Infrastructure Security Engineer – Level 2 – Cloudflare and WAF

About Gruve
Gruve is an innovative software services startup dedicated to transforming enterprises to AI powerhouses. We specialize in cybersecurity, customer experience, cloud infrastructure, and advanced technologies such as Large Language Models (LLMs). Our mission is to assist our customers in their business strategies utilizing their data to make more intelligent decisions. As a well-funded early-stage startup, Gruve offers a dynamic environment with strong customer and partner networks.

Position summary:-

We are seeking a skilled and detail-oriented L2 Cloudflare Engineer to join our infrastructure and security team. This role focuses on the daily administration, monitoring, and business-as-usual (BAU) operations of Cloudflare services. The ideal candidate will have hands-on experience with Cloudflare's platform and a strong understanding of internet security, performance optimization, and DNS management.

Key Roles & Responsibilities
Administration and BAU Operations

• Monitor and analyze WAF logs for threats, anomalies, or false positives.
• Respond to security events including bot attacks, DDoS mitigations, and rate-limiting triggers.
• Ensure SSL/TLS configurations are up-to-date and aligned with industry best practices.
• Maintain and review bot management policies
• Monitor availability dashboards, uptime tools, and origin health status.
• Perform routine checks on firewall rules, rate limits, and zero-trust policies.
• Validate traffic analytics, error rates, and configuration drift

Performance & Optimization

• Monitor cache hit/miss ratios and tune page/transform rules as needed.
• Check CDN health across global PoPs and investigate latency issues.
• Review and maintain performance dashboards and analytics.

DNS & Routing

• Verify DNS resolution accuracy and monitor propagation for recent changes.
• Maintain zone records and ensure changes are documented and approved.
• Troubleshoot domain routing issues and validate failover/load balancing

Incident & Change Management

• Investigate and resolve Cloudflare and WAF -related issues, coordinating with IT security and application owner teams.
• Assist in Root Cause Analysis (RCA) and remediation security and other incidents.
• Document and escalate persistent to vendor support and coordinate for resolution and troubleshooting.
• Participate in daily change reviews and implement approved DNS/firewall/config changes.
• Review and manage Cloudflare access roles, ensuring MFA compliance.
• Audit admin actions via dashboard or integrated logging tools.

Reporting, Documentation And Compliance

• Generate reports on WAF status, threat detections, and remediation actions.
• Support compliance audits by providing endpoint security logs and configurations.
• Follow change management and ITIL processes for security updates and policy changes.
• Maintain detailed daily logs of activities, incidents, and resolution steps.
• Prepare daily status reports and contribute to knowledge base updates.
• Assist in weekly and monthly reporting for compliance and performance reviews

Basic Qualification

• BE / B'Tech / MCA / MSc and 3–7 years of experience in network or security operations.
• Minimum 1–2 years of hands-on experience with Cloudflare administration.
• Proficiency with WAF, DNS, CDN, and SSL/TLS concepts.
• Familiarity with Cloudflare APIs, scripting (Bash, Python), or automation (Terraform) is a plus.
• Strong understanding of internet protocols (HTTP/S, TCP/IP, DNS).
• Experience using monitoring tools (Pingdom, Uptime Robot, Datadog, etc.).
• Knowledge of change management and ITIL processes.

Preferred Qualifications

• Cloudflare Certified Partner or relevant vendor certifications.
• CompTIA Security+, CEH, or other network/security credentials
• Knowledge of malware detection, forensic analysis, and threat intelligence.
• Familiarity with SIEM integration, endpoint compliance, and security policies.
• Strong problem-solving and troubleshooting skills.
• Good communication and teamwork abilities.
• Ability to work in rotational shifts (if required) and handle security incidents.

Why Gruve
At Gruve, we foster a culture of innovation, collaboration, and continuous learning. We are committed to building a diverse and inclusive workplace where everyone can thrive and contribute their best work. If you're passionate about technology and eager to make an impact, we'd love to hear from you.

Gruve is an equal opportunity employer. We welcome applicants from all backgrounds and thank all who apply; however, only those selected for an interview will be contacted.