Lead Application Security Engineer – WAF

Overview

On Site
Depends on Experience
Contract - W2
Contract - 18 month(s)
No Travel Required

Skills

("Application Security") AND ("Web Application Firewall" OR WAF) AND ("Layer 7" OR L7) AND ("bot" OR "API security")

Job Details

Job Title: Lead Application Security Engineer – WAF

Location:  Charlotte, NC, Chandler, AZ or Dallas- Irving, TX- hybrid - 3 days in office/2 days remote
Duration: 12-18 months

 

Job Description

Required Qualifications

  • 5+ years of professional experience in Web Application Firewall (WAF)/ Layer 7 security.
  • Must have deep hands-on experience with WAF (Web Application Firewalls) configuration, tuning, and monitoring or WAF’s from vendors such as Imperva, ASM, Cloudflare, Akamai, F5 Advanced, FortiWeb, Barracuda.
  • Demonstrated knowledge of application layer (L7) DDoS attacks; network (L3) DDoS is not required.
  • Must have experience with web attacks (how to protect) and rate limiting policies.
  • Bot Management & API Security: Implement bot mitigation strategies, API security, and rate limiting for application traffic.
  • DNS & Load Balancing: Configure and manage DNS (A records, CNAME records), global and local load balancing for high-availability applications. A/CNAME records
  • Web Application Security & DDoS Protection: Experience with WAF, Layer 7 (L7) DDoS mitigation, web application attack protection, and vulnerability management. Tools: Imperva, ASM, Cloudflare, Akamai, F5 Advanced, FortiWeb, Barracuda.
  • Threat Mitigation & Compliance: Apply security controls to safeguard web applications, ensure regulatory compliance, and maintain operational integrity.

Preferred Qualifications

  • Experience with local load balancing and high-level network firewall concepts.
  • Relevant certifications (e.g., Certified Information Systems Security Professional (CISSP), GIAC Web Application Security (GWEB), or vendor-specific WAF certifications) are a plus.
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.