Web Application Firewall (WAF) Security Engineer

Web Application Firewall (WAF) Security Engineer

Posted 2 weeks ago by GIOS Technology

Apply
Negotiable
Undetermined
Remote
United Kingdom
Apply
Akamai Amazon Web Services (AWS) Application Firewall Application Programming Interface (API) Application Security Cloud Computing Cloud Technology Continuous Integration and Continuous Delivery Cyber Security DevSecOps Ethical Hacking Firewall Google Cloud Platform (GCP) Management Splunk Web Applications Web Application Security Web Traffic Wireshark

Summary: The Web Application Firewall (WAF) Security Engineer role focuses on managing and tuning WAF systems to enhance web application security. The position requires hands-on experience in SOC/CSIRT, application security, or ethical hacking, with a strong emphasis on reducing false positives and improving rule accuracy. Proficiency in analyzing web traffic and familiarity with major WAF platforms is essential for success in this role. The position is remote and requires a solid understanding of web and API security vulnerabilities and mitigation techniques.

Key Responsibilities:

  • Manage and tune WAF systems for optimal performance and security.
  • Analyze web traffic using tools like Splunk and Wireshark.
  • Reduce false positives and improve rule accuracy in WAF configurations.
  • Demonstrate expertise in web application security and ethical hacking.
  • Work with at least three major WAF platforms (e.g., Akamai, F5, AWS WAF, GCP Cloud Armor).
  • Understand and mitigate web and API security vulnerabilities.
  • Implement CI/CD and DevSecOps practices.

Key Skills:

  • WAF management
  • Cybersecurity
  • DevSecOps
  • API security vulnerabilities
  • Wireshark
  • WAF platforms

Salary (Rate): undetermined

City: undetermined

Country: United Kingdom

Working Arrangements: remote

IR35 Status: undetermined

Seniority Level: undetermined

Industry: IT

Detailed Description From Employer:

I am hiring for Web Application Firewall (WAF) Security Engineer

Location: Remote

Hands-on experience in WAF management, tuning, and web application security. Strong background in SOC/CSIRT, Application Security, or Ethical Hacking roles. Demonstrated expertise in reducing false positives and improving rule accuracy. Proficiency in analyzing web traffic using tools like Splunk, Wireshark, or custom scripts. Experience with at least 3 major WAF platforms (e.g., Akamai, F5, AWS WAF, GCP Cloud Armor). Strong understanding of web and API security vulnerabilities and mitigation techniques. Solid knowledge of CI/CD and DevSecOps practices.

Key Skills: WAF management / Cybersecurity / DevSecOps / API security vulnerabilities / Wireshark / WAF platforms

Apply
Similar Jobs
Loading data...