Web Application Firewall
Date Posted: 15-May-2024 | Qualification: B.E/B.Tech, MCA, ME/MTech
| Position: | Web Application Firewall |
| Skills Required: | Network Security, Web Application Firewall |
| Employment Type: | Full Time |
| Location: | Pune,Trivandum/Thiruvanthanapuram |
| Job Mode: | Hybrid |
| Experience: | 9 - 13 (years) |
Job Description:
Duties and Responsibilities Incident Response activities: Identify, investigate and respond to potential security incidents in order to minimize the operational and organizational impact Policy fine-tuning and maintain the current policies: Actively pursue abnormal activity on assets and new attack trends and fine tune the policies accordingly in order to tighten the security. Threat Intelligence: Leverage various threat intelligence sources and capabilities to enable intelligence driven response Application Onboarding : Onboard applications based on the customer requirement and ensure business continuity and service availability API: knowledge in API’s. Experience with cloud WAF Akamai would be an advantage. Knowledge in Scripting. Like Python, Shell, etc. Knowledge with terraform or any automation software would be an added advantage. Forensics: Perform forensic analysis on memory, disk, and other system and network artifacts to identify indicators of compromise. Identify Gaps: Investigate and document gaps in controls, event data, and work with internal teams to resolve Process Improvement: Execute, develop and document Incident Handling Guides and processes. Qualification, Experience, Technical and Functional Skills At least 4 to 5 years of experience handling Network Security , Incident Response , knowledge and Hands on experience on WAF or any Reverse proxy Layer 7 security appliance. Other skill sets include; OWASP top 10 Knowledge of networking protocols such as HTTP, SSL, FTP, DNS etc. and good idea about OSI layer and packet flow Knowledge of Syslog and SNMP monitoring tools Basic Linux knowledge Basic knowledge in cloud technologies ITIL knowledge and service management skills would be a plus Basic understanding and Knowledge on Automation tools and software. Key Competencies Incident Response to WAF events Mitigation of violations and attacks Policy fine-tuning ITIL Developing WAF incident response plans Develop, maintain, test and troubleshoot WAF appliance as well as ruleset Onboarding an existing application to the WAF Frequent review of the WAF statistics and attack trend with the customers
