Junior ASE Role

Position

Junior Application Security Engineer (ASE)

Department

Engineering

Reporting to

Application Security Engineering Manager

Job overview

Responsible for designing, building, deploying, tuning (changes) and on-going support for the RedShield service (cloud and on-premise) for RedShield clients.

Reports

N/A

Security Clearance Level

NZ Police Vetting

Key role functions

Contributes to the successful and accurate deployment of RedShield solutions through

• Developing and deploying small additions to existing customers and deploying solutions for small new customers. 
• Developing and deploying simple shields from templates. 
• Contributing to medium to large additions for new and existing customers with support from other team members.
• Following the instructions of ASDs to deploy advanced shields developed by RedShield’s ASD team. 
• Ensuring that services deployed fit the customer's requirements and are deployed as per agreed specifications.
• Following RedShield deployment processes to ensure a smooth and accurate deployment.
• Following customer change control information to ensure changes met customer needs. 
• Understanding the inner workings of RedShield’s architecture and components (F5, AWS, Traffic flows) to manage changes for customers

Customer Support

• Triaging customer tickets coming into RedShield’s service desk and providing first response to customers, following ASE support queues and processes.
• Clearly articulating core RedShield concepts to customers (i.e. content route requirements, and support ticket resolutions).
• Facilitating and resolving the simple support tickets (i.e. SSL certificate updates and other BAU changes) independently.
• Contributing to more complex support tickets (complex change requests) with support from other team members.
• Ensuring that Service Level Agreements are maintained for tickets. 
• Liaising with RedShield customers during setup to ensure they have provided all required information.
• Liaising with RedShield customers during deployment to ensure a smooth transition into BAU tasks.
• Responding to P1 incidents following RedShield's processes.

Contributes to the continuous improvement of the ASE processes and systems through:

• Producing and maintaining as built documentation for each client deployment.
• Updating process documentation as improvements are discovered.
• Capturing configurations and communicating to other internal teams. 
• Contributing to the development of new processes and documentation.
• Looking for opportunities for process improvement and contributing ideas. 
• Creating tools for the wider ASE team to use to improve outcomes and efficiency.

Propels own development forward through:

• Attending any internal learning sessions and other IT security related forums.
• Keeping abreast of the latest IT security vulnerabilities and related topics relevant to RedShield’s service offerings.

Other duties as directed by the manager from time to time.

Qualifications and Experience

• A relevant tertiary qualification or 1+ years industry experience
• Experience or knowledge of the networking stack (layer 2 – 7).
• Knowledge of OWASP top ten and common web vulnerabilities.
• Programming and /or scripting experience.
• Knowledge and experience with WAF solutions.
• Knowledge of SSL Transport layer and cryptography.
• Knowledge of webscanner tools (i.e. BURP / Nexpose).
• Some experience with AWS is advantageous.
• Internal and external written and verbal communication
• Excellent attention to detail and follow through to ensure tasks are completed. 
• Strong process orientation. 
• Able to prioritise  and calmly manage  multiple urgent  and  sensitive  tasks, working within a high paced and demanding environment .
• Proactive self starter comfortable working both independently and within a team environment. 

• Strong problem-solving and decision-making skills. 

• Flexible, resilient, and willing to pitch in with other team tasks.