Firewall / WAF

Key Responsibilities:

• Firewall Management & Configuration: Configure, monitor, and maintain firewalls (including next-gen firewalls) to safeguard the organization's network infrastructure from unauthorized access, threats, and breaches.
• WAF Deployment & Configuration: Implement and manage Web Application Firewall (WAF) solutions to protect web applications from vulnerabilities such as SQL injection, cross-site scripting (XSS), and DDoS attacks.
• Security Incident Response: Investigate, analyze, and respond to security incidents related to firewall or WAF events, ensuring that critical issues are addressed promptly and appropriately.
• Traffic Filtering & Rules Definition: Develop, review, and update firewall rulesets and WAF policies to ensure optimal traffic filtering, access control, and security measures are in place.
• Threat Detection & Mitigation: Monitor network traffic and logs for suspicious activities and potential threats using firewalls and WAF systems. Take action to block malicious traffic and mitigate potential attacks.
• Network Segmentation: Design and implement network segmentation strategies to ensure that different parts of the network are appropriately isolated and secured.
• Compliance & Reporting: Ensure that firewall and WAF configurations align with security standards and compliance regulations (e.g., GDPR, PCI-DSS, HIPAA). Generate reports on security incidents, firewall performance, and WAF effectiveness for management and compliance audits.
• Vulnerability Management: Regularly review firewall and WAF configurations to identify and address vulnerabilities. Conduct risk assessments and security audits to ensure the organization's infrastructure remains secure.
• Collaboration with Other IT Teams: Work closely with other teams (e.g., Network, DevOps, Application Security) to integrate firewall and WAF solutions with other security tools and systems.
• System Updates & Patching: Regularly update firewall and WAF systems with the latest patches, firmware updates, and security fixes to protect against new vulnerabilities.
• Training & Documentation: Create and maintain detailed documentation for firewall and WAF configurations, incident response protocols, and security procedures. Provide training to team members on firewall and WAF security best practices.
• Optimization & Tuning: Continuously optimize and tune the firewall and WAF systems for performance, ensuring minimal false positives and optimal traffic filtering.

Required Qualifications & Skills:

• 3-5 years of experience in network security, specifically with firewalls and WAF technologies.
• Hands-on experience with leading firewall technologies (e.g., Palo Alto, Fortinet, Cisco ASA, Check Point, Juniper).
• Proven expertise in Web Application Firewall (WAF) solutions, such as F5, AWS WAF, Akamai Kona Site Defender, or Cloudflare.
• Solid understanding of network protocols (e.g., TCP/IP, HTTP, SSL/TLS, DNS) and how they relate to firewall and WAF security configurations.
• Familiarity with DDoS mitigation techniques and tools.
• Experience with SIEM tools (e.g., Splunk, LogRhythm) for analyzing firewall and WAF logs.
• Strong understanding of network security concepts, including VPNs, IDS/IPS, NAT, and ACLs.
• Ability to troubleshoot and resolve network connectivity and security issues related to firewalls and WAF.
• Familiarity with industry standards and frameworks such as OWASP, NIST, ISO 27001, and PCI-DSS.
• Strong analytical, problem-solving, and incident response skills.
• Excellent written and verbal communication skills, with the ability to produce security reports and document procedures.
• Ability to work effectively in a collaborative team environment and communicate security concepts to non-technical stakeholders.