Job Posting:

Ferguson is North America’s leading value-added distributor across residential, non-residential, new construction and repair, maintenance, and improvement (RMI) end markets. Spanning 34,000 suppliers and more than one million customers, we deliver local expertise, value-added solutions, and the industry’s most extensive portfolio of products. From infrastructure, plumbing, and appliances, to HVAC, fire protection, fabrication, and more, we make our customers’ complex projects simple, successful, and sustainable.

We have a great opportunity for a remote Lead Cloud Security Engineer - Edge to join the Application Security team, within the Ferguson InfoSec organization. The Lead IT Security Engineer’s (Edge) mission is to design, deliver and maintain IT security infrastructure solutions that enable efficient delivery of new and existing Security Services to the enterprise. This includes thorough understanding of technical platforms delivering Security services, ability to perform required integrations, understanding of design impacts on Operations teams, and close partnership with Architecture and project delivery areas. This is a senior technical role, requiring proven understanding and experience implementing a variety of network security, identity, cyber security, privileged access, and related technologies, using solid design principles.

**This role is approved to be fully remote and can be based anywhere in the United States.**

Duties and Responsibilities:

IT Security Engineering (90%) in Edge (eComm) Landscape

• Configure Ferguson’s Edge Security Tooling to optimize performance and security of our web properties through effective use of features including WAF, Bot Manager, and CDN.
• Work with multi-functional teams to secure web applications and APIs, coordinate certificate changes, and implement security patterns related to OAUTH2, JWT, Session Management, Tokens, etc.
• Work with partners/vendors to implement version-controlled changes to WAF, Bot Manager, and other edge protections.
• Identify gaps in security tools or security processes and implement required solutions.
• Establish and maintain requirements, methods, and procedures for routine maintenance.
• Configure monitoring and alerting within the Edge Security space.
• Participate in Major Incident Response.
• Participate in Disaster Recovery Planning.
• Provide and maintain system documentation.
• Excellent written and verbal English interpersonal skills.

Leadership (10%)

• Mentor Information Technology personnel to help develop others and to highlight any coverage or skills gaps.
• Lead multi-functional troubleshooting of sophisticated issues as the need arises.

Qualifications and Requirements:

• 10 years or more of proven experience, that includes 3+ years of software development experience and 3+ years general Application/Systems Administration experience – required.
• Technical background within Ecommerce, Networking, Information Security, and/or security-related infrastructure – required.
• Relevant DevSecOps and integration background – desired.
• Akamai Edge Security solutions including App & API Protector, Bot Manager, Prolexic, and Page Integrity Manager.
• Network security platforms (eg. Firewalls, proxies, WAF, CDN, etc.) and their use in infrastructure design.
• Security tools and policies used to protect ecommerce platforms from common attacks.
• Data analytics platforms (eg log analytics, splunk, sumologic) commonly used for troubleshooting, forensics, and conducting root cause analysis.
• NodeJS, Python, Ruby, Java/Groovy, & JavaScript.
• TLS, certificate management, and cloud-based storage.
• Web-based service-oriented applications and related testing tools.
• Complex web hosting configuration components including firewalls, load balancers, and CDNs.
• SDLC process including the QA lifecycle and methodology.
• Security concepts including Identity and Access Management, Certificates/PKI, Data Encryption, OAUTH2, WAF, Privileged Access Management, Active Directory Security, Proxy Servers, Load Balancers, Authentication and Authorization Services.
• Internet protocols and respective versions of HTTP, TLS, WebSocket, GraphQL, server-sent events and/or related technologies.
• HTTP standards (headers, methods, body) .
• DNS (CNAME, TXT records, TTLs).
• Browser security (CORs, HSTS, custom headers, certificates).
• Command line scripting including Curl and other applicable testing tools.
• Windows and Linux operating systems.
• System integration tools and techniques.
• Visio and/or other diagramming tools.
• Microsoft Office software (Outlook, Word, Excel, PowerPoint, Access, etc.)

Other Skills and Qualities:

• Must be self-motivated, proactive, creative, and efficient in identifying issues, understanding, and proposing solutions.
• Builds and maintain good working relationships.
• Excellent written, oral, instructional, presentation, and interpersonal skills.
• Ability to efficiently operate computers, tablets, and mobile devices.
• Must possess broad experience/understanding of IT operations and service delivery models.
• Security certifications such as CCNA, SSCP, Security+, and CISSP are desired.

Ferguson is dedicated to providing meaningful benefits programs and products to our associates and their families—geared toward benefits, wellness, financial protection, and retirement savings. Ferguson offers a competitive benefits package that includes medical, dental, vision, retirement savings with company match, paid leave (vacation, sick, personal, holiday, and parental), employee assistance programs, associate discounts, community involvement opportunities, and much more!

-

Pay Range:

-

Actual pay rate may vary depending upon location. The estimated pay range for this position is below. The specific rate will depend on a candidate’s qualifications and prior experience.

-

-

Estimated Ranges displayed are Monthly for Salaried roles OR Hourly for all other roles.

-

This role is Bonus or Incentive Plan eligible.

-

The Company is an equal opportunity employer as well as a government contractor that shall abide by the requirements of 41 CFR 60-300.5(a), which prohibits discrimination against qualified protected Veterans and the requirements of 41 CFR 60-741.5(A), which prohibits discrimination against qualified individuals on the basis of disability.

Ferguson Enterprises, LLC. is an equal employment employer F/M/Disability/Vet/Sexual Orientation/Gender Identity.

Equal Employment Opportunity and Reasonable Accommodation Information