F5 Web Application Firewall (WAF) Engineer - Python Automation (C2C)
Role details
Job location
Tech stack
Job description
We are seeking a dynamic and highly skilled Web Application Firewall (WAF) Engineer specializing in Python automation to join our cybersecurity team on a contract-to-contract (C2C) basis. In this role, you will be responsible for designing, implementing, and maintaining robust WAF solutions to protect web applications from evolving threats. Your expertise in cybersecurity tools, network security protocols, and automation will drive the development of innovative security measures that ensure the integrity and confidentiality of our digital assets. This position offers an exciting opportunity to work at the forefront of cybersecurity engineering, leveraging cutting-edge technologies and best practices to safeguard critical infrastructure., * Develop and automate WAF configurations and policies using Python scripting to enhance security posture across multiple web environments.
- Monitor, analyze, and respond to security events related to web application threats using SIEM tools and threat intelligence feeds.
- Conduct vulnerability assessments and security risk investigations on web applications, ensuring compliance with ISO 27001, NIST standards, and other relevant frameworks.
- Collaborate with network engineering teams to integrate WAF solutions with existing network infrastructure such as Cisco ASA, Cisco ISE, VPNs, and LAN/WAN architectures.
- Perform system hardening, incident response, and disaster recovery planning for web application security systems.
- Maintain detailed documentation of security configurations, system security plans, and incident management procedures.
- Stay current with emerging cybersecurity threats, attack frameworks, and industry best practices to proactively improve defenses.
Requirements
- Proven experience with Web Application Firewall (WAF) deployment and management in enterprise environments.
- Strong proficiency in Python scripting for automation of security tasks and configuration management.
- In-depth knowledge of computer networking concepts including TCP/IP, routing protocols (OSPF, BGP), IPsec VPNs, LAN/WAN architectures, load balancing, and network protocols.
- Familiarity with cybersecurity tools such as SIEM platforms (e.g., Splunk), IDS/IPS systems, Endpoint Detection & Response (EDR), and threat detection & response strategies.
- Hands-on experience with cloud security engineering on platforms like AWS or Google Cloud Platform.
- Understanding of information security compliance standards including ISO 27000 series, PCI DSS, FedRAMP, FIPS standards, and ITIL frameworks.
- Knowledge of system administration across various operating systems including Linux (Debian, CentOS), Windows Server, macOS, and openSUSE.
- Ability to perform vulnerability research, vulnerability assessment, security analysis, and risk assessment investigations effectively.
- Excellent problem-solving skills combined with a proactive approach to incident management and incident recovery processes.
Join us to be part of a forward-thinking team dedicated to advancing cybersecurity resilience through innovative automation solutions!