IADS - 1108 - Security Engineer
MP DOMINIC AND CO
- Kochi, Kerala
- Permanent
- Full-time
Deep, demonstrable expertisewith enterprise CDN platforms such as Akamai, Cloudflare, Fastly, or AWS CloudFront, including:
Writing, deploying, and tuning custom WAF rules and managed rule groups.
Configuring and managing bot mitigation policies, bot scoring thresholds, and challenge/block actions.
Designing and executing DDoS mitigation strategies for both volumetric and application-layer attacks.
Analyzing CDN security event logs and traffic analytics to identifyand respond to threats in real time.
Proven experience supporting high-traffic, revenue-critical websites and securing large-scale distributed systems where availability and integrity are non-negotiable.
Ability to articulate trade-offs between security posture and business impact (e.g., false positive rates, latency, user experience) when configuring CDN edge policies.
Proficiencyin scripting languages (Python, Bash) for automating CDN policy management, log analysis, and alerting.
Experience with Infrastructure-as-Code tools (Terraform)for managing CDN and cloud security configurations.
Experience with container security, Kubernetes hardening, and CI/CD pipeline security.
Familiarity with SIEM tools, threat intelligence platforms, and compliance frameworks (SOC 2, ISO 27001, PCI-DSS).
CDN or security vendor certifications (e.g., Akamai Certified Professional, Cloudflare Certified, AWS Security Specialty).
Experience with API security gateways and securingGraphQL/REST APIs at the edge.
Background in e-commerce security, retail, or DTC (direct-to-consumer) environments with high seasonal traffic spikes.
Experience with threat modeling for web application architectures and CDN-integrated platforms.
Familiarity with client-side security standards such as Content Security Policy (CSP), SubresourceIntegrity (SRI), and browser-side attack detection.