TransUnion's Job Applicant Privacy Notice

What We'll Bring:

What We’ll Bring (Summary):
At TransUnion, we have a welcoming and energetic environment that encourages collaboration and innovation – we’re consistently exploring new technologies and tools to be agile. This environment gives our people the opportunity to hone current skills and build new capabilities, while discovering their genius.
Come be a part of our Information Security team – you’ll work with great people, pioneering products and cutting-edge technology. As a Network Security Engineer at TransUnion, you will be a part of our Network Security team to implement & improve WAF security posture which is key to meeting and providing the robust security for web based applications. You will have opportunity to contribute to technology modernization by moving WAF tools to SaaS based solutions. This is also a great opportunity to leverage your programming experience in security domain.

What You'll Bring:

What You’ll Bring (Job Description):

• Deploy of Web Application Firewalls (WAF), BOT protection and DDoS working in close conjunction with security architecture, vendors and internal stakeholders.
• Contribute to global strategy work and process of onboarding of applications behind security controls.
• Monitor and manage health of WAF/BOT/DDoS security controls. Maintain good security posture Develop, maintain, test and troubleshoot policies and rule sets globally. Monitors systems activities and fine tunes system parameters and configuration to optimize performance and ensure security of systems.
• Respond to security events and contribute to incident response plans.
• Review and respond to WAF/BOT/DDoS alerts, onboard new apps to these security controls, optimize policies, lead/conduct upgrades, integrate with monitoring/alerting tools and troubleshoot issues.
• Act as an escalation point for the WAF team to assist and advice on issues associated with WAF. Provide Tier 3 engineering support as needed.
• Agile project planning & delivery.

Required Skills:

• Strong understanding of cloud based Web Application Firewall Technologies, BOT management & DDoS.
• In-depth understanding of communication protocols (mainly TCP/IP) and routing protocols (e.g. BGP, OSPF). Expertize in networking firewall concepts and configuration
• Knowledge of information security concepts, OWASP web application vulnerabilities and web-based attacks.
• Ability to deploy, configure and maintain new WAF controls and policies. Evaluate and install patches, perform system upgrades and resolves security issues.
• Good working knowledge of information security risk identification, assessment and reporting activities. Adept at security monitoring, and investigation activities. Ability to improve effectiveness in incident response practices. Be a champion of continuous improvement initiatives.
• Support business continuity, risk management and disaster recovery planning activities.
• Provider tier 1/2/3 support as needed.
• Ability to demonstrate technical knowledge and consultative skills. Strong communication skills.
• Bachelor’s degree in Computer Science or Information Technology

Impact You'll Make:

We’d love to see:

• 3+ years of WAF engineering experience preferably in a large global setup. Experience with Imperva or CloudFlare preferred.
• 3+ years of networking experience, including configuring, analyzing & troubleshooting complex TCP/IP networks.
• 2+ years of working in a Security Operations Center (SOC).
• 2+ years of experience working on projects with agile methodologies.
• 2+ years of experience with cloud technologies like AWS, Azure, GCP.
• Experience with cloud automation in security domain using REST API’s and scripting using PERL, Python, Ruby or Ansible.
• Strong DevOps experience & Cloud certification (AWS, Azure)
• Experience with Terraform.

Impact You’ll make (Additional Job Description):

• In the first 90 days – Ramp up to project specifics and provide support to resolve issues with existing WAF deployments. Handle Tier 3 escalation for troubleshooting issues by closely with technical leads.
• Beyond 90 days – Participate in moving WAF tools to the cloud while supporting existing deployments. Work effectively perform WAF deployments independently across TU regions with support from local resources. Participate in Tier 3 support activities and BAU as needed.

TransUnion Job Title

Engineer, InfoSec Engineering