Jobs · Engineering

Edge Security Platform Engineer

Major League Baseball (MLB) · United States · 1 wk ago
RemoteRemoteEngineeringFull-time

Responsibilities

  • Own and operate MLB’s edge security platforms (WAF, bot mitigation, CDN), including configuration, tuning, and lifecycle management
  • Maintain secure, resilient environments using infrastructure-as-code and controlled deployment practices
  • Continuously refine rules, policies, and thresholds to improve protection and prevent drift
  • Participate in an on-call rotation for high-severity edge security incidents
  • Design and manage defenses against automated abuse (e.g., credential stuffing, scraping, ticketing bots, payment fraud)
  • Analyze telemetry to identify threats, false positives, and attacker behavior
  • Partner with fraud and payment teams to strengthen early detection and mitigation
  • Optimize security controls to protect uptime and user experience during high-traffic events
  • Serve as a subject matter expert during incidents, ensuring mitigations meet latency, conversion, and availability targets
  • Build and maintain logging, monitoring, dashboards, and alerting across edge and application layers
  • Integrate telemetry with SIEM tools to improve detection, triage, and auditability
  • Track and report on key risk and performance metrics
  • Drive automation for detection, response, and change management while maintaining human oversight
  • Establish strong deployment controls, audit trails, and support compliance (e.g., PCI, SOC 2)
  • Collaborate cross-functionally to enhance edge security strategy, tooling, and execution

Qualifications & Skills

  • Bachelor’s degree in Computer Science, Cybersecurity, Software Engineering, or a related field, or equivalent practical experience
  • 5+ years in security, platform, SRE, or infrastructure engineering roles supporting high-scale, internet-facing systems; experience with high-demand consumer platforms such as ticketing, e-commerce, streaming, or live events strongly preferred
  • Hands-on experience operating and tuning WAF, bot mitigation, rate limiting, CDN security, and related traffic protection controls in production environments
  • Direct experience with HAProxy Enterprise WAF and bot/security modules, and with CDN including WAF, bot management, rate controls, and telemetry or log streaming
  • Strong understanding of HTTP/S, TLS, DNS, TCP/IP, reverse proxying, caching, rate limiting, server- and client-side fingerprinting, and edge traffic behavior
  • Experience investigating web abuse, fraud signals, or adversarial automation affecting login, checkout, account, or transaction flows
  • Proficiency with Python, Go, Bash, or similar scripting languages, and experience with Terraform, Ansible, Git-based workflows, CI/CD pipelines, or other infrastructure-as-code practices
  • Experience with observability, logging, and SIEM integration for security and operational telemetry
  • Strong troubleshooting skills across distributed systems, production incidents, and customer-impacting edge events
  • Strong written and verbal communication skills, with the ability to work effectively across technical and non-technical teams

Pay

Salary Range: $140,000 - $160,000 (Base Salary) + Bonus

Similar jobs