Network Engineer- WAF

Summary: The role of Network Engineer with a focus on WAF involves implementing and managing WAF solutions across multi-cloud environments for an insurance client on a 6-month contract. The position requires strong technical expertise in WAF technologies and collaboration with engineering teams to ensure security and compliance. The role is hybrid, requiring occasional travel to London, and is classified as inside IR35.

Key Responsibilities:

• Implement and operate WAF solutions across multi-cloud environments (Azure Front Door, Application Gateway, AWS WAF, GCP equivalents), ensuring consistent protection for all internet-facing applications
• Configure and optimise WAF policies (managed rule sets, custom rules, bot protection, request inspection) to prevent threats
• Drive remediation of WAF gaps and misconfigurations, including transitioning services from detection to prevention mode and enforcing baseline guardrails
• Collaborate with application and cloud engineering teams to onboard applications to WAF, troubleshoot false positives, and ensure minimal business disruption
• Integrate WAF telemetry into SIEM/monitoring platforms to enable visibility, alerting, and incident response workflows
• Support WAF deployment at scale, contributing to rollout plans to achieve full coverage of external-facing services
• Contribute to security guardrails and standards, ensuring WAF implementations align with enterprise policy and Zero Trust principles

Key Skills:

• 3- 5 years hands-on experience implementing WAF technologies within Azure (Azure WAF/Front Door/App Gateway)
• Ideally similar experience in other cloud environments (Azure WAF/Front Door/App Gateway, AWS WAF, GCP Cloud Armor)
• Strong understanding of HTTP/S protocols and Layer 7 security controls (how WAF protects web traffic vs other network layers)
• Experience with WAF policy tuning and optimisation, including managing rule sets, handling false positives, and improving protection posture
• Familiarity with cloud networking constructs (VNets/VPCs, routing, load balancers, private endpoints, segmentation)
• Knowledge of common web application attack techniques (eg OWASP Top 10: injection, XSS, API abuse) and mitigation approaches
• Experience working with infrastructure-as-code and automation tools (Terraform, ARM, CloudFormation) for WAF deployment and policy management
• Ability to analyse logs and security telemetry (WAF logs, SIEM integration) to identify threats and drive remediation
• Exposure to firewalls, DDoS protection, and broader network security controls in cloud environments
• Strong collaboration skills, working with AppDev, Cloud Engineering, and Security teams to enforce controls without blocking delivery

Salary (Rate): undetermined

City: London

Country: United Kingdom

Working Arrangements: hybrid

IR35 Status: inside IR35

Seniority Level: undetermined

Industry: IT

Detailed Description From Employer:

Network Engineer- WAF

We are currently recruiting for a Network Engineer with strong WAF experience to join one of our Insurance clients on a 6-month contract.

Inside ir35

Hybrid - adhoc travel to London

The Role

• Implement and operate WAF solutions across multi-cloud environments (Azure Front Door, Application Gateway, AWS WAF, GCP equivalents), ensuring consistent protection for all internet-facing applications
• Configure and optimise WAF policies (managed rule sets, custom rules, bot protection, request inspection) to prevent threats
• Drive remediation of WAF gaps and misconfigurations, including transitioning services from detection to prevention mode and enforcing baseline guardrails
• Collaborate with application and cloud engineering teams to onboard applications to WAF, troubleshoot false positives, and ensure minimal business disruption
• Integrate WAF telemetry into SIEM/monitoring platforms to enable visibility, alerting, and incident response workflows
• Support WAF deployment at scale, contributing to rollout plans to achieve full coverage of external-facing services
• Contribute to security guardrails and standards, ensuring WAF implementations align with enterprise policy and Zero Trust principles

Experience

• 3- 5 years hands-on experience implementing WAF technologies within Azure (Azure WAF/Front Door/App Gateway)
• Ideally similar experience in other cloud environments (Azure WAF/Front Door/App Gateway, AWS WAF, GCP Cloud Armor)
• Strong understanding of HTTP/S protocols and Layer 7 security controls (how WAF protects web traffic vs other network layers)
• Experience with WAF policy tuning and optimisation, including managing rule sets, handling false positives, and improving protection posture
• Familiarity with cloud networking constructs (VNets/VPCs, routing, load balancers, private endpoints, segmentation)
• Knowledge of common web application attack techniques (eg OWASP Top 10: injection, XSS, API abuse) and mitigation approaches
• Experience working with infrastructure-as-code and automation tools (Terraform, ARM, CloudFormation) for WAF deployment and policy management
• Ability to analyse logs and security telemetry (WAF logs, SIEM integration) to identify threats and drive remediation
• Exposure to firewalls, DDoS protection, and broader network security controls in cloud environments
• Strong collaboration skills, working with AppDev, Cloud Engineering, and Security teams to enforce controls without blocking delivery

Guidant, Carbon60, Lorien & SRG - The Impellam Group Portfolio are acting as an Employment Business in relation to this vacancy.