FLEX Edge Security Analyst

Job description

This is a temporary position. 

The Edge Security Analyst will assist in the deployment, management, and optimization of Akamai edge security solutions, including Web Application Firewall (WAF), bot protection, and API security. This role focuses on supporting the configuration and maintenance of Akamai’s security features to protect web applications, APIs, and infrastructure against various threats, including DDoS attacks, credential stuffing, and malicious bots.

The ideal candidate will gain experience with the Akamai Control Center to help configure, monitor, and fine-tune WAF rules and policies, ensuring minimal false positives and high availability of web services. They will collaborate with cross-functional teams, respond to edge traffic security incidents, analyze traffic patterns, and recommend proactive solutions to enhance the organization’s security posture. This role also involves documenting incident response activities and aligning edge security measures with regulatory requirements.

 

CANDIDATE PROFILE

 

Education and Experience

 

Required:

·  Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or related field.
·  1-3 years of experience in web application security, edge security, or managing Akamai technologies, including Web Application Firewall (WAF) and Bot Manager.
·  Familiarity with Akamai Control Center for configuring, monitoring, and maintaining WAF rules and policies.
·  Basic understanding of traffic analysis and threat mitigation during security incidents.
·  Knowledge of web application security principles, OWASP Top 10, and API security best practices.
·  Ability to collaborate with cross-functional teams, including DevOps, IT, and application developers, to ensure security integration within workflows.
·  Experience using Akamai WSA, Splunk, Dynatrace, or similar dashboards for log analysis and identifying trends in malicious activities.

 

Preferred:

·  Master’s degree in Cybersecurity, Computer Science, or a related discipline.
·  2+ years of experience in web and edge security, with a significant focus on Akamai solutions.
·  Certifications such as CISSP, CompTIA Security+, CEH, or similar.
·  Proficiency in scripting (Python, Bash) for automating security monitoring and reporting.
·  Basic understanding of common software development practices and procedures (version control, testing, patching, CI/CD).
·  Basic understanding of the Software Development Lifecycle (SDLC).
·  Basic understanding of developing Java-based applications and microservices with docker, EC2, EKS, RDS and other AWS stack.
·  Solid experience with GitHub for coding and understanding essential operations like cloning, merging, pull requests, issues.
·  Experience in software development (front end or backend developer).
·  Experience with software security testing.
·  Experience conducting risk assessments and developing risk mitigation strategies.
·  Familiarity with governance and compliance frameworks such as NIST, ISO 27001, and PCI DSS.
·  Knowledge of advanced bot detection strategies, including AI-based solutions and behavioral analysis.
·  Experience working in Travel & Hospitality.

 

CORE WORK ACTIVITIES

 

Threat Management

·  Assist in monitoring edge traffic patterns using Akamai tools, WSA, Splunk, and Dynatrace dashboards to identify and investigate anomalies or potential threats.
·  Support the response to security incidents by analyzing attack vectors and applying custom mitigation rules.
·  Conduct analyses of attack patterns during security incidents to identify root causes and refine defense strategies.

Manage Akamai Edge Security Solutions

·  Help configure, monitor, and maintain Akamai WAF rules and policies to protect against web application threats, ensuring high availability and minimal false positives.
·  Assist in optimizing Akamai Bot Manager policies to mitigate malicious bot traffic and maintain seamless access for legitimate bots.
·  Use Akamai Control Center and other tools to ensure configurations align with evolving threat landscapes and business requirements.

Security Integration and Collaboration

·  Work with DevOps, IT, and application developers to integrate Akamai security configurations into CI/CD pipelines and workflows.
·  Ensure secure deployment of applications by conducting edge security reviews before production releases.
·  Foster collaboration across teams to promote security best practices and compliance with internal and external requirements.

Documentation and Compliance

·  Maintain detailed documentation of incident response activities, WAF configurations, time-boxed exceptions, and mitigation actions.
·  Generate security incident reports and periodic metrics for stakeholders, providing actionable insights for decision-making.
·  Ensure alignment of edge security measures with regulatory requirements and organizational policies.

Continuous Improvement and Learning

·  Stay updated on the latest security trends, vulnerabilities, and tools to recommend and implement improvements to the security infrastructure.
·  Refine WAF policies and configurations to proactively address emerging threats and enhance performance.

Metrics and Leadership Communication

·  Track performance metrics such as threat mitigation rates, incident response times, and policy effectiveness.
·  Provide regular updates to leadership on edge security metrics, risk posture, and strategic enhancements to security controls.

On-Call Support

·  Participate in on-call rotations to respond to critical security incidents outside regular business hours when required.

 

The pay range for this position is $33.94 to $53.46 per hour.                                                                                                                                                                      

FLEX opportunities offer coverage for medical, dental, vision, health care flexible spending account, dependent care flexible spending account, life insurance, disability insurance, accident insurance, adoption expense reimbursements, paid parental leave, 401(k) plan, stock purchase plan, discounts at Marriott properties, commuter benefits, employee assistance plan, and childcare discounts.  Benefits are subject to terms and conditions, which may include rules regarding eligibility, enrollment, waiting period, contribution, benefit limits, election changes, benefit exclusions, and others.

Marriott HQ is committed to a hybrid work environment that enables associates to Be connected. Headquarters-based positions are considered hybrid, for candidates within a commuting distance to Bethesda, MD.

 

Marriott International is an equal opportunity employer. We believe in hiring a diverse workforce and sustaining an inclusive, people-first culture. We are committed to non-discrimination on any protected basis, such as disability and veteran status, or any other basis covered under applicable law.

Marriott International is the world’s largest hotel company, with more brands, more hotels and more opportunities for associates to grow and succeed. Be where you can do your best work,​ begin  your purpose,  belong  to an amazing global​ team, and  become  the best version of you.