Job Description

Project Role :

Security Architect

Project Role Description :

Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations.

Must have skills :

Palo Alto Networks Firewalls

Good to have skills :

NA

Minimum

3

year(s) of experience is required

Educational Qualification :

15 years full time education



Summary: We are seeking a highly skilled WAF and Firewall Security Expert to manage Web Application Firewalls (WAF) and network perimeter security. The ideal candidate will have in-depth knowledge of Akamai, Cloudflare, and similar WAF/CDN platforms, along with a strong grasp of application layer (Layer 7) attacks, web security vulnerabilities, and real-world mitigation strategies. You will play a key role in defending critical applications from threats such as SQL injection, XSS, CSRF, RCE, API abuse, bot attacks, and more ensuring the security and resilience of our digital platforms. Roles & Responsibilities: - WAF Policy Management: Administer Web Application Firewall (WAF) rule sets and policies using industry-leading platforms such as Akamai Kona Site Defender, Cloudflare WAF, AWS WAF, or similar solutions. - Application Layer Defense: Analyze, detect, and defend against a wide range of OWASP Top 10 and other Layer 7 threats, including: - SQL Injection (SQLi) - Cross-Site Scripting (XSS) - Remote Code Execution (RCE) - Cross-Site Request Forgery (CSRF) - HTTP protocol abuse - Malicious bot traffic and API abuse - Firewall & Network Security: Deploy and manage network firewalls and integrate them with other security technologies including Intrusion Detection/Prevention Systems (IDS/IPS) and DDoS mitigation tools. - Bot Protection Expertise: Strong understanding of automated bot attacks, with hands-on experience in detection and defense strategies using behavioral analytics, CAPTCHA, rate limiting, and JavaScript challenges. - Threat Monitoring & Incident Response: Proactively monitor and respond to threats across both application and network layers, leveraging SIEM tools and real-time alerting systems. - Cross-Functional Collaboration: Work in close partnership with DevOps, development, and security teams to enforce secure deployment practices and ensure robust application configurations. - WAF Tuning & Optimization: Perform continual WAF tuning, including signature refinement and custom rule development, to ensure an optimal balance between security coverage and application functionality. - Threat Intelligence & Research: Stay current on emerging application-layer attack vectors, tools, and adversary tactics to inform proactive defense measures. - Incident Handling: Participate in incident response, including threat hunting, forensic analysis, and contributing to post-mortem investigations to enhance organizational resilience. Professional & Technical Skills: - Must To Have Skills: Proficiency in Palo Alto Networks Firewalls. - Strong understanding of cloud security principles and best practices. - Experience with security architecture frameworks and methodologies. - Familiarity with compliance standards such as ISO 27001, NIST, and GDPR. - Ability to analyze and mitigate security risks in cloud environments. Additional Information: - The candidate should have minimum 5 years of experience in Palo Alto Networks Firewalls. - This position is based at our Bengaluru office. - A 15 years full time education is required.




15 years full time education