| New Role::: WAF Security Engineer at Charlotte, North Carolina, USA |
| Email: [email protected] |
| From: Amandeep Singh, Amber IT Staffing [email protected] Reply to: [email protected] Job Title::: WAF Security Engineer Location::: Charlotte, NC (On-Site) Duration::: 12 Months Contract Start Date::: ASAP Job Description: As a WAF Security Engineer , you will be responsible for designing, implementing, and managing Web Application Firewalls (WAFs) to protect our applications from various threats and vulnerabilities. You will work closely with our development and IT teams to ensure that our web applications remain secure, performant, and resilient against attacks. Key Responsibilities: WAF Implementation & Management: Design, deploy, and configure WAF solutions (such as AWS WAF, Azure WAF, Akamai, GCP or other enterprise WAF platforms) to safeguard web applications. Security Monitoring: Monitor and analyze WAF logs and alerts to detect and respond to potential security incidents and vulnerabilities. Rule Creation & Tuning: Develop and fine-tune WAF rules and policies to effectively block malicious traffic while minimizing false positives. Incident Response: Actively participate in the incident response process, including investigating, mitigating, and resolving security incidents related to web applications. Vulnerability Assessment: Collaborate with security and development teams to identify vulnerabilities in web applications and recommend appropriate WAF configurations to address them. Documentation & Reporting: Maintain comprehensive documentation of WAF configurations, policies, and procedures. Generate regular reports on security incidents and WAF performance. Collaboration: Work closely with DevOps, IT, and development teams to integrate WAF solutions into the application development lifecycle and deployment processes. Continuous Improvement: Stay up-to-date with the latest security threats, WAF technologies, and best practices. Continuously improve WAF configurations and strategies to address emerging threats. Offer subject matter expert (SME) support in various security testing areas, including WAF Proofs of Value (PoV/PoC). Contribute security and technical knowledge alongside organizational skills to assist Cyber teams with effective WAF SIEM Use Cases Qualifications: Education: Bachelors degree in Computer Science, Information Security, or a related field, or equivalent work experience. Experience: 10 years of experience in information security with a focus on web application firewalls and security solutions. Technical Skills: Experience with popular WAF solutions (e.g., AWS WAF, Azure WAF, Akamai, Imperva, F5, etc.). Strong understanding of web application security concepts, including OWASP Top Ten vulnerabilities. Proficiency in analyzing WAF logs and configuring security rules and policies. Knowledge of scripting languages (e.g., Python, Bash) for automation and custom WAF rule development. Extensive experience with web-based attack methodologies, including knowledge of tools, payloads, exploits, and countermeasures. Knowledgeable in networking, cloud firewalls, and web technologies. Certifications: Relevant certifications such as CISM, CEH, AWS or similar are preferred. Keywords: information technology ffive North Carolina New Role::: WAF Security Engineer [email protected] |
| [email protected] View all |
| Thu Oct 10 18:13:00 UTC 2024 |