Job Description
Role: Web Application Firewall SME
Duration: 6 Months
Location: Leeds
The Role
Key responsibilities:
* Implementation, Design and Architect of complex WAF solutions for large scale customers across various industry verticals
* WAF hands-on technical responsibilities (Cloudflare and Azure)
* WAF policy (AppGW, Azure FrontDoor)
* Baseline set of rules
* Troubleshooting WAF logs (false positives)
* Customer facing vs. internal APIs
* Azure WAF vs. Cloudflare WAF
* External DNS
* Domain Registration & Management
* Ownership of the Apex domain and sub-domains
* DNS (C, A,MX record)
* Geolocation routing rules
* 3rd party managed hosting and DNS routing
Should we have a single ‘Frontdoor’ for onboarding new domains/sites i.e. processes & Op model designed to deliver value rather than fitting around existing comms structure of the organization
* Public Facing APIs
* Securing customer facing APIs
* Rotation of secrets
* Good knowledge OWASP and configure the WAF rule align with OWASP
* Good knowledge in Application layer security
Key skills/knowledge/experience:
• Cloudflare WAF
• Azure WAF
• Frontdoor and App Gateway
• OSWAP
• Cyber Security Standard implementation in WAF for RETAIL industry
• CDN
• DNS
• Application Layer Security
• 4+ years in Cloudflare WAF hands-on
• 4+ years in Azure WAF hands-on
• 2+ years in CDN design
If you are interested and have the relevant experience, please apply promptly and we will contact you to discuss further