Resident Engineer Cloudflare

• Design, implement, and manage security policies across Cloudflare to protect web applications and APIs.
• Optimize and enhance CDN performance, security configurations, and traffic management to ensure resilience against cyber threats.
• Monitor and respond to security incidents, mitigate DDoS attacks, and fine-tune WAF (Web Application Firewall) rules to safeguard digital assets.
• Collaborate with IT, DevOps, and Security teams to enforce best practices in web security, zero-trust networking, and identity protection.
• Analyze traffic patterns and system logs to detect anomalies, prevent service disruptions, and improve threat intelligence.
• Develop and automate security configurations, leveraging infrastructure-as-code tools and scripting for scalability and efficiency.
• Ensure compliance with regulatory and security standards by implementing robust access controls, encryption, and incident response mechanisms.
• Provide technical guidance and mentorship to junior engineers and cross-functional teams on CDN security best practices.
• Document security configurations, incident responses, and operational workflows, ensuring clear and up-to-date reference materials.
• Qualifications:
• Bachelor's degree in Cybersecurity, Computer Science, or related field (or equivalent experience).
• 7 years of experience in security engineering, CDN security, or network security within enterprise environments.
• Expertise in Cloudflare, including WAF configuration, DDoS mitigation, and security policy enforcement.
• Strong networking knowledge (TCP/IP, DNS, HTTP/HTTPS, TLS, BGP, etc.) with a focus on CDN performance and security.
• Experience with scripting and automation (Python, Bash, Terraform, or Ansible) for CDN security configuration management.
• Hands-on experience with security monitoring tools (SIEM, IDS/IPS, Splunk, etc.) and threat intelligence platforms.
• Proven ability to mitigate web application attacks, secure APIs, and implement zero-trust security principles.
• Strong analytical and troubleshooting skills, with the ability to identify, diagnose, and resolve CDN and security-related issues.
• Excellent communication skills, capable of working in cross-functional teams and presenting security insights to stakeholders.
• Preferred Qualifications:
• Security certifications (e.g., CISSP, CEH, GIAC, CCSP).
• Experience with Infrastructure as Code (IaC) and cloud security tools (AWS, Azure, Google Cloud Platform).
• Knowledge of load balancing, edge computing, and content caching strategies.
• Familiarity with DevSecOps practices and CI/CD security integration.

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.