Network Engineer- WAF

Network Engineer- WAF

We are currently recruiting for a Network Engineer with strong WAF experience to join one of our Insurance clients on a 6-month contract.

Inside ir35

Hybrid - adhoc travel to London

The Role

• Implement and operate WAF solutions across multi-cloud environments (Azure Front Door, Application Gateway, AWS WAF, GCP equivalents), ensuring consistent protection for all internet-facing applications
• Configure and optimise WAF policies (managed rule sets, custom rules, bot protection, request inspection) to prevent threats
• Drive remediation of WAF gaps and misconfigurations, including transitioning services from detection to prevention mode and enforcing baseline guardrails
• Collaborate with application and cloud engineering teams to onboard applications to WAF, troubleshoot false positives, and ensure minimal business disruption
• Integrate WAF telemetry into SIEM / monitoring platforms to enable visibility, alerting, and incident response workflows
• Support WAF deployment at scale, contributing to rollout plans to achieve full coverage of external-facing services
• Contribute to security guardrails and standards, ensuring WAF implementations align with enterprise policy and Zero Trust principles

Experience

• 3- 5 years hands-on experience implementing WAF technologies within Azure (Azure WAF / Front Door / App Gateway)
• Ideally similar experience in other cloud environments (Azure WAF / Front Door / App Gateway, AWS WAF, GCP Cloud Armor)
• Strong understanding of HTTP/S protocols and Layer 7 security controls (how WAF protects web traffic vs other network layers)
• Experience with WAF policy tuning and optimisation, including managing rule sets, handling false positives, and improving protection posture
• Familiarity with cloud networking constructs (VNets/VPCs, routing, load balancers, private endpoints, segmentation)
• Knowledge of common web application attack techniques (e.g. OWASP Top 10: injection, XSS, API abuse) and mitigation approaches
• Experience working with infrastructure-as-code and automation tools (Terraform, ARM, CloudFormation) for WAF deployment and policy management
• Ability to analyse logs and security telemetry (WAF logs, SIEM integration) to identify threats and drive remediation
• Exposure to firewalls, DDoS protection, and broader network security controls in cloud environments
• Strong collaboration skills, working with AppDev, Cloud Engineering, and Security teams to enforce controls without blocking delivery

Guidant, Carbon60, Lorien & SRG - The Impellam Group Portfolio are acting as an Employment Business in relation to this vacancy.