Responsibilities
- Act as the primary technical authority for enterprise WAF solutions, with lead responsibility for Akamai and operational support for Imperva and AWS WAF
- Architect, implement, and oversee WAF policies securing web applications and APIs
- Refine and adjust security rules to effectively prevent attacks while maintaining system performance and business revenue
- Set up and manage Akamai security features such as Bot Manager, Rate Control, Client Reputation, API Security, and associated protections
- Continuously observe and evaluate security alerts, malicious traffic, bot behavior, and abuse trends, including OWASP Top 10 vulnerabilities and DDoS incidents
- Conduct regular reviews of WAF rules, enhance policy efficiency, and minimize false positives
- Support change control procedures to ensure safe and stable deployment of WAF rule updates
- Engage in incident response efforts focused on threats at the web and edge layers
- Create and track key performance indicators for WAF effectiveness, including block accuracy, false positive rates, and attack pattern analysis
- Keep detailed records of configurations, operational processes, and security standards
- Collaborate with the Application Security team to assess the exploit potential of discovered vulnerabilities
- Promote secure deployment methods and integrate security into CI/CD pipelines
- Guide development teams on web-layer risks and effective countermeasures
- Build simple automation scripts to enhance monitoring, validation, and reporting workflows
- Stay informed about evolving web threats and updates to WAF platforms
Benefits
- Comprehensive medical, dental, and vision coverage
- 401(k) plan with employer match available after one year
- Generous paid time off and observed company holidays
- Employee discount on merchandise
- Access to professional growth and training programs
- Additional perks and benefits available
Work Arrangement
Remote
