Job was saved successfully.
Job was removed from Saved Jobs.

Job Details


Cyber Security Engineer II - Application Security (Remote Eligible)



Full Time

On Site


Deerfield, Illinois, United States

Job Summary

The Cyber Security Engineer II - Application Security (Remote Eligible) will report to the Manager of Application Security and Configuration Management. In this role, you will be an expert in the strategy, design, administration, and implementation of Azure Web Application Firewall and Application Security. Working in Azure cloud-based technology, you will:

  • Promote security awareness by participating in agile release trains and enroll new applications in the Application Security Process.
  • Analyze code for security vulnerabilities, develop software security guidance including training material while executing cloud security best practices,
  • Secure coding checklists, reusable code, and assist project teams with conceptualization and design of their architecture.
  • Provide guidance on how cloud solutions are deployed in multiple environments.

Job Responsibilities
  • Responsible for the advanced configuration of data security processes and procedures to ensure that data threats and vulnerabilities within the assigned base of complex systems, applications and platforms are minimized.
  • Designs, builds, operates and automates complex security solutions and processes to protect the integrity of the organization's network, systems, applications and data.
  • May undertake necessary actions to eliminate identified. Threats. Under guidance, develops solutions to data access, modification, disclosure, destruction or other risks for whatever source, internal or external.
  • Periodically conducts audits and tests to identify coding and documentation anomalies, and data security vulnerabilities and develops reports summarizing findings.
  • Conducts security process administration including remediating vulnerabilities, evaluate and approve firewall requests and VPN access, and coordinate password changes.
  • Recommends and implements solutions.
  • Eradicates signs of intrusion. Participates in identifying and implementing additional security controls. maintains senior level knowledge of security principles, practices and procedures, and encryption as they relate to the role, and monitors innovations in these areas.
  • Continually evaluates and upgrades security features.
  • Responds to incidents to identify root causes.
  • Anticipates and prevents problems and roadblocks before they occur.
  • Performs network security audits and testing and evaluates system security configurations to ensure efficacy and compliance with policies and procedures.

Basic Qualifications
  • Bachelor's degree and at least 2 years of experience in IT Security OR a High School Diploma/GED and at least 5 years of experience in IT Security
  • At least 1 year of experience working with security protocols and standards, vulnerability assessment tools, packet analyzers, scripting languages and security management suites, penetration testing tools and countermeasures and mitigation techniques applied to web applications.
  • Experience with security engineering, identity engineering security applications engineering and/or security infrastructure engineering
  • Experience establishing & maintaining relationships with individuals at all levels of the organization, in the business community & with vendors.
  • Willing to travel up to/at least 10% of the time for business purposes (within state and out of state).

Preferred Qualifications
  • Bachelor's degree in Computer Science, Information Technology, Engineering or Mathematics.
  • Experience using time management skills such as prioritizing/organizing and tracking details and meeting deadlines of multiple projects with varying completion dates.
  • Experience analyzing and reporting data in order to identify issues, trends, or exceptions to drive improvement of results and find solutions.
  • CISSP or CISA Certification.
  • Prior experience implementing Web Application Firewall design for large scale environments to be transitioned to a RunOps program.
  • Experience providing Tier-3 support and fine-tuning system parameters and configuration to optimize performance and ensure security utilizing Azure WAF.
  • Knowledge and experience with both automated tools and manual techniques used to identify web application and web service vulnerabilities and attack methods including the OWASP top 10.
  • Core understanding of common attack vectors such as buffer overflows, SQL injection, CSRF, XSS, with ability to explain to both software developers and management.
  • Skills and knowledge in application security technologies including Integrated, Dynamic and Static Application Security.
  • Expertise in penetration testing applications.
  • Knowledge of networking protocols.
  • Strong collaboration skills with Application Security and Development teams to analyze, tune, and evaluate security monitoring effectiveness.
  • Expertise in the strategy, design, administration, and implementation of Azure Web Application Firewall and Application Security.
  • Working knowledge in cloud-based technologies.
  • Strong knowledge in software coding and/or software quality assurance.
  • Solid grasp of cloud foundations such as security, logging, monitoring, ingress/egress, WAF, service control policies, etc.
  • Must fully understand Microsoft best practices and be able to provide guidance on how cloud solutions are deployed in multiple environments.
  • Strong knowledge on cloud security best practices and cloud security guidance.
An employee in this position can expect a salary/hourly rate between $71,175 and $181,920 plus bonus pursuant to the terms of any bonus plan, if applicable, will depend on experience, seniority, geographic locations, and other factors permitted by law. To review benefits, please click here [Register to View]

An Equal Opportunity Employer, including disability/veterans

About Walgreens Boots Alliance

Walgreens Boots Alliance (Nasdaq: WBA) is a global leader in retail pharmacy, impacting millions of lives every day through dispensing medicines, and providing accessible, high-quality care. With more than 170 years of trusted healthcare heritage and innovation in community pharmacy, the company is meeting customers’ and patients’ needs through its convenient retail locations, digital platforms and health and beauty products.

Including equity method investments, WBA has a presence in more than 25 countries, employs more than 450,000 people and has more than 21,000 stores.

WBA’s purpose is to help people across the world lead healthier and happier lives. The company is proud of its contributions to healthy communities, a healthy planet, an inclusive workplace and a sustainable marketplace. WBA is a participant of the United Nations Global Compact and adheres to its principles-based approach to responsible business.

WBA is included in FORTUNE’s 2021 list of the World’s Most Admired Companies. This is the 28th consecutive year that WBA or its predecessor company, Walgreen Co., has been named to the list.

More company information is available at