WAF / Network Security Engineer - Contract

Role Overview

You will create, deploy, maintain, and troubleshoot WAF policies across F5 ASM and cloud platforms (Azure / AWS), acting as the organisation's primary defence against web-based threats.

Working closely with development and security teams, you will design protective controls tailored to specific applications, reduce false positives, and continuously mature the organisation's protection posture.

Key Responsibilities

WAF & Application Security

. Configure and manage F5 ASM and cloud WAF policies (Azure / AWS) for new and existing web applications

. Review vulnerability findings and develop WAF virtual patching solutions to rapidly mitigate risk

. Monitor and analyse activity logs to detect malicious traffic and indicators of compromise

. Work with developers to implement protective controls customised for specific applications

. Interpret web protocol data to determine source, intent, and risk level of threat agents

. Review WAF usage and define improvements to mature protection policies

Vulnerability & Firewall Management

. Manage the end-to-end vulnerability lifecycle - assessment, reporting, and stakeholder remediation engagement

. Execute firewall change requests and resolve connectivity issues arising from firewall policies

. Provide preventative maintenance and rapid troubleshooting to ensure infrastructure and application stability

. Apply understanding of routing, NAT, ARP, and tools such as tcpdump to trace and resolve data-flow issues

. Review vulnerability scan output and assess where WAF configuration can be used to mitigate attacks

Operations & Reporting

. Utilise SIEM platforms to create custom security reports and operational dashboards

. Prepare regular reports including monthly firewall / WAF log reviews and rules reviews

. Participate in technical design activities to identify infrastructure impact and ensure sound architecture

. Create and maintain technical documentation - network diagrams, policies, and operational procedures

. Support daily security operations and assist in audit event collection and reporting

Required Experience & Skills

1.Network & Infrastructure Security

IPS, WAF, Load Balancers, Network Firewalls (e.g. Palo Alto)

Network security fundamentals and data flow technologies

Mainstream OS familiarity across a wide range of security tools

Understanding of routing, NAT, ARP, and packet analysis

2. Application & Cloud Security

Application security concepts and web application technologies

Security vulnerability scanning and assessment methodologies

Cloud security experience (Azure / AWS WAF configurations)

Full understanding of the application project lifecycle

3. SIEM & Audit

Proficiency in SIEM platforms with custom report / dashboard development

Experience with audit event collection and reporting toolsets

Vulnerability management processes and stakeholder engagement

4. Soft Skills

Proven analytical and problem-solving abilities

Self-motivated, detail-oriented, and collaborative team player

High integrity, strong communication skills, positive demeanour

Ability to research emerging IT security issues and products

Certifications

A recognised security qualification is preferred. Suitable certifications include:

F5 CTS-ASM

CISSP

CISM

ISC2

CEH

PCNSE