WAF Engineer - SIEM

Job Description for WAF :

Role : WAF - L2

Experience : 3 to 6 years of experience working on Network Security

Location : Mumbai

- Overall 3-6 years experience in network security with at least 3 years in managing WAF solutions

- Proficiency with management WAF

- Experience in working with Windows, Linux, Unix environments

- Hands-on experience in commissioning and Implementation of WAF solutions and integrating with various management and authentication authorization tools (email, AD, IAM, SIEM)

- Experience in automating processes using scripting and configuring for integration with other tools.

- Experience in managing policies and exceptions

- Experience in server traffic management, analysis, and troubleshooting tools

- Product knowledge of WAF solution.

- Incident, problem, service request management, change management, configuration management &capacity management of WAF Setup

- Proactively utilize network monitoring tools to isolate events before service degradation occurs

- Supporting incident monitoring and incident analysis/response initiatives

- Coordinate with users to ensure timely and satisfactory resolution for any trouble tickets, troubleshooting layers 1, 2, and 3 of the OSI Model.

- Troubleshooting network, transport, session, presentation and applications layers

- Conducting daily performance checks on devices, periodic audits and compliance

- Performing immediate troubleshooting as the situation dictates for any network outages as reported by users, sensors, and/or operational personnel

- Implement, and maintain network security policy, standards, and procedures.

- Deploying and maintaining access and security policies for WAF solutions.

- Maintaining service levels as well as oversight of the day-to-day configuration, administration and monitoring of the network security infrastructure in a 24/7.

- Co-ordination with OEMs for TAC support, RMA, replacement & and reconfiguration of WAF.

- Creating technical documentation, as-built network diagrams, inventory control documentation, and security documentation.

- Co-ordinate helpdesk team, other IT support teams, and application support teams to jointly troubleshoot and fix the high priority/severity incidents.

- Investigate, isolate, and resolve WAF incidents with RCA.

- Knowledge of security best practices with respect to WAF, application security is preferred.

- Implement WAF alerts, rules and policies as per requirement.

- Create and update SOP/Run book and update knowledgebase in ITSM tools.

- Work to automate and integrate the tools with REST API/SDK with security dashboard, and Infosec tools (AD, IDAM, PAM, SIEM, SOAR, etc.)

- Closure of compliance and audit points as per the agreed timelines.

- Patch updates, and upgradation as per the Bank's compliance and audit requirements

- Should be able to Lead and mentor L1 & L2 engineers team.

- Must be comfortable in networking, SQL and application layer security

- Excellent verbal and written communication skills

- Demonstrated success in managing, analyzing, and solving complex issues

- Ownership of their technology.

- Ensure Ticket closure in SLA and follow up for escalated tickets

- SLA reporting for respective technology.