IT Security Analyst Senior

Ampcus Inc. is a certified global provider of a broad range of Technology and Business consulting services. We are in search of a highly motivated candidate to join our talented Team.

Job Title:

IT Security Analyst Senior.

Location:

Atlanta, GA.

• We are seeking a Security Engineer (WAF SME) to join a dynamic security operations function.
• In this role, you will lead day-to-day operations, tuning, and incident response for our Web Application Firewall (WAF) and broader Web Application & API Protection (WAAP) stack-Akamai (primary) and Cloudflare (secondary).
• You will maintain platform stability, drive false-positive reduction, improve protection efficacy against evolving threats, and ensure changes move safely through our standard change processes. You will collaborate closely with SOC/IR, App/Dev, SRE, and Network teams and participate in an on-call rotation for major incidents.

• Performs all procedures necessary to ensure the safety of information systems assets and to protect systems from intentional or inadvertent access or destruction.
• Responds to information security‑related questions and inquiries using established information security tools and procedures.
• Resolves and/or performs follow through to resolve all information security issues and questions. Implements and administers information security controls using software and vendor security systems.

• Executes security controls to prevent hackers from infiltrating company information or jeopardizing programs.
• Researches attempted efforts to compromise security protocol and recommends solutions.
• Maintains security systems and administers security policies to control access to systems.
• Maintains the company's firewall and utilizes applicable encryption methods.
• Creates information security documentation related to work area and completes requests in accordance with company requirements.
• Identifies opportunities and executes plans to improve workflow and understands and quantifies business impacts of those improvements for communication to management.
• Interfaces with user community to understand security needs and implements procedures to accommodate them. Ensures that user community understands and adheres to necessary procedures to maintain security.
• Provides status reports on security matters to develop security risk analysis scenarios and response procedures.
• Performs other related duties as assigned.

• Monitor and action WAF/edge security ticket queues; resolve incidents and service requests with clear, timely communication.
• Triage and respond to Layer 7 events (e.g., bot abuse, credential stuffing, API abuse, SQLi/RCE attempts, L7 DDoS), escalating as needed.
• Provide on‑call support for Sev 1/Sev 2 incidents; collaborate with SOC/IR, SRE, and application owners on containment and recovery.

• Onboard, configure, tune, and optimize Akamai and Cloudflare WAF policies (managed & custom rules, rate limiting, geo/IP/ASN controls, mTLS, headers).
• Manage bot management controls (scoring, allow lists, challenges/JS, behavioral features where available).
• Implement policies for OWASP Top 10, API/WAAP protections, and business logic abuse mitigation.
• Balance security vs. latency/caching; measure impacts and roll out changes safely.

• Execute changes via standard change control (peer review, testing, staged rollout, rollback plans).
• Maintain certificate management, safe DNS/edge updates, and favor policy‑as‑code approaches where possible.
• Provide platform health/status reporting with recommendations to reduce incident volume and downtime.

• Integrate WAF/edge telemetry with SIEM; maintain dashboards for threat trends, false positive rates, coverage, and hygiene.
• Create actionable alerts and runbooks/SOPs to accelerate response and reduce recurrence.

• Partner with SOC/IR to enhance playbooks and Dev/App teams to align policies with application behavior.
• Contribute to internal knowledge base and continuous improvement of control efficacy and resiliency.
• Track emerging…