Overview
Skills
Job Details
Web & Application Security Engineer (WAF/Bot Protection)
Location: 100% Remote
Duration: Long term
Imperva - Web Application Firewall (WAF)
Imperva - Advanced Bot Protection (ABP)
Web & Application Security Engineer (WAF/Bot Protection)
We are seeking a skilled Web & Application Security Engineer with hands-on expertise in Imperva WAF, Imperva Advanced Bot Protection (ABP), Akamai, F5, and Cloudflare security platforms. The ideal candidate will protect mission-critical applications by deploying, tuning, and managing advanced L7 security controls.
Key Responsibilities
Deploy, configure, and optimize Imperva WAF and ABP to defend against OWASP Top 10, bot attacks, and L7 threats.
Manage WAF and bot protection solutions across Akamai Kona, F5 ASM/AdvWAF, and Cloudflare Security Suite.
Perform rule tuning, false-positive reduction, traffic analysis, and incident response.
Investigate malicious traffic patterns, automate mitigation strategies, and maintain high availability across multi-CDN environments.
Partner with DevOps, Cloud, and Application teams to integrate security into CI/CD workflows and application releases.
Maintain dashboards, reports, and documentation for audits, compliance, and operational readiness.
Required Skills & Experience
9+ years of experience in web application security or WAF/bot protection engineering.
Strong understanding of HTTP/S, APIs, bot behavior, and modern attack vectors (credential stuffing, scraping, L7 DDoS).
Hands-on experience with at least two of the following: Imperva, Akamai, F5, Cloudflare, AWS/Azure native WAFs.
Ability to analyze logs, packet flows, and threat intelligence data.