L2 F5 Application Security Engineer – Edge Protection

Job Description

Job Summary:

The L2 F5 Application Security Engineer provides day-to-day operational support, monitoring, and maintenance for the full Edge Protection tool-set mandated by SAMA: F5 BIG-IP (Access Policy Manager, Web Application Firewall, Local & Global Traffic Manager) and Infoblox DNS Security (MANDATORY). The role ensures high availability, policy compliance, and prompt incident response for all edge-security platforms, escalating complex issues to the L3 F5 team. Success is measured by swift ticket resolution, precise change execution, and strict adherence to SAMA/NCA controls.

Key Responsibilities

Operational Support & Monitoring

• Continuously monitor F5 APM, ASM/WAF, LTM, GTM and Infoblox DNS grids for health, performance, and security events
• Respond to alerts and service-desk tickets within SLA; perform first-pass diagnosis and fix routine issues
  
  

Configuration & Maintenance

• Implement approved configuration changes: access policies, iRules, WAF policies, DNS RPZ rules, IPAM updates, and GTM load-balancing pools
• Apply software patches, hot-fixes, and signature updates under change-management guidelines
  
  

Incident Handling & Escalation

• Investigate connectivity, authentication, or DNS anomalies; capture logs, packet traces, and ASM violation details
• Escalate unresolved or systemic issues to the L3 engineer with clear documentation of findings and attempted fixes
  
  

Compliance & Reporting

• Generate daily/weekly health-check reports and edge-security KPI dashboards aligned to SAMA CSF IAM-01 / NET-02 requirements
• Ensure all changes, incidents, and maintenance tasks are fully documented in ServiceNow
  
  

Collaboration & Knowledge Transfer

• Coordinate with network, application, and SOC teams during deployments or incident bridges
• Maintain and improve runbooks, SOPs, and knowledge-base articles; deliver informal training sessions to L1 analysts
  
  

Required Qualifications

• Bachelor’s degree in Computer Science, Information Technology, Cybersecurity or related field
• 3–5 years hands-on experience supporting F5 BIG-IP modules (minimum APM and ASM/WAF) and Infoblox DNS Security in production
• Solid understanding of TCP/IP, HTTP/S, SSL/TLS, DNS, and authentication protocols (SAML, OAuth)
• Experience with ServiceNow (or similar ITSM), basic shell/CLI troubleshooting, and log analysis tools
• Working knowledge of SAMA Cybersecurity Framework or NCA ECC controls for edge security
  
  

Desired Skills & Certifications

• F5 Certified Administrator (302) or F5 CTS (APM or ASM)
• Infoblox Certified DNS Administrator / Security Expert
• ITIL Foundation, CompTIA Security+, or equivalent security credential
• Scripting (Python/TCL/bash) for automation of routine tasks
• Familiarity with load-balancer traffic policies, iRules/LTM policies, and DNSSEC principles
  
  

Working Conditions

• Full-time on-site role (Sunday–Thursday), 9×5 support with participation in an on-call rota for critical escalations
• Occasional evening or weekend work during planned maintenance windows
• Collaborative, fast-paced environment interfacing with network, application, SOC, and compliance teams
  
  

Must be eligible to work in Saudi Arabia and pass SAMA background checks.

At DXC Technology, we believe strong connections and community are key to our success. Our work model prioritizes in-person collaboration while offering flexibility to support wellbeing, productivity, individual work styles, and life circumstances. We’re committed to fostering an inclusive environment where everyone can thrive.

Recruitment fraud is a scheme in which fictitious job opportunities are offered to job seekers typically through online services, such as false websites, or through unsolicited emails claiming to be from the company. These emails may request recipients to provide personal information or to make payments as part of their illegitimate recruiting process. DXC does not make offers of employment via social media networks and DXC never asks for any money or payments from applicants at any point in the recruitment process, nor ask a job seeker to purchase IT or other equipment on our behalf. More information on employment scams is available here.