WAF Operations Engineer

Indusind Bank

10 - 15 years

20 - 30 Lacs

hyderabad

Posted:3 days ago| Platform:

Apply

Skills Required

soc web application firewall it infrastructure it security

Work Mode

Work from Office

Job Type

Full Time

Job Description

Role Overview:

Endtoend operational management and security efficacy of cloudbased nextgeneration WAF across multiple environments (public cloud, edge/CDN, and hybrid). The role spans policy design, application onboarding, performance optimization and compliance. Closely work with application owners, IT infra, Security, SOC and the Vendor/OEM teams to defend web, Mobile and API workloads against OWASP Top 10, bot attacks, DDoS and emerging threats.

Role & responsibilities

Own WAF lifecycle
: deployment, configuration, tuning, upgrades, and maintenance across environments (e.g., CDNWAF like Indusface/Cloudflare/F5/Imperva)
Policy & rule management
: Custom signatures, manage managed rule sets, IP reputation feeds, geocontrols, and positive security models for critical apps and APIs.
Falsepositive tuning
: systematically reduce noise via staging & sampling, maintain acceptable block/allow ratios without impacting business traffic.
Bot management
: configure bot detection/mitigation, JS challenges, behavioural anomaly detection, device fingerprinting, and ratelimiting strategies.
API protection
: enforce schema validation (OpenAPI), header/verb controls, JWT validation and abuse prevention for API endpoints.
DDoS & L7 resilience
: integrate WAF controls with upstream DDoS protection, caching, and origin shielding.
Documentation
: maintain SOPs, hardening guides, and tuning playbooks
Stakeholder communication:
produce monthly posture reports, incident summaries and change advisories for IT leadership.
Standards alignment
: ensure controls meet OWASP ASVS and BFSI regulation.

Preferred candidate profile

Bachelors/Master’s in Computer Science, Information Technology or related field.
10+ years in application security or network security with minimum 7+ years handson managing WAFs at scale.
Direct experience with one or more: Indusface/F5/Imperva.
Strong knowledge of HTTP/S, TLS, CDN/edge architectures, reverse proxies, Load Balancers, DNS, L7 DDoS controls and routing.

More Jobs at Indusind Bank

Developer

hyderabad

3.0 - 5.0 yrs

INR 10 - 13 Lacs

Lead - ML Engineer

gurugram, haryana, india

8.0 - 8.0 yrs

Salary: Not disclosed

SBBG - Relationship Manager

ahmedabad

6.0 - 11.0 yrs

INR 7 - 12 Lacs

BDM Corporate Salary

ludhiana, mohali, chandigarh

1.0 - 6.0 yrs

INR 3 - 5 Lacs

Area Sales Manager - HL/LAP DSA

noida, new delhi, gurugram

3.0 - 8.0 yrs

INR 5 - 12 Lacs

Mock Interview

Practice Video Interview with JobPe AI

Start IT Security Interview

Start Your Job Search Today

Browse through a variety of job opportunities tailored to your skills and preferences. Filter by location, experience, salary, and more to find your perfect fit.