WAF Security Engineer - OWASP/SIEM

Key Responsibilities :

- Deploy, configure, and maintain Imperva WAF solutions in on-premises and cloud environments.

- Develop and fine-tune security policies to protect against OWASP Top 10 vulnerabilities, DDoS attacks, and other web-based threats.

- Monitor WAF logs and alerts to identify and respond to suspicious activities and security incidents.

- Optimize WAF performance to minimize false positives and maintain effective threat mitigation.

- Collaborate with development, network, and security teams to integrate WAF protections within application delivery and CI/CD pipelines.

- Conduct security assessments and vulnerability analysis for web applications and provide recommendations for remediation.

- Document configurations, policies, and incident reports to support audits and compliance requirements.

Requirements :

- Strong knowledge of web protocols (HTTP/S, SSL/TLS), APIs, and common web vulnerabilities.

- Experience with log analysis and security incident monitoring tools (SIEM).

- Familiarity with scripting languages (Python, PowerShell, Bash) for automation is a plus.

- Excellent problem-solving, communication, and collaboration skills.

- Relevant certifications such as Imperva Certified WAF Specialist, CISSP, or CEH are advantageous