Overview
Security Engineer - WAF Tuning role at The Chrysalis Programme. Contract position with start date ASAP.
Duration: 3 months (extendable). Location: Hybrid (on site in Sheffield / Birmingham or Edinburgh 3 days a week). Rate: Negotiable depending on experience (inside IR35).
Reference: 19542. Networking People (UK) is acting as an Employment Business in relation to this vacancy.
Responsibilities
* The primary role is to tune WAF accurately and safely.
* Provide hands-on consultancy focused on WAF tuning and efficacy testing across F5 and cloud-native WAFs, covering at least two of three major CSPs: AWS, Azure, GCP.
* Focus on tuning rules, analysing data, reducing false positives, and validating control efficacy in production-like conditions.
* Scope includes supporting internal Efficacy and Security Engineering teams with real-world, data-driven findings and recommendations.
Qualifications & Requirements
* Background in SOC / Threat / Forensics or CSIRT with experience analyzing security logs to determine true positives/false positives and techniques to differentiate them.
* Ideally experience in AppSec / DevSecOps or Ethical Hacking with a strong understanding of Web Application attacks and the OWASP Top 10.
* Hands-on tuning experience with F5 is desirable.
* Experience with custom rule creation, OWASP rule tuning (especially for F5), and false positive reduction.
* Experience with log analysis and data-driven tuning based on real traffic.
* Support for cloud-native WAF tuning across all three cloud providers (AWS, Azure, GCP) with no deployment or infra setup.
* Ability to conduct efficacy testing in partnership with the internal team and recommend adjustments based on findings.
* Well-rounded, real-world exposure; avoid purely theoretical or vendor-trained profiles. Security Engineering skills are a bonus.
Additional information
* Background check completion prior to contract commencement is required.
* Must be eligible to work in the UK for the duration of the project.
* This posting is for an contract opportunity and reflects the role’s current requirements.
#J-18808-Ljbffr