L2 F5 Application Security Engineer – Edge Protection

The L2 F5 Application Security Engineer provides day-to-day operational support, monitoring, and maintenance for the complete Edge Protection tool-set mandated by SAMA, including F5 BIG-IP (Access Policy Manager, Web Application Firewall, Local & Global Traffic Manager) and Infoblox DNS Security. This role ensures high availability, policy compliance, and prompt incident response for all edge-security platforms, escalating complex issues to the L3 F5 team. Success is measured by swift ticket resolution, precise change execution, and strict adherence to SAMA/NCA controls.

Location: Riyadh, Saudi Arabia
Work Conditions: Full-time on-site role (Sunday–Thursday), 9×5 support with participation in an on-call rota for critical escalations. Occasional evening or weekend work during planned maintenance windows. Must be eligible to work in Saudi Arabia and pass SAMA background checks.

Key Responsibilities:

• Operational Support & Monitoring: Continuously monitor F5 APM, ASM/WAF, LTM, GTM, and Infoblox DNS grids for health, performance, and security events. Respond to alerts and service-desk tickets within SLA; perform first-pass diagnosis and fix routine issues.
• Configuration & Maintenance: Implement approved configuration changes; apply software patches, hot-fixes, and signature updates.
• Incident Handling & Escalation: Investigate connectivity, authentication, or DNS anomalies; capture relevant logs and escalate unresolved issues with documentation.
• Compliance & Reporting: Generate health-check reports and edge-security KPI dashboards aligned to SAMA requirements. Ensure documentation of all changes, incidents, and maintenance tasks.
• Collaboration & Knowledge Transfer: Coordinate with various teams during deployments or incident resolution; maintain runbooks and deliver training sessions to L1 analysts.

Required Qualifications:

• Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related field.
• 3–5 years of hands-on experience supporting F5 BIG-IP modules and Infoblox DNS Security in production.
• Solid understanding of TCP/IP, HTTP/S, SSL/TLS, DNS, and authentication protocols.
• Experience with ServiceNow (or similar ITSM), shell/CLI troubleshooting, and log analysis tools.
• Knowledge of SAMA Cybersecurity Framework or NCA ECC controls for edge security.

Desired Skills & Certifications:

• F5 Certified Administrator (302) or F5 CTS (APM or ASM).
• Infoblox Certified DNS Administrator / Security Expert.
• ITIL Foundation, CompTIA Security+, or equivalent security credential.
• Scripting skills (Python/TCL/bash) for automation of routine tasks.
• Familiarity with load-balancer traffic policies, iRules/LTM policies, and DNSSEC principles.

Language Requirements: Not specifically mentioned, but proficiency in English is typically expected for technical roles in Saudi Arabia.