Job Description

:
Job description
Role: WAF EngineerAkamai GCB 4
Experience: 7-11 years
Location: Pune, Hyderabad

Key Responsibilities

• Collaborate with Capability Lead to provide Web Application and API Protection for critical applications primarily on the Akamai platform

• Monitor and review all tuning requests and conduct detailed log analysis to identify false positives and optimize WAF rules

• Create and maintain comprehensive documentation for WAF tuning procedures, policies, and configurations

• Develop, test, and recommend WAF policies and rules tailored to specific applications and environments

• Proactively assist with identifying false positives and collaborate with cross-functional teams for seamless integration of WAF solutions

• Work with Application teams to enable web application protection and deliver antibypass protection for on-premise applications currently using Akamai

• Provide recommendations for WAF configuration based on best practices and security requirements

• Perform regular assessments and audits of WAF configurations to ensure optimal security posture and compliance with industry standards

• Maintain evidence for audit and regulatory requirements and deliver monthly and quarterly business reviews for application owners

• Stay updated with the latest web security threats, vulnerabilities, and trends to continually enhance WAF effectiveness

• Evaluate, design, and deliver new and alternative WAAP features and/or solutions

• Ensure alignment with capability lead and control owner to deliver consistent WAAP policies across multiple infrastructures

• Timely and accurate review and action on all WAF tuning requests

• Conduct thorough log analyses to effectively identify and mitigate false positives ensuring optimized WAF rules

• Maintain comprehensive and up-to-date documentation for all WAF tuning procedures, policies, and configurations

• Develop and recommend tailored WAF policies and rules for various applications and environments

• Proactively identify and address false positives to enhance overall WAF accuracy

• Collaborate effectively with cross-functional teams to integrate WAF solutions seamlessly into existing security infrastructure

• Collaborate effectively with application teams to enable WAF protection

• Ensure connectivity to origin servers on-premise only comes through Akamai to prevent direct to origin attacks

• Provide expert recommendations for WAF configurations based on best practices and current security requirements

• Perform regular assessments and audits of WAF configurations to maintain optimal security posture and compliance with industry standards

• Perform service reviews with accountable service application owners

• Stay informed about the latest web security threats, vulnerabilities, and trends to ensure continuous enhancement of WAF effectiveness