×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Systems Engineer Network Security

Sr. Security Engineer, WAF

Job in Silver Spring, Montgomery County, Maryland, 20900, USA
Listing for: Warner Bros. Discovery
Full Time position
Listed on 2025-12-12
Job specializations:
  • IT/Tech
    Cybersecurity, Systems Engineer, Network Security
Salary/Wage Range or Industry Benchmark: 125000 - 150000 USD Yearly USD 125000.00 150000.00 YEAR
Job Description & How to Apply Below

Sr. Security Engineer, WAF – Warner Bros. Discovery

Join to apply for the Sr. Security Engineer, WAF role at Warner Bros. Discovery
.

What We Offer

From brilliant creatives to technology trailblazers, WBD offers career‑defining opportunities, thoughtful benefits, and tools to explore and grow into your best self. We support, celebrate, and help you thrive.

Must work a hybrid schedule (3 days onsite) out of our Atlanta, DC, or Silver Spring office.

Your New Role

As a Senior WAF Security Engineer – Edge/Perimeter, the ideal candidate is expected to:

  • Implement, configure, and maintain enterprise‑grade WAF and DDoS protections across a large portfolio of properties.
  • Develop and fine‑tune custom firewall rules, bot mitigation controls, and DDoS mitigation security policies.
  • Perform log analysis to identify malicious traffic patterns, false positives, and opportunities for tuning.
  • Contribute to automation efforts (infrastructure as code, CI/CD integrations, scripts) to deploy and maintain security configurations.
  • Identify security vulnerabilities and guide developers and engineers in addressing these issues.
  • Participate in on‑call rotation as a subject matter expert for WAF/DDoS incident response.
  • Partner with product, engineering, and operations teams to integrate WAF/Edge security controls into applications and services.
  • Provide technical guidance on perimeter security best practices within SDLC and cloud‑native environments.
  • Research and stay current on the latest attack vectors, vulnerabilities, and exploits affecting web and API applications.
  • Recommend and implement improvements to strengthen defenses across the edge/perimeter layer.
Your Role Accountabilities

Implement, configure, and maintain WAF/DDoS solutions. Develop and tune custom firewall rules, bot mitigation, and DDoS protections. Perform log and traffic analysis to identify malicious activity and optimize defenses.

Partner with product, engineering, and operations teams to integrate WAF/Edge security into applications and services. Provide guidance on best practices and support cross‑team adoption of WAF/DDoS protections.

Advise technology teams and management of identified risks and treatment options. Define or revise security elements, standards, and solutions for various technologies to achieve optimal security posture while delivering on business goals.

Research emerging threats and adapt defenses. Recommend enhancements to strengthen edge/WAF posture. Contribute to automation and infrastructure‑as‑code efforts to scale deployments.

Participate in Tentpole and product/feature launches in a WAF support role. Incident Response – Serve as an escalation point during WAF/DDoS incidents. Participate in on‑call rotation to provide subject matter expertise in real‑time investigations and mitigation.

Qualifications & Experiences
  • Bachelor’s degree in Computer Science, Information Security, or equivalent work experience.
  • 5+ years of experience in application or network security with direct hands‑on work in WAF/DDoS solutions.
  • Detailed understanding of the threats faced directly to consumer and digital platform organizations.
  • Proven expertise with at least one major WAF platform (Akamai, Fastly NGWAF, AWS WAF, Azure, or similar).
  • Practical experience writing/modifying WAF rules (e.g., AWS WAF, Azure or Cloudflare custom rules).
  • Strong understanding of HTTP/S protocols, OWASP Top 10, and API security models.
  • Proficiency with log analysis tools, scripting (Python, Bash, Power Shell), and automation frameworks.
  • Proven hands‑on experience securing application across various Cloud Providers (AWS, GCP, Azure).
  • Strong problem‑solving skills with the ability to quickly analyze issues and implement effective mitigations.
  • Excellent collaboration and communication skills across security, engineering, and product teams.
Not Required but

Preferred Experience
  • Security certifications – CISSP, CISM, CISA, SANS, etc. (a plus)
  • Experience with infrastructure‑as‑code (Terraform, Cloud Formation) for WAF/DDoS deployment.
  • Familiarity with CDN integrations and API Security frameworks.
  • Exposure to DDoS mitigation at scale, including volumetric and application‑layer attacks.
Additional Information

On…

To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search