Principal of Application Delivery Security

Job Overview :

LPL’s Security Architecture Engineering organization is looking for a talented professional to join a high-performing organization that is leading Application Delivery Security program. The Principal of Application Delivery Security will be responsible for optimizing the availability of applications delivered across networks. This position will drive strategy for the protection of both on premise and cloud-based systems and data across the organization, ensuring compliance with regulatory standards and industry best practice This position is responsible for the development, implementation and ongoing maintenance including changes to our application delivery capabilities & requirements to address current and potential future threats. We seek a visionary leader who is passionate about application delivery security in the digital age

Responsibilities :

Oversee Web App and API security technologies including WAF, load balancers, API Gateways, DDoS, CDN.

Develop secure solutions utilizing network appliances, such as load balancers, to protect enterprise web applications and APIs from layer 3 / 4 / 7 DDoS attacks.

Develop and maintain custom tools and scripts based for application delivery security requirements.

Conduct proof of concepts to showcase new technologies within the application delivery security domain and provide recommendations for their acceptance.

Perform control / capability gap analysis across both cloud security and app delivery technologies

Investigate and remediate security and operational incidents with application delivery security platforms

Perform authorized penetration and DDoS tests on on-prem and cloud infrastructure and applications to find security vulnerabilities. Design and implement corresponding detection and / or prevention methodologies.

Create remediation and validation strategies for security incidents

Develop capabilities within existing platforms to detect and prevent fraud.

Integrate application delivery security platforms into Enterprise logging solution.

Evaluate and deploy new technologies as needed to mitigate risk and fill security gaps

Develop and enforce security policies and procedures to safeguard sensitive data

Define the enterprise perimeter security strategy to support secure application delivery (WAF, API Gateway, CDN) across private and public cloud hosted workloads

Collaborate with IT and business units to integrate security controls into on premise and cloud services

Influence business objectives and outcomes to ensure InfoSec requirements are met as part of project delivery

Participate in budget planning, forecasting, and reporting

Document application delivery security system playbooks, runbooks and guidelines

Stays informed about the latest enterprise application attack vectors and security trends

What are we looking for?

We want strong collaborators who can deliver a world-class client experience . We are looking for people who thrive in a fast-paced environment , are client-focused , team oriented , and are able to execute in a way that encourages creativity and continuous improvement .

Requirements :

10 years’ experience of hands-on design, configuration, and delivery experience in network security solutions

5 years’ experience collaborating with technical team members, business analysts, and project / program managers to ensure a quality solution is delivered.

4 years’ experience with scripting tools (Curl, Python, Glue, PowerShell) and automation

4 years’ experience with application delivery security platforms (F5 Silverline, Distributed cloud, Cloudflare, Radware)

3 to 5 years of experience with compliance and security standards across the enterprise IT landscape

Preferences :

Bachelor’s or Master’s Degree in computer science, Information Security, or a related field

Professional security management certification, such as CCSP, AWS Certified Solutions Architect, or equivalent

Advanced knowledge of web app and API security related technologies and their functions

Experience with conducting penetration tests on web applications and APIs

Experience with task automation leveraging languages such as PowerShell, python or shell scripting

Pay Range :

143,100.00 - $238,500.00Actual base salary varies based on factors, including but not limited to, relevant skill, prior experience, education, base salary of internal peers, demonstrated performance, and geographic location. Additionally, LPL Total Rewards package is highly competitive, designed to support your success at work, at home, and at play – such as 401K matching, health benefits, employee stock options, paid time off, volunteer time off, and more. Your recruiter will be happy to discuss all that LPL has to offer!

Salary : $143,100 - $238,500