Job title - Lead Manager WAF
Location - Noida
About the Role -
- Implement and Operate Imperva WAF, API Security, Advanced BOT Protection and RASP
- The role is accountable for building core competency and capability to deliver InfoSec operations capabilities that have no single point of failure
- The WAF(Radware) technical Lead position will be part of the Enterprise Information Security, Engineering Team and responsible for Web Application Firewall security solutions across the enterprise.
- Extensive knowledge of RadWare / Cloudflare / F5 Web Application Firewall configurations and management. (Radware and Cloudflare is preferred)
- Solid understanding of web applications, web servers, application firewalls, frameworks and protocols with respect to web application development, deployment and operation.
- Responsible for planning, design, deployment, configuration, upgrading and supporting of the WAF Solution.
- Should be able to assist the team in fixing the vulnerabilities reported in the scan report.
- Perform day to day's activities like signature update, OEM support case lock, customer support ticket handling etc.
- Experience in reviewing and analyzing log files and data correlation.
- Experience in exploiting web apps and web services security vulnerabilities including cross-site scripting, cross-site request forgery, SQL injection, DoS attacks, XML/SOAP, and API attacks.
- Excellent understanding of OWASP Risks, Vulnerabilities and Mitigation Mechanisms.
- Well versed in system exploits (e.g. Buffer Overflows, PTH attacks, windows authentication framework etc.)
- Excellent understanding of DDoS techniques and mitigation mechanisms.
- Testing, documenting and certifying new product versions, capabilities and bug fixes.
- Excellent Troubleshooting with Root Cause analysis (RCA) skills.
- Can lead a team of security Engineers, Act as mentor & conduct knowledge sharing session with the team.
- Excellent communication & interaction skills with the enterprise and support teams.
- Engineers, configures, deploys, and maintains Web Application Firewall solutions
- Monitors systems activities and fine tunes system parameters and configuration to optimize
performance and ensure security of systems.
- Creates WAF rules/signatures to mitigate threats and implements best practices
- Develop, maintain, test, and troubleshoot cloud web application firewalls and rulesets. The ideal
candidate should have hands on experience with cloud web application firewalls at all the
major cloud services providers
- Develops advanced alerts/reports to meet the requirements of key stakeholders
- Collaborates with key stakeholders within Information Security and Engineering teams to
- Develop specific use cases to address specific business needs
- Works extensively with different stakeholders for tuning WAF policies or creating custom
signatures
Deliverables -
- Be accountable for risk based use case creation, implementation and testing for Security Operations. The same should be based on an approved framework and take into consideration the organizational threats and vulnerabilities
- Continuous evolution of SOC Use cases incorporating known vulnerabilities from assessments and pen testing, divisional security reviews, vendor managed facilities security assessments.
- Integrate key technologies like Darktrace, Palo Alto, WAF and Crowdstrike to get visibility of incidents
- Develop and manage Incident Response process for quick closure of incidnets
- Keep abreast of emerging security products and technologies, evaluate the most appropriate ones and champion their induction.
Major Challenges :
- Incumbent needs to appreciate the challenges of functioning in an environment with multiple stakeholders and partners wherein changes need to be implemented in circumstances outside their immediate circle of influence. Leadership skills and drive are essential to ensure effectiveness.
- Indirectly manage the activity of a number of technical and business resources to ensure that Information Security Standards are imbedded products and solutions.
- Monitor changes in the security solutions and products as well as changes in the telecommunication devices and products landscape to ensure that they has an efficient security architecture to meet corporate objectives .
- New and evolving technologies bring in new risks . This needs to be addressed through early engagement and close interaction with partners.
Key Competencies -
- Demonstrated Core Competence in the following areas:
- Imperva WAF
- API Security
- Advanced BOT Protection
- Application Security
- Firewalls and Perimeter Protection Techniques
- Multi-cycle SIEM implementation and operation
- Log aggregation and behavior anomaly detection
- Leadership qualities to influence stakeholders and take charge of investigations
- Teamwork and collaboration
- Attention to details, ability to see the wood for the trees.
- Ability to document and explain technical details in a concise & understandable manner.
- Capable of managing project tasks individually and as a team
Educational Level
Must have:
Masters degree in Computer Science, Telecommunications or equivalent
CISSP, certification
Working Experience
Must have:
7+ year experience on aforesaid domains.
