It Lead, Waf Engineering & Operations

Company Description

At Brightspeed, we are reimagining how people live, work, play and connect by providing fast, reliable internet connections and an awesome customer experience in twenty states throughout the Midwest and South.

Backed by funds managed by Apollo Global Management, our vision is to accelerate the upgrade of copper to fiber optic technologies, bringing faster and more reliable internet service to many rural markets traditionally underserved by broadband providers, while delivering best-in-class customer experience.  

Be a part of the team that will make this vision a reality….designing and building a world class fiber network and creating a customer experience second to none.

Check us out on the web!  

Job Description

We are seeking an experienced and highly motivated IT Lead for WAF Engineering & Operations to join our IT Security Operations team. In this role, you will report to the IT Manager of Network Security Operations. You will be responsible for leading the design, implementation, maintenance, and optimization of our Web Application Firewall (WAF) infrastructure. You will work closely with development, operations, and enterprise security teams to ensure the protection of our web applications from evolving cyber threats. By joining our team, you will have the opportunity to work with cutting-edge technologies, contribute to the security of our critical web applications, and grow your skills in a fast-paced and collaborative environment. If you are passionate about web application security and thrive in a leadership role, we encourage you to apply.

As IT Lead, WAF Engineering & Operations, your duties and responsibilities will include:

• Lead the engineering, maintenance, and tuning of WAF solutions to protect web applications from OWASP Top 10 vulnerabilities, zero-day exploits, and other threats
• Collaborate with development teams to implement security controls and integrate WAF with CI/CD pipelines using DevOps automation tools like GitHub, Azure DevOps, or GCP
• Design and implement load balancing and edge security solutions to ensure high availability and performance of web applications
• Assist in managing internal and external PKI infrastructure, including certificate lifecycle management, troubleshooting, and automation
• Assist in managing internal and external DNS infrastructure, ensuring proper configuration, security, and troubleshooting
• Develop and maintain DDoS protection strategies, including detection, mitigation, and reporting
• Manage relationships with Managed Service Providers (MSPs) and third-party vendors to ensure SLAs are met and security posture is maintained
• Stay current with industry best practices and frameworks such as OWASP, MITRE ATT&CK, SANS Top 20, NIST, and CIS Controls
• Collaborate with application teams to secure APIs and integrate WAF with API Gateways
• Develop and implement security strategies for cloud networks, including segmentation, access control, and monitoring

Qualifications

WHAT IT TAKES TO CATCH OUR EYE:

• Bachelor’s degree in computer science, cybersecurity, or related field (or equivalent experience)
• 7+ years of experience in information security, with 5+ years focused on WAF and edge security
• Deep understanding of modern web architectures, frameworks, and vulnerabilities
• Hands-on experience configuring and optimizing enterprise WAF solutions (F5, Imperva, Cloudflare, AWS WAF, etc)
• Strong experience with DevOps practices and tools (GitHub, Azure DevOps, Terraform, Ansible, etc)
• Knowledge of PKI, DNS, and DDoS protection technologies and best practices
• Familiarity with cloud security controls and architectures (AWS, Azure, GCP)
• Excellent communication and leadership skills, with the ability to collaborate across teams

BONUS POINTS FOR:

• Relevant certifications preferred (CISSP, CSSLP, GWAPT, CCSP, etc.)

#LI-SS1

Additional Information

WHY JOIN US?

We aspire to contemporary ways of working.

Recognized as a Top Workplace by the Charlotte Observer, Brightspeed HQ is located on the 7th floor of the new Vantage South End - East Tower in Charlotte, NC. We prioritize hiring talent in the Charlotte area, whenever possible, to make it a truly vibrant destination for our hybrid workforce. At Brightspeed, we have roles that are designated as remote, hybrid, office or field-based, depending on the position, business needs and individual circumstances. We also invest in technology that enables our entire team to stay connected. Why? Because Brightspeed recognizes the value of finding the best talent for the job, wherever they may be.

We offer competitive compensation and comprehensive benefits.

Our benefits and paid time off programs reflect our underlying belief in promoting overall wellness through physical, emotional and financial health. Brightspeed offers a comprehensive benefit program, including competitive medical, dental, vision, and life insurance; an employee assistance program; a 401K plan with company match and a host of voluntary benefits. 

Diversity, equity and inclusion are at the center of our grounding belief in Being Real. 

When we bring our authentic selves to work, everyone is better as a result. A diverse team helps us be fierce advocates for more accessible, inclusive and high-quality internet, because we believe doing so promotes equity in the communities we serve.

Brightspeed is an Equal Opportunity Employer/Veterans/Disabled

For all applicants, please take a moment to review our Privacy Notices:  

• Brightspeed’s Privacy Notice for California Residents
• Brightspeed’s Privacy Notice