Fidelity TalentSource is your destination for discovering your next temporary role at Fidelity Investments. We are currently sourcing for a Cyber Security Analyst to work in the Cyber Security Business unit in Westlake, TX!

PRINCIPAL CYBERSECURITY EDGE SECURITY OPS

The job involves performing functions related to Network and Perimeter specialized Security Engineers including Web Application Firewall, Email Security, , Network and cloud security Cyber Incident Response. Looking for an energetic, hard charging individual able to keep up in an exciting and fast-moving security operations team that is engaged in several high-profile security projects to enhance Fidelity’s security posture. The candidate will be immersed in a quick changing environment in a very rapid changing threat landscape, working with numerous security experts. The qualified candidate must be adaptable and able to work in a fast-paced environment where learning new skills and understanding new system architectures quickly is a key to success.

THE SKILLS YOU BRING

• Candidates with 7 to 9 years of security experience are preferred, particularly those who have worked in corporate settings.
• Mandatory is WAF Operations and E Mail Security is Secondary.
• Security experience with any WAF provider, API definitions, custom rules, writing bot management rules and analyzing traffic logs.
• Proven experience troubleshooting and simulating HTTP client requests (e.g., curl, postman, HAR file analysis).
• Strong understanding of core networking concepts (e.g. – TCP/IP, DNS, HTTP, proxy, load-balancing, etc.).
• Functional experience with Splunk, SIEM, or other log aggregation & analysis technologies.
• Experience with cloud solutions such as AWS or other IaaS/PaaS/SaaS environments.
• Ability to interact with both technical and non-technical staff, including management and executives, with experience articulating technical material in business terms.
• Functional understanding of network controls and policies to stop cyber threats.
• Familiarity with external facing security controls that can stop external attacks that may occur: such as WAF tuning, Bot management, API protection, network policy governance, troubleshooting, and incident response.
• Familiarity with criminal activities and the attacks that may occur in each layer of the OSI model.
• Ability to make information security risk determinations based on intelligence analysis.
• Understanding cyber threats, malicious cyber threat actor motivations, and capabilities relevant to regions of interest.