, and network security breaches. Conduct root cause analysis (RCA) and forensic investigations after security incidents. Create security reports, dashboards, and threat intelligence briefs for stakeholders. Improve network and application security policies based on lessons learned. Required Skills Experience: 5+ years of experience in network security, DDoS mitigation, and WAF administration . Hands-on expertise with Akamai L3/L7 DDoS, Akamai WAF, and Guardicore Microsegmentation . Strong understanding of network protocols (TCP/IP, HTTP/S, DNS, BGP, SSL/TLS, IPSec, etc.) . Experience with firewalls (Palo Alto, Cisco ASA, Fortinet, Check Point) and IDS/IPS solutions . Proficiency in threat intelligence, traffic analysis, and SIEM integration (e.g., Splunk, QRadar). Hands-on experience with security automation (Python, Bash, PowerShell, Terraform, Ansible) . Strong knowledge of incident response frameworks and compliance standards (ISO 27001, NIST, PCI-DSS, GDPR, etc.) .