Web Application Firewall Engineer

Duration: Permanent

• Should have experience with web-based attacks, OWASP Top 10 web vulnerabilities, web application testing with tools like Zed Attack Proxy, and extensive knowledge of networking protocols.
• Approves system designs and functions as a project lead as required.
• Understanding on overall Security Architecture and App security, modules of WAF like (DNS related changes, DDOS protection, BOT protection, etc.)
• Hands-on experience on App onboarding on the WAF and policy configs for the inbound traffic protection.
• Participate in technical design activities to ensure a sound design and any infrastructure impact is anticipated.
• Awareness of mainstream operating systems and a wide range of security technologies including network firewall, IPS, and web proxy.
• Configuring and deploying the WAF to ensure that it effectively filters and monitors incoming web traffic. This involves defining rules, policies, and security settings tailored to the specific needs of the web applications you are protecting.
• WAF rules define how incoming traffic is evaluated and filtered.
• Working closely with developers and application teams is essential to understand the functionality and behaviour of web applications.
• Work closely with Development, QA, Operations, InfoSec, and design engineers to ensure security requirements are met and web-applications are adequately protected from cyber-attacks.
• Developing WAF incident response plans.
• Develop, maintain, test, and troubleshoot cloud web application firewall and rulesets. Should have hands on experience with cloud web application firewalls at all the major cloud services providers like Amazon, Azure, and Google.

Skill : Web Application Firewall Engineer

Shift: Day