Description
Remote during contract (hybrid if hired FTE)
PDT timezone
3 "must haves" on the resume?
Background in Security, hands on experience managing WAF/RASP solutions (edge CDN based, agent based and traditional appliance based WAF), awareness of CSPs like AWS and Azure
Does the role require a specific certification, if so which ones?
Any cybersecurity certifications are a plus but not required
Minimum years of experience:
5 years’ experience in Cybersecurity specifically Network Security, Threat detection and analysis, WAF
Job Description: We are seeking a highly skilled and experienced Web Application Firewall (WAF) Engineer to join our Trust Information Security team. The ideal candidate will have a strong background in CDN-based firewalls and expertise in Fastly Signal Sciences, AWS WAF, Imperva, and other similar technologies. This role will involve developing and implementing security standards and requirements to protect our web applications from various threats.
Responsibilities:
Design, implement, and maintain Web Application Firewall (WAF) solutions using Fastly Signal Sciences, AWS WAF, Imperva, and other CDN-based firewalls.
Develop and enforce security standards and requirements for web applications to ensure robust protection against threats.
Monitor and analyze security alerts and logs to identify potential threats and vulnerabilities.
Collaborate with development and operations teams to integrate security controls and best practices into the software development lifecycle.
Conduct regular security assessments and audits to ensure compliance with industry standards and policies.
Provide technical guidance and support for security-related incidents and investigations.
Stay updated with the latest security trends, vulnerabilities, and technologies to continuously improve the security posture of the organization.
Create and maintain documentation related to WAF configurations, policies, and procedures.
Participate in security training and awareness programs to educate employees on best practices and emerging threats.
Requirements:
Bachelor''s degree in Computer Science, Information Security, or a related field.
Proven experience in implementing and managing WAF solutions, including Fastly Signal Sciences, AWS WAF, Imperva, and other CDN-based firewalls.
Strong understanding of web application security principles and best practices.
Experience with security standards and frameworks such as OWASP, NIST, and ISO.
Proficiency in scripting and automation tools (e.g., Python, Bash) to streamline security operations.
Excellent analytical and problem-solving skills.
Strong communication and interpersonal skills to effectively collaborate with cross-functional teams.
Relevant certifications such as CISSP, CEH, or AWS Certified Security Specialty are a plus.
Preferred Qualifications:
Experience with cloud security and DevSecOps practices.
Knowledge of network security and threat intelligence.
Familiarity with security information and event management (SIEM) solutions.
- **Only those lawfully authorized to work in the designated country associated with the position will be considered.**
- **Please note that all Position start dates and duration are estimates and may be reduced or lengthened based upon a client’s business needs and requirements.**
Rose is an assembly of people grounded in honesty, truth and dignity for all of its employees and contractors.
Samba, Consultant
Thanks for the opportunity. If in the future I ever need a job, I would like to work for Rose International.
David, Consultant
The interactions that I have had with your representatives have always been prompt and very professional. I am very pleased and impressed with your company and services.
Sioe, Consultant
It was great working for Rose International. Everyone was extremely helpful.
Rosann, Consultant
It is a great pleasure being a part of the Rose International Team.
Toni, Consultant
EMPLOYEE COMMENTS