WAF Engineer, Cyber Defense Operations
Pasay, PH, 1300
Applications have closed
Royal Caribbean Group
POSITION SUMMARY
The Cyber Defense Operations (CDO) Team is responsible for identifying and managing cyber risks and leading operational remediation projects for both ship and shore. For ships, the focus is to reduce risk to passenger, crew, and RCCL shipboard assets. The goal of the CDO Program is to provide cybersecurity architectural and engineering guidance on projects and strategies driven by shoreside business, marine operations, newbuild, and shipboard IT organizations to appropriately manage operational, regulatory, and safety risks as well as optimizing investments by reducing future remediation efforts.
The CDO WAF Engineer helps drive the execution of the CDO strategy and program initiatives at RCL. The role will partner with subject matter experts, peers and leaders across RCL shore and shipboard lines of business regarding cyber risks. The role will be an individual contributor providing cyber risk management and assurance expertise so that websites supporting RCL environments have been implemented and maintained, adhering to cybersecurity guidelines, and corporate information security standards. This position will assist the CDO manager by establishing WAF security baselines. This position will also help influence Digital, marketing, and sales areas to raise awareness of the cybersecurity website risk and their role in ensuring the overall safety of our brands that ultimately can impact passengers, crew, shoreside systems and maritime IT/OT/ET systems.
ESSENTIAL DUTIES AND RESPONSIBILITIES:
- Manage and maintain the WAF rulesets for RCL websites
- Publish a default OWASP top 10 WAF policy that all new websites must pass before being published to the Internet
- Responsible for ensuring CDO WAF runbook’s are updated and reviewed annually
- Assist CDO leadership with the development and collection of accurate WAF metrics
- Participate in planned normal call rotations and also 24/7 on-call rotations to resolve critical issues
- Change Management - Ensure that outages & change requests are correctly documented, prioritized, and closed
- Review and understand complex cyber guidelines (NIST) and regulations such as PCI, SOX, BIMCO Cybersecurity Guidelines for Ships, U.S. Coast Guard security requirements, and International Maritime Organization (IMO)
- Contribute with a high degree of self-sufficiency and resourcefulness on individual and departmental performance objectives
- High degree of motivation to maintain technical skills and cybersecurity knowledge relevant by seeking self-development opportunities such as industry certifications, investing time to learn new skills, and networking with peers in the security industry
Opportunities:
- Assist with Other CDO platforms that protect IT, and OT maritime cybersecurity technology
- Leverage information security activities and technologies to raise cyber situational awareness and protection
- Actively engage in liaison activities with industry associations, peer institutions, regulatory and contractual agencies/organizations, and IS information-sharing communities
QUALIFICATIONS:
- Bachelor’s degree or equivalent industry experience
- 4+ years of experience in Information Security
- 2+ years of experience with WAF platforms
- Experience managing, monitoring and tuning Web Application Firewalls for critical web applications
- Knowledge of Client Network configurations to ensure applications are configured to appropriately flow through the CDN platform ensuring application traffic flows appropriately to the application origins
- Previous experience using Burp Suite is a plus
- Demonstrated ability to perform independent analysis of complex problems
- Broad IT knowledge, including hardware, virtualization, networking, architecture, common protocols, files systems and operating systems
- An ability to communicate complex technical issues to English-speakers from many cultures
- Must have competent verbal and written communication abilities; interpersonal collaborative skills; and the ability to communicate IS and risk-related concepts to technical and non-technical audiences
- Ability to learn methodologies, tools, best practices and processes within specific areas of responsibility
- Decision-making, reporting, communication, and skills
- Prior experience with CMDB, Proxy, firewalls, or EDR systems is a plus
- Industry certifications are a plus
Knowledge and Skills:
- Demonstrates organizational skills and time management
- Ability to manage multiple tasks / projects while ensuring deadlines are met
- Displays sound judgment with a high level of integrity, ethics and ability to calmly, diplomatically and effectively deal with stressful situations
- Able to formulate, communicate exceptions/findings and technical solutions
- Demonstrate a degree of creativity with adept analytical and problem solving skills
- Ability to identify remediation activities based on risk to the overall enterprise
Work Environment:
- May require travel (domestic and international) to perform shipboard cybersecurity work.
- May require working United States business hours
- Position is based in Manila, Philippines
#LI-PG1
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Burp Suite CDN Cyber defense EDR Firewalls Monitoring NIST OWASP Risk management SOX Strategy
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Principal Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Product Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Staff Security Engineer jobs
- Open Senior Information Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Chief Information Security Officer jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open IT Security Analyst jobs
- Open Consultant SOC / CERT H/F jobs
- Open Cybersecurity Consultant jobs
- Open Senior Information Security Engineer jobs
- Open Security Specialist jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Cybersecurity Specialist jobs
- Open Security Researcher jobs
- Open IT Security Engineer jobs
- Open Sr. Security Engineer jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open CISA-related jobs
- Open SaaS-related jobs
- Open Analytics-related jobs
- Open Threat intelligence-related jobs
- Open IAM-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open Java-related jobs
- Open Malware-related jobs
- Open Security Clearance-related jobs
- Open DevOps-related jobs
- Open IDS-related jobs
- Open Forensics-related jobs
- Open CEH-related jobs
- Open EDR-related jobs
- Open Kubernetes-related jobs