LikeRemoteStaff Cybersecurity Engineer
🇮🇳 India
Management
Python
JavaScript
Terraform
Design
Cybersecurity
Devops
Security Engineer
Video
Staff Cybersecurity Engineer
from 🇮🇳 India
Join the team leading the next evolution of virtual care.
At Teladoc Health, you are empowered to bring your true self to work while helping millions of people live their healthiest lives.
Here you will be part of a high-performance culture where colleagues embrace challenges, drive transformative solutions, and create opportunities for growth. Together, we’re transforming how better health happens.
Staff Security Engineer- Edge &API
SecurityLead
Summary of Position
Key member of the Security team, this role focuses on implementing and managing security controls for web applications, APIs, and edge infrastructure. The Lead Security Engineer will leverage Cloudflare platform and other edge security solutions to protect against DDoS attackswebapplicationthreats,botattacks,APIvulnerabilitiesandAIthreats.Thisroledemandsstrong technicalexpertiseinwebapplicationfirewalls(WAF),DDoSmitigation,botmanagement,APIsecurity,andcontentdeliverynetwork(CDN)security,withtheabilitytoarchitectandimplementscalableprotectionmechanismsforinternetfacingapplicationsandservices.
Essential Duties and Responsibilities
- Oversee the design, implementation, and management of Cloudflare security services(WAF,DDoSProtection,BotManagement,APIShield,RateLimiting)tosafeguardwebapplications and APIs.
- Establishand documentsecuritystandards andbest practicesforedgesecurity, CDNusage,and SSL/TLSmanagementacross theorganization.
- Collaboratewithapplicationdevelopment,cloudengineering,andDevOpsteamstointegrate security controls into all web applications and API gateways.
- DesignandmanageAIGatewaystooptimizeglobaledgesecurityandreal-timeobservability.
- LeadthedesignandimplementationofLayer3/4firewalltunnelingstrategytosecureand optimize hybrid cloud connectivity.
- Drivethesecurityassessmentandhardening ofedgesecurityarchitectures,proactivelyidentifying vulnerabilities inedge-side logic, global API endpoints, and WAF configurations.
- Overseeedgesecurityautomationtodeployreal-timecustommitigationlogicandautomated incident response.
Required Qualifications
- 6+ yearsofexperienceininformationsecuritywithfocusonapplicationsecurity,websecurity, or network security.
- 3+yearsofexperiencewithDDoSprotectionandmitigationstrategiesfor application-layer and network-layer attacks.
- 2+ years of hands-on experience with web application firewalls (WAF), API and AIgateways, including rule development, tuning,and attackmitigation.
- Strong understanding of web application security principles, OWASP Top 10, and common attack vectors.
- ExperiencewithCDNplatformsandedge securityservicesforprotectinginternet-facingapplications.
- Proficiency with HTTP/HTTPS protocols, SSL/TLS, DNS, and webapplicationarchitectures.
- Experienceanalyzingwebtrafficpatterns, logs,andsecurityeventstoidentifythreatsandtune security controls.
Preferred Qualifications
- Demonstrated success implementing WAF and edge security at scale in high trafficenvironments.
- ExtensiveexperiencewithCloudflaresecuritytools,includingWeb Application Firewall(WAF) and DDoS Protection.
- ProficientinCloudflareBotManagementtoidentifyandblockautomatedthreats.
- SkilledinimplementingAPIShield,APIGatewaysforsecureAPIaccessandprotection
- Knowledge of API security best practicesincluding OAuth, JWT,APIauthentication/authorization, and schema validation.
- ExperiencewithGraphQLsecurityand protectionmechanisms.
- Experienceimplementingsecurityheaders(CSP,HSTS,X-Frame-Options)andcookiesecurity.
- Proficiencywithscriptingandautomationforsecurityrulemanagement(JavaScript, Python).
- Familiarity with Infrastructure as Code for edge security configuration (Terraform,CloudFormation).
- RelevantcertificationssuchasCISSP,CEH,GWAPT(GIACWebApplicationPenetrationTester), OSCP, or cloud security certifications.
As part of our hiring process, we verify identity and credentials, conduct interviews (live or video), and screen for fraud or misrepresentation. Applicants who falsify information will be disqualified.
Why join Teladoc Health?
Teladoc Health is transforming how better health happens. Learn how when you join us in pursuit of ourimpactful mission.
Chart your career path withmeaningful opportunities that empower you to grow, lead, and make a difference.
Join amulti-faceted community that celebrates each colleague’s unique perspective and is focused on continually improving, each and every day.
Contribute to aninnovative culture where fresh ideas are valued as we increase access to care in new ways.
Enjoy an inclusivebenefits program centered around you and your family, with tailored programs that address your unique needs.
Explorecandidate resources with tips and tricks from Teladoc Health recruiters and learn more about our company culture by exploring #TeamTeladocHealth onLinkedIn.
As an Equal Opportunity Employer, we never have and never will discriminate against any job candidate or employee due to age, race, religion, color, ethnicity, national origin, gender, gender identity/expression, sexual orientation, membership in an employee organization, medical condition, family history, genetic information, veteran status, marital status, parental status, or pregnancy). In our innovative and inclusive workplace, we prohibit discrimination and harassment of any kind.
Teladoc Health respects your privacy and is committed to maintaining the confidentiality and security of your personal information. In furtherance of your employment relationship with Teladoc Health, we collect personal information responsibly and in accordance with applicable data privacy laws, including but not limited to, the California Consumer Privacy Act (CCPA). Personal information is defined as: Any information or set of information relating to you, including (a) all information that identifies you or could reasonably be used to identify you, and (b) all information that any applicable law treats as personal information. Teladoc Health’s Notice of Privacy Practices for U.S. Employees’ Personal information is availableat this link.
