We are currently recruiting for a Network Engineer with strong WAF experience to join one of our Insurance clients on a 6-month contract.
Hybrid - adhoc travel to London
The Role
* Implement and operate WAF solutions across multi-cloud environments (Azure Front Door, Application Gateway, AWS WAF, GCP equivalents), ensuring consistent protection for all internet-facing applications
* Configure and optimise WAF policies (managed rule sets, custom rules, bot protection, request inspection) to prevent threats
* Drive remediation of WAF gaps and misconfigurations, including transitioning services from detection to prevention mode and enforcing baseline guardrails
* Collaborate with application and cloud engineering teams to onboard applications to WAF, troubleshoot false positives, and ensure minimal business disruption
* Integrate WAF telemetry into SIEM / monitoring platforms to enable visibility, alerting, and incident response workflows
* Support WAF deployment at scale, contributing to rollout plans to achieve full coverage of external-facing services
* Contribute to security guardrails and standards, ensuring WAF implementations align with enterprise policy and Zero Trust principles
Experience
* 3- 5 years hands-on experience implementing WAF technologies within Azure (Azure WAF / Front Door / App Gateway)
* Ideally similar experience in other cloud environments (Azure WAF / Front Door / App Gateway, AWS WAF, GCP Cloud Armor)
* Strong understanding of HTTP/S protocols and Layer 7 security controls (how WAF protects web traffic vs other network layers)
* Experience with WAF policy tuning and optimisation, including managing rule sets, handling false positives, and improving protection posture
* Familiarity with cloud networking constructs (VNets/VPCs, routing, load balancers, private endpoints, segmentation)
* Knowledge of common web application attack techniques (e.g. OWASP Top 10: injection, XSS, API abuse) and mitigation approaches
* Experience working with infrastructure-as-code and automation tools (Terraform, ARM, CloudFormation) for WAF deployment and policy management
* Ability to analyse logs and security telemetry (WAF logs, SIEM integration) to identify threats and drive remediation
* Exposure to firewalls, DDoS protection, and broader network security controls in cloud environments
* Strong collaboration skills, working with AppDev, Cloud Engineering, and Security teams to enforce controls without blocking delivery
Guidant, Carbon60, Lorien & SRG - The Impellam Group Portfolio are acting as an Employment Business in relation to this vacancy.
#J-18808-Ljbffr