110 Waf Jobs - Page 5

Cloud Security Lead/Architect(L3) Experience architecting security in cloud platforms like AWS, Azure. Experience creating High Level Designing (HLD) - Low-level Designing (LLD), reviewing the technical requirement document (TRD) for cloud security. Define data security policies through AIP,DLP,Etc Thereat hunting experiences with XRD,EDR,SIEM tools. Experience integrating cloud components with SIEM Planning, implementing, designing and reviewing security policies and other compliances. Experience leading SecOps teams. Guide the team on appropriate prioritization of qualified incidents, Notification through standard communication channel and opening of corresponding incident tickets on Ticketing platform Provide subject matter expertise on information security architecture and systems engineering to other IT and business teams Leading IR, Escalations towards closure. Responsible for automating security controls, data and processes to provide improved metrics and operational support Mandatory certifications on Azure,AWS platforms,CCSP,etc. Secondary skillset in Google cloud is Preferred.

Role & Responsibilities:- Able to stay on scope and take responsibility for meeting milestones and deadlines Proactive with suggestions for improvements; thinks laterally; receptive to new ideas Work closely with a dynamic group of people in various time zones You are working on improving our processes for continuous integration, continuous deployment, automated testing, and release management. You strive for the highest standards in terms of security. Developing, maintaining, and supporting azure infrastructure, and system software components Using your understanding of the different azure tech components to support developers with good advice on how to build solutions. Ownership of overall architecture in azure Ensure application performance, uptime, and scale, maintaining high standards of code quality and thoughtful design Provide technical leadership for CI/CD processes design implementation and process orchestration Define and document best practices and strategies regarding application deployment and infrastructure maintenance Monitor and report on compute/storage costs and forecast Manage and orchestrate deployment of a .NET microservices based solution Preferred Candidate's profile:- English language proficiency Strong written and verbal communication skills Solid experience of working with a wide array of azure components. 3+ years of experience in azure DevOps, CI/CD, configuration management, and test automation 2+ years of experience in; IAC, ARM, YAML, Azure PaaS, Azure Active Directory, Kubernetes, Application insight 2+ years of experience in Bash Development in Azure, including Function Apps, WebApp, etc. Experience of building and maintaining large scale SaaS solutions Wide database experience with SQL, PostgreSQL, NoSQL, Redis databases Experience in infrastructure as code automation (ARM, Terraform or similar) Experience in application and system monitoring Understanding of security, network, virtualization, load balancer, storage, and databases. Understanding of security concepts, best practices and how to apply them, such as TLS/SSL, and data encryption Experience with Helm charts Experience with docker-compose Expertise in building docker based services Experience in Linux system management Experience with logging & visualization tools such as ELK stack, Prometheus, Grafana Nice to have:- Experience in azure Data Factory Experience in at least one programming language (e.g., Python, C#) Experience with WAF Experience with streaming data e.g., Kafka Knowledge of big data/analytics Experience debugging complex, multi-server service in a high availability production environment.

Experience : Overall 6-8 years in Network management Application & Network Security Expertise: Strong hands-on experience in Web Application Firewall (WAF) deployment, configuration, and management (e.g., F5 ASM / Imperva / FortiWeb). Experience in Load Balancer (F5 LTM/GTM, Array / Radware ADC) setup, optimization, and troubleshooting. Firewall revamping & migration (e.g., Palo Alto, FortiGate, Cisco Firepower) with a focus on security policies, rule optimization, and risk mitigation. Knowledge of network security concepts (Zero Trust, DDoS protection, SSL/TLS, IDS/IPS). Experience in secure network design (LAN/WAN segmentation, DMZ, VPN, NAC). Cloud & Hybrid Security: Exposure to public cloud security (AWS/Azure/GCP) Security Groups, NACLs, WAF, Cloud Firewalls. Knowledge of container & microservices security (Kubernetes, Docker). Security Monitoring & Automation: Experience with SIEM tools (Splunk / QRadar / ELK / RSA) for threat detection. Familiarity with automation tools (Ansible / Terraform) for security policy management. Incident Response & Compliance: Handling security incidents related to WAF, DDoS, and firewall breaches. Knowledge of compliance standards (PCI-DSS, OWASP Top 10, NIST).Responsible for Incident, Problem, Change Management & Service Request. Should have Good experience in ISP Coordination and Vendor management. Should have Good Experience in Customer Coordination (understand customer needs and providing solutions). Strong in ITIL Process. Key Responsibilities: Design, implement, and manage WAF policies to protect web applications from attacks (SQLi, XSS, etc.). Optimize Load Balancer configurations for performance & security (SSL offloading, rate limiting). Revamp & migrate firewall policies with minimal downtime, ensuring rule cleanup & risk reduction. Conduct security assessments (vulnerability scans, penetration tests) for network & web apps. Work with SOC team to investigate security alerts and improve detection rules. Vendor & ISP coordination for security device upgrades and threat mitigation. Document security policies, configurations, and incident reports. Flexible to extend beyond work hours towards accomplishing assigned tasks. Risk analysis and mitigation Interaction with OEM for Highly Critical technical support. Responsible for Reports & Technical documentation. Should be capable to guide the team/individual on requirement basis. Communicate effectively with Customers Responsible for MIS Reports/ Technical documents Customer/Vendor Co ordination Minimum 2+ years in network security (firewalls, WAF, load balancers) + 2 years in application security. Minimum 2 to 3 Implementation cycle (individual contributor). Hands-on in at least 1 major WAF/LB/Firewall migration/revamp project. Certifications preferred: CCSP, F5-ASM, PCNSE, or equivalent. ITIL/ITSM knowledge for incident & change management Excellent spoken and written English Communication . Strong troubleshooting, analytical, and communication skills Good attitude towards corporate environment. Team player & Mentor to the team. Energetic, self-motivated and self-sufficient in accomplishing tasks. Good analytical and problem solving skills.

The Role Were seeking a security professional with 4-6 years of experience in securing cloud infrastructure, automating compliance processes, and managing risks to support SOC 2, ISO 27001, and GDPR standards. This role emphasizes integrating security into CI/CD pipelines, mitigating vulnerabilities, and ensuring AWS environments maintain the highest security benchmarks. Key Responsibilities Integrate security measures within AWS CI/CD pipelines (e.g., Code Pipeline, Code Build, Code Deploy). Manage Infrastructure as Code (IaC) using Terraform and CloudFormation with encryption and least privilege principles. Deploy and monitor AWS security tools such as GuardDuty, WAF, Shield, Security Hub, and Inspector. Ensure container security across ECS/EKS environments. Automate vulnerability management, patching, and antimalware solutions. Enforce robust IAM policies, SSO, MFA, and secrets management practices. Support SOC 2, ISO 27001, and GDPR compliance audits and risk assessments. Implement and manage monitoring and logging tools like CloudWatch, CloudTrail, and SIEM systems. Develop risk management frameworks and automate incident response processes. Draft, review, and implement cybersecurity and information security policies. Collaborate with stakeholders to ensure readiness of controls for non-security domains such as HR systems, application infrastructure, and data engineering infrastructure. Qualification 4-6 years of experience in securing cloud infrastructure, automating compliance processes, and managing risks to support SOC 2, ISO 27001, and GDPR standards Cloud Security: Proficiency in AWS Security services, including GuardDuty, WAF, Inspector, Security Hub,VPC, IAM Infrastructure as Code: Hands-on experience with Terraform, CloudFormation, AWS Config, Control Tower CI/CD Tools: Familiarity with AWS Code Pipeline, Jenkins, and GitHub for secure software delivery Compliance Frameworks: Strong understanding of SOC 2, ISO 27001, GDPR, NIST, CIS AWS Benchmarks Antimalware Solutions: Experience with TrendMicro, and GuardDuty for threat detection and prevention

Experience Summary: Lead Cyber Security and Management, shall be responsible for ensuring the day-to-day operations and maintenance of the organization's security Posture. Strengthen security posture and ensure the control effectiveness of security systems within an organization. Collaborate with diverse teams to ensure the seamless functioning of the Solutions, optimization of the security infrastructure and controls. Responsibilities: Ensure the day-to-day operations and maintenance of the organization's cyber security infrastructure and controls to protect systems, networks, and data. Troubleshooting of WAF, IPS, SSL Offloader, DAM, API Security etc. Sec DevOps, Review and implement Secure Configuration. Responsible for Firmware upgrade, closing of Audit points/Vulnerabilities, Creation of Security Policies, Fine tuning of exiting Policies, Configuration Backups, Event Log Monitoring, Signature finetuning etc. Provide resolution of issues escalated from L1 and L2. Handling Shift Operations across 24x7. Prepare HLD & LLD, generate configuration template etc for changes. Ensure coverage and effectiveness of Security Solution, Report and Review incidents. Ensure optimum security, availability, performance, and capacity of security solutions under management Ensure & maintain up-to-date documentation - SOPs, Architecture digrams etc. to remove dependency on people Manage configuration changes and deployments according to established change management processes, ensuring minimal disruption and adherence to best practices. Ensure hardening, latest stable version and security patches of security devices and solutions Track EOL/EOS and ensre that there no technology obsolescence. Ensure resolution of incidents and outages, coordinating with internal teams and external vendors to restore service within agreed-upon SLAs. Manage escalations and run the smooth operations of security solutions. Ensure relevant processes are followed for change, incident & daily operations Identify & analyse pain areas in existing security operations & implement improvements Manage operational issues which require design/technical inputs. Ensure compliance with regulatory requirements, security policies, and security frameworks such as ISO 27001, NIST, or CIS Publish the relevant dashboards and status updates. Escalate deviations and violations in a timely manner. Remain current with organizations security policies, latest security advisories/threats, industry best-practices and developments in cyber security, and recommend and implement best practices and technologies to mitigate emerging threats. Education: B.E/ B.Tech, MCA (Computer/IT)/B.Sc (Computer/IT) or degree in relevant field. Experience: Candidate should have 6+ years of experience preferably in Banking and Technology organization Knowledge: Sound experience in managing Application security technologies and operations in a large and complex environment. Should have sound understanding & knowledge of Sec DevOps, Microsegmentation, DDOS Protection Solution, DNS Sec, various Database and Application security technologies & techniques like WAF, NGFW, IPS, SSL Offloader, DAM, API Security etc. Should have hands on experience on WAF, IPS, SSL Offloader, DAM, API Security, incident response techniques and technologies. Should have knowledge & understanding of Cloud Technologies, IT infrastructure & networking technologies, operations and security principles. Should have sound understanding about OWASP Web and Mobile Application Security, Mitigation and Response. Strong understanding of Regulatory security guidelines & master directions and security frameworks such as ISO 27001, NIST, or CIS. Should be well versed with ITIL and ITSM practices

Job Title: Senior Cybersecurity Engineer Cloud & Network Security Perm Opportunity . Location: Dubai Experience: 8+ years Employment Type: Full-time Industry: Information Technology & Services Functional Area: Information Security Education: Bachelors/Masters in Computer Science, Information Security, or related field Job Description: We are seeking an experienced Senior Cybersecurity Engineer to strengthen our cloud and network security infrastructure. The ideal candidate will have a strong background in enterprise security solutions and a passion for safeguarding digital assets. Key Responsibilities: Design and manage Zscaler ZIA/ZPA for secure cloud access and zero-trust networking. Administer CyberArk PAM solutions, including vault management and session monitoring. Configure and optimize Web Application Firewalls (WAF) to mitigate OWASP Top 10 threats. Deploy and troubleshoot FortiGate firewalls with NGFW features like IPS/IDS and VPN. Manage Forcepoint Secure Web Gateway for URL filtering and threat prevention. Operate CrowdStrike Falcon for EDR/XDR, including threat hunting and incident response. Conduct security assessments and ensure compliance with NIST and ISO 27001 standards. Key Skills: Zscaler (ZIA, ZPA, ZDX) CyberArk Web Application Firewall (WAF) FortiGate Forcepoint CrowdStrike Falcon Python/PowerShell scripting for automation Preferred Certifications: CISSP CCSP Fortinet NSE4+ CrowdStrike Certified Falcon Administrator Role & responsibilities Preferred candidate profile

Role & responsibilities DevOps engineer with hands-on experience in architecting, deploying, and managing secure and high-performance infrastructure for PHP-based applications. Operating Systems : Ubuntu, AlmaLinux, CentOS Web Servers : Apache, Nginx Databases : MySQL, MariaDB PHP Versions : 5.x to 8.x Monitoring & ; Observability: AWS CloudWatch, New Relic Development Environments : Local PHP stack configuration, EC2 instance provisioning and configuration, load balancer (ELB) setup for high availability and traffic distribution, Version Control: Git setup and handling (branching, merging, conflict resolution, hook scripting) Log Debugging & Performance Tuning Proficient in analyzing system, web server, and application logs to identify critical errors, bottlenecks, or misconfigurations. Experienced in isolating slow or failed API/web requests using tools like AWS CloudWatch Logs, New Relic APM, and ELK Stack. Investigates key performance metrics such as Time to First Byte (TTFB), page load time, database query latency, and PHP execution time. Identifies and fixes issues related to high TTFB by tuning PHP-FPM, optimizing Apache/Nginx configurations, and managing concurrent requests. Implements and audits caching strategies at various layers OPcache for PHP, Redis/Memcached for object/session caching, and Varnish for full-page caching. Monitors and reduces repeated queries, long query execution, and large payload responses by analyzing SQL logs and query plans. Performs root cause analysis across infrastructure and application layers to ensure stability and reduce downtime. Follows a structured debugging process to replicate and resolve speed-related issues under real load conditions. Preferred candidate profile Core Competencies Infrastructure Design & Deployment: Expertise in designing and deploying scalable infrastructure for PHP applications using the LAMP stack (Linux, Apache, MySQL, PHP). Hands-on experience in provisioning EC2 instances, configuring web servers (Apache, Nginx), and setting up load balancers (ELB) for high availability. CI/CD Implementation : Skilled in implementing and managing automated CI/CD pipelines using tools like GitLab CI, Jenkins, and GitHub Actions to streamline application deployment and updates. Caching : Extensive knowledge in optimizing application performance through caching techniques, including: Redis/Memcached for session and object caching. Varnish for full-page HTTP caching . OPcache for PHP script caching to improve response times and reduce server load. CDN Integration: Proficient in integrating Cloudflare and AWS CloudFront for Content Delivery Network (CDN) to enhance global content distribution, reduce latency, and improve site performance. Session Management: Expertise in configuring centralized session management using Redis in load-balanced environments to ensure session persistence across multiple servers. Log Aggregation & Monitoring: Strong experience in configuring log aggregation, monitoring, and alerting systems using AWS CloudWatch and New Relic, ensuring proactive issue detection and real-time response to performance bottlenecks or errors. DNS Configurations: Experienced in managing DNS records (A, CNAME, MX, TXT) using platforms like AWS Route 53 and Cloudflare, ensuring high availability, Configured DNS failover strategies to ensure high availability and minimize downtime, utilizing features like latency-based routing and geo-routing. WAF Management: Proficient in configuring AWS WAF, Cloudflare WAF, and ModSecurity to safeguard applications from security vulnerabilities like SQL injection, XSS, and CSRF. Ability to create custom WAF rules, monitor traffic, and optimize security without impacting performance.

Job Summary: We are seeking an experienced Cybersecurity Strategy & Security Engineer to develop and implement security policies, frameworks, and architectures that align with organizational goals. This role is critical for defining security roadmaps, evaluating current capabilities, and ensuring robust protection across networks and cloud environments. We are looking for immediate joiners or a notice period less then a month is preferrable. Work from office and will have rotational shifts. Key Responsibilities: Develop and maintain IT security policies and standards for infrastructure components (firewalls, routers, VPNs, etc.) Design and implement cybersecurity strategies and roadmaps aligned with business objectives Conduct risk and maturity assessments and recommend security improvements Evaluate and integrate new security technologies and authentication protocols Provide expertise in network security architecture and cloud security across AWS, Azure, or GCP Collaborate with stakeholders to identify critical business functions and ensure alignment of security initiatives Reference and implement industry-standard frameworks like NIST 800-53, CIS Controls, ISO 27001, SOC 2 Mandatory Skills: Proven experience in security policy & standards development Deep understanding of security frameworks : NIST, CIS Controls, ISO 27001, SOC 2 Expertise in security strategy and roadmap development Strong background in network security architecture Cloud security knowledge in AWS, Azure (preferred), or GCP Familiarity with tools like Firewalls, WAF, VPN, EDR/XDR , and cloud-native tools (e.g., Prisma, Microsoft Defender for Cloud Apps, Azure Firewall ) Strong grasp of security reference architectures across domains like application, network, and data security Preferred Qualifications: Experience with security risk assessments, cost analysis, and security maturity evaluations Knowledge of security standards and compliance requirements (e.g., PCI-DSS)

About the job:- Bharti Airtel Limited is a leading global telecommunications company with operations in 18 countries across Asia and Africa. Headquartered in New Delhi, India. In India, the company's product offerings include 2G, 3G and 4G wireless services, mobile commerce, fixed line services, high speed home broadband, DTH, enterprise services including national & international long-distance services to carriers. In the rest of the geographies, it offers 2G, 3G, 4G wireless services and mobile commerce. We are always looking for people who are thinkers & doers. People with passion, curiosity & conviction, people who are eager to break away from conventional roles and do 'jobs never done before'. Job Description :- Technical Understanding :- DDOS : Working knowledge on DDoS technology, exposure to Arbor & Radware platform is must. WAF (WAAP) : Working knowledge on WAF , API , BotM, Exposure to technology platform - F5, Imperva, Radware technology is required. Functional Requirements :- Good in customer communication. Working knowledge of basic ticket's management, customer updates Must have experience in managed services L-2 to have implementation experience as well. Working schedule - Across 24*7 shifts. Education qualification - Engineering graduate. Hands on experience in above mentioned technologies is significant & must required. Certification in above mentioned products is preferred.

Job Description - Security Engineer 48 years of experience in designing, planning, and implementing enterprise security solutions Proficient in cloud platforms: Azure, AWS, and GCP Skilled in network security tools: routing, switching, NGFW, WAF, ALB, etc. Experienced in native cloud security features and tools across all major platforms Strong knowledge in designing and deploying security architecture aligned with the risks across prevent, detect, respond, and predict domains Broad understanding of IT infrastructure, applications, databases, and networking Familiar with frameworks and best practices: ISO 27001, PCI-DSS, OWASP, SANS, etc. Well-versed in security technologies: NGFW, WAF, IDAM, DLP, VPN, MDM, 2FA, PIM, NAC, sandboxing, FIM, etc. Sound knowledge of emerging technologies in security: machine learning, analytics, blockchain, etc. Strong analytical thinking and excellent communication skills Deliverables Support planning, strategy, and implementation of new solutions with cross-functional teams Contribute to evaluation, design, and architecture of innovative security solutions Lead execution of evaluations and related tasks end-to-end Continuously enhance existing controls or propose alternatives for better security and efficiency Ensure project execution within defined timelines and scope Manage complete project lifecycle: initiation, planning, execution, monitoring, and closure Coordinate with implementation teams to ensure smooth rollout of solutions and controls Transition projects to operations with proper documentation and handover Provide post-implementation support and handle escalations effectively. Please share your updated cv on Avani.Vibhute@rigvedtech.com