WAF Admin ( CLoudflare/Akamai)

Key Responsibilities:

• WAF Administration:

• Configure and maintain Cloudflare / Akamai WAF rulesets, including OWASP Core Rules, custom rules, rate limiting, and firewall policies.

• Tune WAF policies to reduce false positives while maintaining strong protection.

• Monitor WAF logs and analytics to identify and respond to threats in real-time.

• Security Operations:

• Collaborate with SOC and incident response teams to investigate and mitigate web-based attacks.

• Implement and manage Cloudflare / Akamai Bot Management, DDoS protection, and API Shield features.

• Maintain secure configurations across Cloudflare / Akamai services including DNS, CDN, and Zero Trust.

• Automation & Integration:

• Integrate Cloudflare / Akamai logs with SIEM platforms (e.g., Splunk) for centralized monitoring and alerting.

• Develop scripts and tools to streamline WAF operations and reporting.

• Compliance & Reporting:

• Ensure WAF configurations align with regulatory requirements (e.g., PCI-DSS, FFIEC, GDPR).

• Generate reports for audits, risk assessments, and executive briefings.

• Maintain documentation of WAF policies, change history, and incident response actions.

• Strategic Leadership:

• Serve as the subject matter expert for Cloudflare / Akamai security services.

• Advise application and infrastructure teams on secure deployment practices.

• Stay current with Cloudflare / Akamai product updates, threat intelligence, and industry trends.

Qualifications:

• Education & Experience:

• Bachelors degree in Cybersecurity, Computer Science, or related field.

• 5+ years of experience in web application security, with 3+ years managing Cloudflare / Akamai WAF.

• Technical Skills:

• Deep understanding of Cloudflare / Akamai WAF, Firewall Rules, Rate Limiting, and Bot Management.

• Experience with Terraform, Python, or other scripting languages for automation.

• Familiarity with OWASP Top 10, HTTP protocols, and application-layer attack vectors.

• Knowledge of CDN, DNS, TLS, and Zero Trust architectures.

• Certifications (Preferred):

• Cloudflare / Akamai Certified Professional (if available)

• GIAC GWAPT, CEH, or other relevant security certifications

Soft Skills:

• Strong analytical and troubleshooting skills.

• Excellent communication and collaboration abilities.

• Ability to work independently and lead cross-functional initiatives.