Job Description

Project Role : Security Architect
Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations.
Must have skills : Web Application Firewall (WAF)
Good to have skills : NA
Minimum 5 year(s) of experience is required
Educational Qualification : 15 years full time education
Summary: We are looking for an experienced and technically strong Web Application Firewall (WAF) Subject Matter Expert (SME) to join our Security Delivery team. The ideal candidate will possess deep expertise in WAF technologies, strong experience in decoding web traffic and malicious scripts, and a solid development background to assess and close security gaps. This role is pivotal in safeguarding enterprise applications from web-based threats across on-prem, cloud, and hybrid environments. Key Responsibilities: Roles & Responsibilities: WAF Strategy, Operations & Governance -Lead the deployment, configuration, and management of enterprise-grade WAF solutions such as F5 Silverline, F5 ASM, Imperva CWAF, Akamai WAF, AWS WAF, and Azure WAF. -Develop and fine-tune advanced WAF policies and signatures to accurately detect sophisticated attack vectors including SQL Injection, XSS, RCE, and business logic abuse, while minimizing false positives. -Analyze complex WAF logs and payloads using custom decoding and script analysis techniques to identify stealthy threats and misconfigurations. -Maintain consistent security controls in line with OWASP Top 10, PCI-DSS, NIST, and ISO 27001 standards. Security Integration & Threat Response -Integrate WAF protections into DevSecOps pipelines, embedding security into the SDLC with automated deployment and testing. -Collaborate with AppSec, DevOps, Cloud, and Infrastructure teams to secure applications across microservices, APIs, and multi-cloud environments. -Act as a senior advisor during security incidents involving web-layer attacks, providing in-depth payload analysis and mitigation guidance. Scripting & Secure Development Expertise -Leverage development and scripting skills (Python, Bash, PowerShell, Regex) to analyze obfuscated scripts and automate WAF rule generation, traffic simulation, and threat validation. -Contribute to secure coding reviews and help developers understand WAF behavior in relation to application logic and vulnerabilities. Documentation, Reporting & Continuous Improvement -Own and update detailed documentation including architecture diagrams, rule sets, exception handling, and change management logs. -Produce regular dashboards and executive-level reports summarizing WAF effectiveness, threat intelligence trends, and incident analysis. -Evaluate new WAF features and third-party integrations to improve detection efficacy and operational efficiency. Professional & Technical Skills: -Experience with Bot Mitigation, API Security, and Advanced Threat Protection mechanisms. -Familiarity with CI/CD tools (e.g., Jenkins, GitLab), IaC (e.g., Terraform), and security automation frameworks. -Certifications such as AWS Certified Security - Specialty, Akamai WAF Certified, GIAC GWAPT/GWEB, CEH, or equivalent. -Exposure to Big Data analytics platforms or SIEM solutions for advanced WAF telemetry analysis. -Bachelor's degree in Computer Science, Cybersecurity, or related field (Master's preferred). -Hands on experience with multiple WAF platforms across enterprise environments. -Deep understanding of HTTP/S protocols, SSL/TLS encryption, CDN behaviors, load balancing, and reverse proxy technologies. -Proven expertise in decoding, analyzing, and reverse engineering malicious JavaScript or encoded payloads to uncover evasion techniques. -Strong understanding of web application architecture, OWASP Top 10 risks, and real-world threat scenarios. -Experience with Bot Mitigation, API Security, and Advanced Threat Protection mechanisms. -Familiarity with CI/CD tools (e.g., Jenkins, GitLab), IaC (e.g., Terraform), and security automation frameworks. -Certifications such as AWS Certified Security - Specialty, Akamai WAF Certified, GIAC GWAPT/GWEB, CEH, or equivalent. -Exposure to Big Data analytics platforms or SIEM solutions for advanced WAF telemetry analysis. Additional Information: - The candidate should have minimum 5 years of experience in Web Application Firewall (WAF). - This position is based in Chennai. - A 15 years full time education is required.
15 years full time education
About Accenture Accenture is a leading global professional services company that helps the world's leading businesses, governments and other organizations build their digital core, optimize their operations, accelerate revenue growth and enhance citizen services--creating tangible value at speed and scale. We are a talent- and innovation-led company with approximately 791,000 people serving clients in more than 120 countries. Technology is at the core of change today, and we are one of the world's leaders in helping drive that change, with strong ecosystem relationships. We combine our strength in technology and leadership in cloud, data and AI with unmatched industry experience, functional expertise and global delivery capability. Our broad range of services, solutions and assets across Strategy & Consulting, Technology, Operations, Industry X and Song, together with our culture of shared success and commitment to creating 360 value, enable us to help our clients reinvent and build trusted, lasting relationships. We measure our success by the 360 value we create for our clients, each other, our shareholders, partners and communities.
Visit us at
Equal Employment Opportunity Statement
We believe that no one should be discriminated against because of their differences. All employment decisions shall be made without regard to age, race, creed, color, religion, sex, national origin, ancestry, disability status, military veteran status, sexual orientation, gender identity or expression, genetic information, marital status, citizenship status or any other basis as protected by applicable law. Our rich diversity makes us more innovative, more competitive, and more creative, which helps us better serve our clients and our communities.

Skills Required