Senior WAF Security Engineer
2 weeks ago
WAF Security Engineer
Role Purpose
The Enterprise Application Security team is responsible for protecting Pearson's commercial digital products and data, our learner's data, and Pearson's internal applications. By employing a blend of technology, developer training, test integration, and process automation, the Application Security team's goal is to reduce our risks and provide ongoing Internet safe havens for our learners. This role will play a critical role in enhancing our Web Application Firewall (WAF) across multiple solutions and applications and will be pivotal in crafting, testing, and implementing advanced WAF solutions. This role involves a strong focus on developing robust security measures against web-based attacks, contributing significantly to the security posture of our organization, and achieving audits.Responsibilities
As a direct report to the Head of Application Security Engineering, you will have the following accountabilities:
Develop and refine complex custom WAF rules and features, ensuring mitigation of Minimum Viable Product (MVP) and security posture gaps. Ownership of all technical aspects tasks essential for passing WAF audits ensuring they are compliant and included in DevOps Automation processes, including aspects such as management plan access control traffic visibility, application of mitigative OWASP Top 10 based rules and features, versioning strategies for each WAF solution, etc. Coding expertise to create effective testing mechanisms for baseline and custom WAF rules, integrating these tests seamlessly into automation pipelines. Offer subject matter expert (SME) support in various security testing areas, including WAF Proofs of Concept (PoCs) Provide specialized WAF-focused advice on web and API attack methodologies, evasions, and mitigation techniques, leveraging your ethical hacking background. Contribute security and technical knowledge alongside organizational skills to assist Cyber teams with effective WAF SIEM Use CasesSkills and Experience
Someone that has extensive experience with Web Application Security log analysis and that is derived from a Cyber SOC/CSIRT work background who is willing to up-skill into a WAF Engineering SME – AWS and Akamai Strong background in ethical hacking Extensive experience with web-based attack methodologies, including knowledge of tools, payloads, exploits, and countermeasures. Proficient in web application and API security. Skilled in identifying and mitigating WAF/IPS/CSPM security vulnerabilities. Expertise in developing custom WAF rules and security testing packages. Solid understanding of OWASP top 10 vulnerabilities. Proficiency in at least one programming language Ability to automate security testing within CI/CD pipelines. Knowledgeable in networking, cloud firewalls, and web technologies. Strong grasp of DevSecOps principles and practices. Awareness of Agile methodologiesWhat to expect from Pearson
Did you know Pearson is one of the 10 most innovative education companies of 2022?
At Pearson, we add life to a lifetime of learning so everyone can realize the life they imagine. We do this by creating vibrant and enriching learning experiences designed for real-life impact. We are on a journey to be 100 percent digital to meet the changing needs of the global population by developing a new strategy with ambitious targets. To deliver on our strategic vision, we have five business divisions that are the foundation for the long-term growth of the company: Assessment & Qualifications, Virtual Learning, English Language Learning, Workforce Skills and Higher Education. Alongside these, we have our corporate divisions: Digital & Technology, Finance, Global Corporate Marketing & Communications, Human Resources, Legal, Strategy and Direct to Consumer. Learn more at
We value the power of an inclusive culture and also a strong sense of belonging. We promote a culture where differences are embraced, opportunities are accessible, consideration and respect are the norm and all individuals are supported in reaching their full potential. Through our talent, we believe that diversity, equity and inclusion make us a more innovative and vibrant place to work. People are at the center, and we are committed to building a workplace where talent can learn, grow and thrive.
-
Senior WAF Security Engineer
2 weeks ago
Chennai, Tamil Nadu, India Pearson Full timeWAF Security EngineerRole PurposeThe Enterprise Application Security team is responsible for protecting Pearson's commercial digital products and data, our learner's data, and Pearson's internal applications. By employing a blend of technology, developer training, test integration, and process automation, the Application Security team's goal is to reduce our...
-
Senior WAF Security Engineer
1 month ago
Chennai, Tamil Nadu, India Corporate Strategy & Technology Full timeWAF Security EngineerRole Purpose The Enterprise Application Security team is responsible for protecting Pearson's commercial digital products and data, our learner's data, and Pearson's internal applications. By employing a blend of technology, developer training, test integration, and process automation, the Application Security team's goal is to reduce...
-
Senior WAF Security Engineer
2 weeks ago
Chennai, Tamil Nadu, India Corporate Strategy & Technology Full timeWAF Security EngineerRole Purpose The Enterprise Application Security team is responsible for protecting Pearson's commercial digital products and data, our learner's data, and Pearson's internal applications. By employing a blend of technology, developer training, test integration, and process automation, the Application Security team's goal is to reduce...
-
Senior WAF Security Engineer
4 weeks ago
Chennai, Tamil Nadu, India Corporate Strategy & Technology Full timeWAF Security EngineerRole Purpose The Enterprise Application Security team is responsible for protecting Pearson's commercial digital products and data, our learner's data, and Pearson's internal applications. By employing a blend of technology, developer training, test integration, and process automation, the Application Security team's goal is to reduce...
-
Senior Cloud Security Engineer
2 weeks ago
Chennai, Tamil Nadu, India Cynosure Corporate Solutions Full timeYour Role and ResponsibilitiesWork with the infrastructure team and provide expert advice on securing our use of Azure cloud and AWS services, Kubernetes and containers in particular, provideguidance and a level of oversight for Azure and AWS network security and Key Vault.Encourage a 'shift-left' approach to securityAssist the Security Architect with...
-
Senior Cloud Security Engineer
2 weeks ago
Chennai, Tamil Nadu, India Cynosure Corporate Solutions Full timeYour Role and ResponsibilitiesWork with the infrastructure team and provide expert advice on securing our use of Azure cloud and AWS services, Kubernetes and containers in particular, provideguidance and a level of oversight for Azure and AWS network security and Key Vault.Encourage a 'shift-left' approach to securityAssist the Security Architect with...
-
Senior Cloud Security Engineer
2 weeks ago
Chennai, Tamil Nadu, India Cynosure Corporate Solutions Full timeYour Role andResponsibilitiesWorkwith the infrastructure team and provide expert advice on securingour use of Azure cloud and AWS services Kubernetes and containersin particularprovideguidanceand a level of oversight for Azure and AWS network security and KeyVault.Encouragea shiftleft approach tosecurityAssistthe Security Architect with securing our Data...
-
Senior Cloud Security Engineer
4 weeks ago
Chennai, Tamil Nadu, India Cynosure Corporate Solutions Full timeJob Description :Your Role and Responsibilities :- Work with the infrastructure team and provide expert advice on securing our use of Azure cloud and AWS services, Kubernetes and containers in particular, provide guidance and a level of oversight for Azure and AWS network security and Key Vault- Encourage a 'shift-left' approach to security- Assist...
-
Senior Cloud Security Engineer
4 weeks ago
Chennai, Tamil Nadu, India Cynosure Corporate Solutions Full timeJob Description :Your Role and Responsibilities :- Work with the infrastructure team and provide expert advice on securing our use of Azure cloud and AWS services, Kubernetes and containers in particular, provide guidance and a level of oversight for Azure and AWS network security and Key Vault- Encourage a 'shift-left' approach to security- Assist...
-
Network Security Engineer
2 weeks ago
Chennai, Tamil Nadu, India Integrated Personnel Services Limited Full timeRole - Network security analystExperience YearsEmployment type - Contract**Contract period - 6 Month extendable**Only immediate joinersJD - Qualifications: B.E / B. Tech in Computer Science, Information Technology Engineering or equivalent degree. Certifications: Preferred: Cisco CCNA or equivalent, Palo Alto, Zscaler Language: Fluent spoken and written...
-
Network Security Engineer
2 weeks ago
Chennai, Tamil Nadu, India Integrated Personnel Services Limited Full timeRole - Network security analyst Experience Years Employment type - Contract Contract period - 6 Month extendable Only immediate joiners JD - Qualifications: B.E / B.Tech in Computer Science, Information Technology Engineering or equivalent degree.Certifications: Preferred: Cisco CCNA or equivalent, Palo Alto, Zscaler Language: Fluent spoken and written...
-
Network Operations Engineer
2 weeks ago
Chennai, Tamil Nadu, India Notus Full timeJob Title: Web Application Firewall ExpertThe Web Application Firewall Expert plays a key role in maintaining security and efficiency within the Checkpoint Firewall and WAF infrastructure.Collaborate with development and infrastructure teams to seamlessly integrate the WAF into both existing and new web application environments.Hands-on experience in...
-
Sr Security Engineer
2 weeks ago
Chennai, Tamil Nadu, India Gartner Full timeAbout Gartner IT:Join a world-class team of skilled engineers who build creative digital solutions to support our colleagues and clients. We make a broad organizational impact by delivering cutting-edge technology solutions that power Gartner. Gartner IT values its culture of nonstop innovation, an outcome-driven approach to success, and the notion that...
-
Administrator - Web Application Firewall (WAF)
2 weeks ago
Chennai, Tamil Nadu, India Korn Ferry Full timeAdministrator (WAF) Web Applications firewall - L2 RoleMinimum 4 years of experience required.Key Roles and Responsibilities:Monitors client infrastructure and solutionsIdentifies problems and errors prior to or when they occurRoutinely identifies common incidents and opportunities for avoidance as well as general opportunities for incident...
-
Security Engineer 3
2 weeks ago
Chennai, Tamil Nadu, India Comcast Corporation Full timeComcast brings together the best in media and technology. We drive innovation to create the world's best entertainment and online experiences. As a Fortune 50 leader, we set the pace in a variety of innovative and fascinating businesses and create career opportunities across a wide range of locations and disciplines. We are at the forefront of change and...
-
Reve - Senior AWS/OCI Cloud Engineer
3 weeks ago
Chennai, Tamil Nadu, India Rêve Full timeJob Title : Senior AWS/OCI Cloud EngineerPosition Overview :We are seeking an experienced Senior AWS/OCI Cloud Engineer to join our dynamic team. The ideal candidate will have a deep understanding of both Oracle Cloud Infrastructure (OCI) and Amazon Web Services (AWS), along with extensive experience in designing, implementing, and managing cloud solutions...
-
Network Security Engineer
2 weeks ago
Chennai, Tamil Nadu, India 3110 K-T India Full timeResponsibilities:Implement and support security solutions that meet corporate security requirements.Configure and troubleshoot network firewalls to ensure optimal network security.Work closely with Security team partners/Business Relationship Managers, Field IT leadership and managed service suppliers to ensure successful identification and timely delivery...
-
Security Architect
2 weeks ago
Chennai, Tamil Nadu, India Expleo Full timeOverview: Solid experience across common security domains. Solid experience with enterprise IT architecture, peripheral, network security, APIs, webapps, mobile apps security. Solid experience with multicloud architectures with exposure to managed Kubernetes,popular PaaS and SaaS services. Solid experience in developing threat models and attack trees. Solid...
-
Network Security Engineer
2 weeks ago
Chennai, Tamil Nadu, India 3110 K-T India Full timeDescription Responsibilities: Implement and support security solutions that meet corporate security requirements. Configure and troubleshoot network firewalls to ensure optimal network security. Work closely with Security team partners/Business Relationship Managers, Field IT leadership and managed service suppliers to ensure successful...
-
Reve - Senior AWS/OCI Cloud Engineer
2 weeks ago
Chennai, Tamil Nadu, India Rêve Full timeJob Title : Senior AWS/OCI Cloud EngineerPosition Overview :We are seeking an experienced Senior AWS/OCI Cloud Engineer to join our dynamic team. The ideal candidate will have a deep understanding of both Oracle Cloud Infrastructure (OCI) and Amazon Web Services (AWS), along with extensive experience in designing, implementing, and managing cloud solutions...