Job Summary:
This Security Firewall Engineer is responsible for ensuring the effective implementation, configuration, and maintenance of Web Application Firewalls (WAFs) to protect organizational assets from cyber threats. They collaborate with various teams to deploy and manage WAF infrastructure, develop and enforce WAF policies, and provide support to application teams. This role requires a deep understanding of security principles, strong technical skills, and the ability to troubleshoot complex issues.
Essential Duties and Responsibilities: Deploy, configure, and maintain WAF infrastructure in collaboration with application teams. Develop and enforce standardized WAF policies and rulesets across the organization. Monitor WAF performance and investigate and respond to security incidents. Collaborate with stakeholders to understand application requirements and ensure WAF configurations align with security standards. Provide guidance and support to application teams regarding WAF best practices and troubleshooting.Create documentation, including implementation plans and operational procedures, for WAF-related processes. Stay current with emerging threats and industry best practices related to WAF technologies. Education and Experience: Bachelor's degree in Computer Science, Information Technology, or a related field. Minimum of 5 to 8 years of experience in cyber security, with a focus on web application security and WAF technologies. Relevant certifications such as Certified Information Systems Security Professional (CISSP) or Certified Cloud Security Professional (CCSP) preferred. Experience with WAF solutions such as Imperva, AWS WAF, or Azure WAF. Skills and Abilities: Strong understanding of web application security principles and common vulnerabilities (e.g., OWASP Top 10). Proficiency in deploying and configuring WAF solutions in both on-premises and cloud environments. Familiarity with scripting languages (e.g., Python, PowerShell) for automation tasks related to WAF management. Excellent analytical and problem-solving skills, with the ability to troubleshoot complex issues related to WAF configurations and policies. Effective communication skills, with the ability to collaborate with cross-functional teams and convey technical concepts to non-technical stakeholders. Additional Requirements: Experience with infrastructure-as-code tools such as Terraform or Ansible is a plus. Knowledge of version control systems (e.g., Git) and project management tools (e.g., Jira) is beneficial. Willingness to stay updated on the latest trends and developments in cyber security and WAF technologies through continuous learning and professional development.
