Job Title
Infrastructure Engineer (WAF)
Location & Hours
Manchester, Leeds, Edinburgh, remote within UK. Full‑time – 35 hours per week. Hybrid working – at least two days per week in office.
Salary & End Date
£48,987 – £55,000 per annum. End date: Friday 03 July 2026.
Job Summary
You’ll be a key engineer responsible for designing, evolving and operating our Web Application Firewall (WAF) platforms, protecting critical customer‑facing services at scale.
Working with modern engineering practices including automation and secure‑by‑default design to improve resilience, performance and security across our edge, datacentre and cloud environments.
This role offers scope to influence technical direction, uplift engineering standards and develop our WAF and wider Layer7 security services.
Key Responsibilities
- Engineering new WAF capabilities using Infrastructure‑as‑Code, CI/CD pipelines and policy‑as‑code approaches to deliver secure, repeatable and scalable outcomes.
- Play a key role in platform modernisation and service improvements, including refactoring, automation and the reduction of technical debt.
- Drive observability and operational insight by improving monitoring, alerting and telemetry to strengthen platform reliability and incident response.
- Support major incident diagnostics, partnering closely with Security Engineering, Networks and Cloud teams.
- Embed secure‑by‑design patterns and guardrails, ensuring controls are codified, consistent and easy for platform consumers to adopt.
- Produce high‑quality engineering documentation, including standards, patterns, platform guidance and runbooks that enable self‑service and repeatability.
- Participate in the on‑call rota, contributing to the operational resilience of critical services (with additional compensation).
What We’re Looking For
- A proven engineering mentality, with hands‑on experience across edge, on‑prem and cloud‑native WAF technologies.
- Strong automation and scripting skills (Python preferred), with practical experience using Infrastructure‑as‑Code tools (Terraform preferred) and modern CI/CD pipelines.
- Solid understanding of networking and web fundamentals, including HTTP/S, DNS, TLS and platform security concepts.
- Ability to lead complex technical investigations, diagnose issues under pressure and guide others toward robust solutions.
- Confidence to influence engineering decisions and contribute to strategic technical direction.
- Knowledge of Application Security, API Security, Bot Protection and Layer7 DDoS (great to have).
- Professional‑level cloud certifications and/or recognised security or network engineering accreditations (great to have).
Benefits
- A generous pension contribution of up to 15%.
- An annual bonus award, subject to Group performance.
- Share schemes including free shares.
- Benefits you can adapt to your lifestyle, such as discounted shopping.
- 28 days’ holiday, with bank holidays on top.
- A range of wellbeing initiatives and generous parental leave policies.
Flexible Working Options
- Hybrid Working – at least two days per week from the office.
- Job Share.
EEO Statement
We offer reasonable workplace adjustments for colleagues with disabilities, including flexibility in office attendance, location and working patterns. We guarantee interviews for a fair and proportionate number of applicants who meet the minimum criteria for the role with a disability, long‑term health or neurodivergent condition through the Disability Confident Scheme.
Apply Today
We encourage applications from candidates with relevant transferable experience and diverse backgrounds.
