This position involves the implementation, configuration, monitoring, and maintenance of Web Application Firewalls (WAF) for internal and external customers, based in Dubai, UAE. The role requires close collaboration with other Cybersecurity teams to safeguard web applications from various cyber threats and vulnerabilities, including attacks from the OWASP Top 10 list.
Ready to apply for roles like this?
Unlock the company name and direct application link. Subscribers get instant access to fresh jobs across Dubai, Abu Dhabi and Riyadh, many with visa support.
Unlock employer & apply directly
Responsibilities:
- Provision web applications on WAF, including requirements gathering and defining the scope of protection.
- Fine-tune security policies through rigorous testing to minimize false positives.
- Plan and perform security enhancements on existing web applications with minimal impact on live traffic.
- Monitor and update web application certificates on WAF.
- Evaluate exceptions and whitelistings for security impacts.
- Conduct regular security assessments and audits of WAF configurations.
- Support the SOC/Incident Response team by providing attack logs.
- Monitor WAF system resources and raise flags in a timely manner.
- Ensure WAF deployments are running the latest vendor-supported OS versions.
- Implement measures to address newly discovered security vulnerabilities on WAF.
- Evaluate, test, and execute WAF upgrades to ensure no impact on protected applications.
- Maintain updated documentation related to WAF deployments.
- Identify unusual activity through regular monitoring of alerts and reports.
- Monitor licenses and vendor contract expirations of WAF deployments.
- Conduct regular backup restoration tests for all WAF deployments.
- Deploy and configure dedicated WAF instances for special project requirements and integrate with security controls.
Qualifications:
- Minimum 6 years of experience in WAF administration and web application security.
- Certified Ethical Hacker (CEH) or similar certifications preferred.
- Expertise in WAF F5 troubleshooting.
- In-depth understanding of web application security principles, including vulnerabilities and attack vectors.
- Strong knowledge of network protocols, firewall technologies, and web server platforms.
- Experience with scripting languages for automation of WAF configurations preferred.
- BS in Computer Science, Information Technology, or a related field.
- Excellent analytical and problem-solving skills with the ability to prioritize complex security issues.
- Effective communication skills for collaboration and technical articulation to non-technical stakeholders.
Work Conditions: On-site, Full-time.
