Server-Side Request Forgery (SSRF) * Authentication attacks * API abuse * Credential stuffing * Session hijacking * Review application architectures and recommend security improvements. * Partner ...
Server-Side Request Forgery (SSRF) * Authentication attacks * API abuse * Credential stuffing * Session hijacking * Review application architectures and recommend security improvements. * Partner ...
Manager of Software Engineering - Sr AWS/Full Stack Java Developer
Columbus, OH · On-site
$49.50 - $63.75/hr
Strong knowledge of web application security and secure coding practices (for example cross-site scripting, cross-site request forgery, session management, content security policy) and dependency and ...
Manager of Software Engineering - Sr AWS/Full Stack Java Developer
Columbus, OH · On-site
$49.50 - $63.75/hr
Strong knowledge of web application security and secure coding practices (for example cross-site scripting, cross-site request forgery, session management, content security policy) and dependency and ...
Manager of Software Engineering - Sr AWS/Full Stack Java Developer
Columbus, OH · On-site
$49.50 - $63.75/hr
Strong knowledge of web application security and secure coding practices (for example cross-site scripting, cross-site request forgery, session management, content security policy) and dependency and ...
Manager of Software Engineering - Sr AWS/Full Stack Java Developer
Columbus, OH · On-site
$49.50 - $63.75/hr
Strong knowledge of web application security and secure coding practices (for example cross-site scripting, cross-site request forgery, session management, content security policy) and dependency and ...
Manager of Software Engineering - Sr AWS/Full Stack Java Developer
Columbus, OH · On-site
$49.50 - $63.75/hr
Strong knowledge of web application security and secure coding practices (for example cross-site scripting, cross-site request forgery, session management, content security policy) and dependency and ...
Manager of Software Engineering - Sr AWS/Full Stack Java Developer
Columbus, OH · On-site
$49.50 - $63.75/hr
Strong knowledge of web application security and secure coding practices (for example cross-site scripting, cross-site request forgery, session management, content security policy) and dependency and ...
Forgery information
See salary details
$36.1K is the 25th percentile. Wages below this are outliers.
$27.5K - $39.1K
34% of jobs
The median wage is $45.3K / yr.
$39.1K - $50.7K
31% of jobs
$61.5K is the 75th percentile. Wages above this are outliers.
$50.7K - $62.3K
12% of jobs
$62.3K - $73.9K
2% of jobs
$73.9K - $85.5K
7% of jobs
$85.5K - $97K
1% of jobs
$97K - $108.6K
11% of jobs
$108.6K - $120.2K
2% of jobs
$120.2K - $131.8K
0% of jobs
$131.8K - $143.4K
0% of jobs
$143.4K - $155K
1% of jobs
$27.5K
$64K
$155K
How much do forgery jobs pay per year?

Other
Posted 5 days ago
Job description
WHO WE ARE:
Founded in 2007, DTI (Diversified Technology, Inc.) is a successful African American owned IT Consulting/Staffing firm based in Chicago''s Loop.
WHAT WE DO:
We focus on providing delivery, staffing, and supported services such as enterprise integration/implementations including, but not limited to, CRM, EAM, ERP, PMO, and QA. We service clients in SLED (state/local gov''t & education), financial services, fortune, public utility, as well as regularly partnering with Big 4 SI partners.
Location: Columbus, OH (Onsite/Hybrid as required)
Work Location: 290 W Nationwide Blvd, Columbus, OH 43215-2561, United States
Employment Type: Contract (W2 Only)
Client: Public Utility Client
- W2 employment only (No C2C or 1099)
- Experience supporting enterprise cybersecurity environments, preferably within regulated industries such as public utilities, energy, or critical infrastructure.
Position Overview
We are seeking a Senior Security Engineer – Web Application & Network Protection to lead the design, implementation, and support of enterprise web application and network security solutions for a large public utility organization.
This role is responsible for securing internet-facing applications using F5 Distributed Cloud (XC) WAF, API security, bot protection, DDoS mitigation, and enterprise network security technologies including Palo Alto Networks firewalls and secure remote access solutions. The ideal candidate combines expertise in web application security, network security, cloud security, and automation to protect critical enterprise services.
Key ResponsibilitiesWeb Application Security
- Administer and support F5 Distributed Cloud (XC) Web Application Firewall (WAF).
- Design, deploy, and maintain WAF policies, signatures, and security controls.
- Configure and manage:
- API Protection
- Bot Defense
- DDoS Mitigation
- Geolocation Policies
- Rate Limiting
- CAPTCHA Challenges
- Investigate, analyze, and tune WAF false positives.
- Onboard enterprise applications into WAF services.
- Perform WAF policy reviews and continuous optimization.
- Support incident response involving web application attacks.
- Protect enterprise applications against:
- OWASP Top 10 vulnerabilities
- SQL Injection
- Cross-Site Scripting (XSS)
- Cross-Site Request Forgery (CSRF)
- Server-Side Request Forgery (SSRF)
- Authentication attacks
- API abuse
- Credential stuffing
- Session hijacking
- Review application architectures and recommend security improvements.
- Partner with development teams during application onboarding and troubleshooting.
- Administer and support:
- Palo Alto Networks Next-Generation Firewalls (NGFW)
- Prisma Access
- Site-to-Site VPNs
- SSL Decryption
- NAT
- Security Policies
- Network Segmentation
- Troubleshoot DNS, routing, and enterprise network connectivity issues.
- Participate in production support and on-call rotations.
- Develop automation using:
- Python
- REST APIs
- Terraform
- Git
- Build dashboards and reporting for security posture and operational metrics.
- Automate repetitive security operations and administrative tasks.
- Participate in:
- Incident Response
- Threat Hunting
- Security Assessments
- Vulnerability Management
- Root Cause Analysis
- Security Architecture Reviews
Required Qualifications
- Bachelor''s degree in Cybersecurity, Computer Science, Information Technology, or a related field (or equivalent experience).
- 6+ years of experience in cybersecurity engineering, web application security, or network security.
- Hands-on experience administering F5 Distributed Cloud (XC) WAF or enterprise WAF platforms.
- Strong experience with Palo Alto Networks NGFW and Prisma Access.
- Experience implementing API Security, Bot Protection, and DDoS mitigation.
- Strong understanding of OWASP Top 10 and secure application design principles.
- Experience troubleshooting enterprise networking, VPNs, DNS, NAT, routing, and firewall policies.
- Experience with Python scripting, REST APIs, Git, and Terraform.
- Excellent analytical, troubleshooting, and communication skills.
Preferred Qualifications
Experience with:
- Bot Management
- API Security
- DDoS Protection
- CDN Technologies
- DevSecOps
- CI/CD Pipelines
- Kubernetes
- Containers
- Terraform
- OWASP Foundation Certifications
- ISC2 CISSP
- GIAC Certifications
- F5 Certifications
- Palo Alto Networks Certifications
What We''re Looking For
- Strong expertise in enterprise web application and network security.
- Experience securing mission-critical internet-facing applications.
- Ability to automate security operations and improve operational efficiency.
- Excellent collaboration skills with infrastructure, development, and security teams.
- Strong problem-solving abilities and experience working in regulated enterprise environments.
Pay rate:
Please click on the link below for our company benefits
DTI is an Equal Opportunity Employer. We do not discriminate based on race, color, religion, sex, gender identity, sexual orientation, national origin, ancestry, age, disability, marital status, veteran status, or any other protected characteristic under Illinois state or federal law. All qualified applicants are encouraged to apply, and employment decisions are based solely on merit, qualifications, and business needs.