FLEX Edge Security Analyst

The Edge Security Analyst will assist in the deployment management and optimization of Akamai edge security solutions including Web Application Firewall (WAF) bot protection and API security. This role focuses on supporting the configuration and maintenance of Akamais security features to protect web applications APIs and infrastructure against various threats including DDoS attacks credential stuffing and malicious bots.

The ideal candidate will gain experience with the Akamai Control Center to help configure monitor and fine-tune WAF rules and policies ensuring minimal false positives and high availability of web services. They will collaborate with cross-functional teams respond to edge traffic security incidents analyze traffic patterns and recommend proactive solutions to enhance the organizations security posture. This role also involves documenting incident response activities and aligning edge security measures with regulatory requirements.

CANDIDATE PROFILE

Education and Experience

Required:

• Bachelors degree in Cybersecurity Information Technology Computer Science or related field.
• 1-3 years of experience in web application security edge security or managing Akamai technologies including Web Application Firewall (WAF) and Bot Manager.
• Familiarity with Akamai Control Center for configuring monitoring and maintaining WAF rules and policies.
• Basic understanding of traffic analysis and threat mitigation during security incidents.
• Knowledge of web application security principles OWASP Top 10 and API security best practices.
• Ability to collaborate with cross-functional teams including DevOps IT and application developers to ensure security integration within workflows.
• Experience using Akamai WSA Splunk Dynatrace or similar dashboards for log analysis and identifying trends in malicious activities.

Preferred:

• Masters degree in Cybersecurity Computer Science or a related discipline.
• 2 years of experience in web and edge security with a significant focus on Akamai solutions.
• Certifications such as CISSP CompTIA Security CEH or similar.
• Proficiency in scripting (Python Bash) for automating security monitoring and reporting.
• Basic understanding of common software development practices and procedures (version control testing patching CI/CD).
• Basic understanding of the Software Development Lifecycle (SDLC).
• Basic understanding of developing Java-based applications and microservices with docker EC2 EKS RDS and other AWS stack.
• Solid experience with GitHub for coding and understanding essential operations like cloning merging pull requests issues.
• Experience in software development (front end or backend developer).
• Experience with software security testing.
• Experience conducting risk assessments and developing risk mitigation strategies.
• Familiarity with governance and compliance frameworks such as NIST ISO 27001 and PCI DSS.
• Knowledge of advanced bot detection strategies including AI-based solutions and behavioral analysis.
• Experience working in Travel & Hospitality.

CORE WORK ACTIVITIES

Threat Management

• Assist in monitoring edge traffic patterns using Akamai tools WSA Splunk and Dynatrace dashboards to identify and investigate anomalies or potential threats.
• Support the response to security incidents by analyzing attack vectors and applying custom mitigation rules.
• Conduct analyses of attack patterns during security incidents to identify root causes and refine defense strategies.

Manage Akamai Edge Security Solutions

• Help configure monitor and maintain Akamai WAF rules and policies to protect against web application threats ensuring high availability and minimal false positives.
• Assist in optimizing Akamai Bot Manager policies to mitigate malicious bot traffic and maintain seamless access for legitimate bots.
• Use Akamai Control Center and other tools to ensure configurations align with evolving threat landscapes and business requirements.

Security Integration and Collaboration

• Work with DevOps IT and application developers to integrate Akamai security configurations into CI/CD pipelines and workflows.
• Ensure secure deployment of applications by conducting edge security reviews before production releases.
• Foster collaboration across teams to promote security best practices and compliance with internal and external requirements.

Documentation and Compliance

• Maintain detailed documentation of incident response activities WAF configurations time-boxed exceptions and mitigation actions.
• Generate security incident reports and periodic metrics for stakeholders providing actionable insights for decision-making.
• Ensure alignment of edge security measures with regulatory requirements and organizational policies.

Continuous Improvement and Learning

• Stay updated on the latest security trends vulnerabilities and tools to recommend and implement improvements to the security infrastructure.
• Refine WAF policies and configurations to proactively address emerging threats and enhance performance.

Metrics and Leadership Communication

• Track performance metrics such as threat mitigation rates incident response times and policy effectiveness.
• Provide regular updates to leadership on edge security metrics risk posture and strategic enhancements to security controls.

On-Call Support

• Participate in on-call rotations to respond to critical security incidents outside regular business hours when required.

The pay range for this position is $33.94 to $53.46 per hour.

FLEX opportunities offer coverage for medical dental vision health care flexible spending account dependent care flexible spending account life insurance disability insurance accident insurance adoption expense reimbursements paid parental leave 401(k) plan stock purchase plan discounts at Marriott properties commuter benefits employee assistance plan and childcare discounts. Benefits are subject to terms and conditions which may include rules regarding eligibility enrollment waiting period contribution benefit limits election changes benefit exclusions and others.

Marriott HQ is committed to a hybrid work environment that enables associates to Be connected. Headquarters-based positions are considered hybrid for candidates within a commuting distance to Bethesda MD.

Marriott International is an equal opportunity believe in hiring a diverse workforce and sustaining an inclusive people-first are committed to non-discrimination onanyprotectedbasis such as disability and veteran status or any other basis covered under applicable law.