Job Description
Cloud Engineer
Remote
Inside IR35
6 month initial
Our Financial Sector-based client is looking for a Cloud Engineer. The Cloud RTB WAF Engineer will be working on the ECB Programme which aims to deploy WAF solutions on all domain/names related to covering internet-facing and the internal web applications in order to meet the Bank’s regulatory requirement.
CORE SKILLS/TECHNICAL REQUIREMENT
* experience with multiple WAF solutions for edge, cloud, and on-premise
* experience with cloud services and their WAF controls, ideally including one or more of the following: AWS, Azure, and GCP
* understanding of Web Application security attack methods and mitigations
* in WAF tuning and configuration, coupled with a strong foundation in web security principles and practices.
* custom WAF rules and features, addressing gaps and enhancing overall security measures
* to design and implement bespoke WAF processes and documentation, underpinned by a thorough understanding of web application security.
* skills to review and align platforms with MVP and Baseline Configurations, leveraging a deep knowledge of WAF functionalities and limitations.
* DevSecOps pipeline maintenance support for the automation works
* with IDAM protocols and access control measures for WAF management, informed by strong web security knowledge.
* of HTTPS inspection, including Termination and Certificate management, grounded in robust web security practices.
* in rate limiting techniques and their integration into security configurations
* of version control and update mechanisms for WAF solutions
* in identifying and documenting platform and organizational logging options, with a focus on security implications and cloud environments.
* interfacing with SOC during WAF related security incidents
* connectivity / network issue management / service management experience
OTHER SKILLS
* stakeholder management skills
* to detail in analysing large data sets
* interpersonal skills with strong communication skills both written and verbally
* working in Agile, or knowledge of the key principles of the methodology
* experience working on either Information Security/Cyber Security/IT Security projects and Infrastructure projects would be desirable.
* contribute and work to team objectives.
* who can work pro-actively with minimum supervision
#J-18808-Ljbffr