Cyber Assurance Lead L3

Job Description

Job Summary Seeking a WAF Management and Governance Lead to oversee the security, operational integrity, and compliance of Web Application Firewall (WAF) systems. The ideal candidate will be responsible for ensuring robust protection against web-based threats, optimizing security policies, and governing WAF implementations across enterprise environments. WAF Administration Lead the deployment, configuration, and ongoing management of Web Application Firewall solutions. Security Policy Development Define, implement, and refine WAF rulesets to mitigate risks such as SQL injection, cross-site scripting (XSS), and other web threats. Governance & Compliance Ensure WAF policies align with regulatory and industry security frameworks (e.g., OWASP, PCI-DSS, GDPR). Threat Monitoring & Mitigation Collaborate with cybersecurity and internal teams to analyse threat patterns and adjust WAF settings for optimal protection. Performance Optimization Evaluate WAF impact on application performance and optimize configurations without compromising security. Incident Response Support investigation and response to security incidents related to web applications. Stakeholder Collaboration Work with IT, security, and application development teams to integrate WAF security seamlessly. Reporting & Metrics Establish key security performance indicators and provide regular governance reports. Experience 9+ years in web security, including WAF deployment and governance. Technical Expertise Hands-on experience with leading WAF platforms (e.g., AWS WAF, F5, Cloudflare WAF, Akamai Kona Security). Security Knowledge Strong understanding of OWASP top 10 threats, secure coding practices, and web security protocols. Knowledge of DevSecOps practices and security automation. Compliance Awareness Familiarity with regulatory requirements impacting web security governance. Communication Ability to convey security risks and technical details to non-security stakeholders effectively. Certifications such as CISSP, CEH, CCSP, AWS Security Specialty or equivalent. Experience in DevSecOps, automation, and integrating WAF into CI/CD pipelines. Knowledge of cloud security architectures and API security governance. Reinvent your world.We are building a modern Wipro. We are an end-to-end digital transformation partner with the boldest ambitions. To realize them, we need people inspired by reinvention. Of yourself, your career, and your skills. We want to see the constant evolution of our business and our industry. It has always been in our DNA - as the world around us changes, so do we. Join a business powered by purpose and a place that empowers you to design your own reinvention. Come to Wipro. Realize your ambitions. Applications from people with disabilities are explicitly welcome.