Web Application Firewall. (100% Remote)

We are seeking a highly skilled and experienced Web Application Firewall ( WAF ) Engineer to join our client's team. The ideal candidate should have 5 6 years of experience and a strong background in CDN-based firewalls , with expertise in Fastly Signal Sciences , AWS WAF , Imperva , and similar enterprise-level security technologies . This role involves designing, implementing, and enforcing security measures to protect web applications against evolving cyber threats in a Fortune 500 environment.

Key Responsibilities :

Architected, deployed, and managed WAF solutions using Fastly Signal Sciences, AWS WAF, Imperva, and other CDN-based security platforms .

Establish and enforce security standards and policies to protect web applications from threats such as DDoS attacks, SQL injection, cross-site scripting (XSS), and other vulnerabilities.

Monitor and analyze security alerts, logs, and traffic patterns to detect anomalies and potential security incidents .

Collaborate with engineering, DevOps, and cybersecurity teams to integrate security best practices into the software development lifecycle (SDLC) .

Conduct regular security assessments, penetration tests, and audits to ensure compliance with industry-leading security frameworks such as OWASP, NIST, and ISO 27001 .

Lead incident response efforts , including root cause analysis and remediation of security threats affecting web applications.

Continuously research emerging threats, vulnerabilities, and security trends to enhance the organization's security posture .

Develop and maintain comprehensive documentation for WAF configurations, security policies, and operational procedures .

Drive security awareness initiatives by training employees and stakeholders on web application security best practices.

Required Qualifications :

Bachelor's degree in Computer Science, Cybersecurity, Information Security, or a related field.

Proven experience designing, implementing, and managing WAF solutions at an enterprise scale, including Fastly Signal Sciences, AWS WAF, Imperva, or equivalent technologies.

Strong understanding of web application security principles, threat modeling, and risk assessment .

Expertise in security standards and regulatory frameworks such as OWASP, NIST, CIS, ISO 27001, PCI DSS, and GDPR .

Proficiency in scripting and automation (e.g., Python, Bash, PowerShell ) for security operations and threat mitigation .

Hands-on experience with SIEM, threat intelligence platforms, and security analytics tools .

Exceptional problem-solving and analytical skills , with the ability to work in high-pressure security environments.

Strong communication and leadership skills to effectively collaborate with cross-functional teams and executive stakeholders .

Industry-recognized security certifications such as CISSP, CEH, AWS Certified Security Specialty, GIAC GWAPT, or equivalent are highly preferred.

Preferred Qualifications :

Experience with cloud security and DevSecOps practices..

Knowledge of zero trust security models and microservices security architectures .

Familiarity with machine learning-based security analytics for advanced threat detection.

Interested candidates who meet the qualifications are encouraged to send their detailed resumes to hr@techedinlabs.com