Job Summary:
The mission of the Senior WAF Engineer is to leverage their strong understanding of enterprise-level and expert knowledge to mitigate cybersecurity risks. This individual will actively collaborate with business units, Digital & Technology teams, and partner organizations (Compliance, Risk Management, Audit, and Legal) to seamlessly integrate security processes, tools, and personnel into the business culture. This integration aims to create a holistic security ecosystem that supports continuous improvements and provides seamless protection and monitoring capabilities globally.
The role involves providing operational support and executing complex initiatives to drive problem resolution. As a senior team member, the individual will contribute to a progressive development team with an agile mindset, focusing on iterative problem-solving.
Essential Duties and Responsibilities:
* Serve as a customer-facing point of contact for the global WAF team.
* Coordinate the implementation of WAF infrastructure with application teams.
* Deploy WAF standardized rulesets.
* Work with application teams to troubleshoot WAF rulesets and their interactions with applications.
* Deploy, configure, and maintain cloud-native web application firewalls.
* Create implementation plans for team and customer efforts.
* Develop WAF product documentation for internal use.
* Provision WAF monitoring and reporting components on a per-application basis.
* Lead by example and model behaviors consistent with the company's values.
* Independently respond to ITSM requests, incidents, and other company communications
such as email, messaging apps, and notifications.
Education and Experience:
* Bachelor's degree (BA/BS) in a related field, plus a minimum of 3 years of related work experience; or an equivalent combination of education and experience (equivalent work experience = 2 years of related experience for every year of higher-level education).
* Industry-related certifications preferred, such as CCSP, CCSS, or cloud-specific certifications.
* Demonstrated experience with cloud-based WAF in Imperva, Akamai (current version, notjust Kona), AWS, and/or Azure.
* Experience writing and reviewing business, user, and non-functional/system-level requirements.
* Comfortable dealing with stakeholders, developers, and architects during facilitated sessions and throughout the development lifecycle.
* Strong knowledge of system architecture and network applications.
* 3 to 5 years of advanced knowledge in security, application security, or network security.
* Ability to positively engage with the business at all levels.
* Ability to troubleshoot complex problems and manage and resolve them in a timely manner.
* Ability to manage conflicting priorities effectively.
* Strong communication and conceptual skills with a desire to share knowledge and cross-train.
* Proven ability to meet tight deadlines.
Other Skills and Abilities:
* Familiarity with version control software.
* Familiarity with pull request style software development.
* Experience with Infrastructure as Code, such as Terraform.
* Experience with documentation and project management systems, such as Confluence and Jira.
* Experience writing software in languages such as Python, Ruby, or Golang.
Communication Skills:
* Ability to comprehend, analyze, and interpret the most complex business documents.
* Daily interaction with application and peer teams across global regions, cultures, and time zones.
* Experience communicating to a global audience and various specific cultural audiences is strongly preferred.
* Ability to respond effectively to the most sensitive issues.
* Ability to write reports, manuals, speeches, and articles using distinctive style.
* Ability to make effective and persuasive presentations on complex topics to employees, clients, top management, and public groups.
* Ability to motivate and negotiate effectively with key employees, top management, and client groups to take desired action.
Job Type: Contract
Contract length: 6-12 months
Pay: R$10, R$15,000.00 per month