waf security engineer

Title: Senior WAF Security Engineer (Citrix NetScaler & Imperva)

Location: Noida

Experience: 69 Years

Employment Type: Permanent

Notice Period: Immediate Joiners Preferred

About the Role

We are looking for an experienced Senior WAF Security Engineer to manage and enhance enterprise-scale Web Application Firewall (WAF) platforms across on-premise and cloud environments . The ideal candidate will act as a subject matter expert (SME) , ensuring high availability, performance optimization, compliance adherence, and advanced threat protection for large-scale internet-facing applications.

This role involves close collaboration with SOC, SIEM, Cloud Security, DLP, and EDR teams , along with active participation in governance, audits, and executive-level reporting.

Key Responsibilities

• Manage and operate on-premise and cloud-based WAF deployments supporting large-scale enterprise applications.
• Oversee Citrix NetScaler infrastructure , including:
• 4 SDX appliances
• 11 VPX instances (3 cloud + 8 on-prem)
• Protecting ~1500 internet-facing applications
• Manage Imperva WAF gateway appliances and virtual deployments with a focus on:
• High availability
• Low latency
• SSL/TLS acceleration
• Design, configure, and maintain WAF policies, signatures, profiles, and security rules .
• Apply WAF protection for VPNs, authentication services, and enterprise portal endpoints .
• Ensure alignment with enterprise security standards , vendor best practices, and compliance frameworks.
• Handle weekly operational workload , including:
• 34 change requests
• 1012 troubleshooting and support tasks
• Provide L3-level incident response , investigation, and root cause analysis (RCA) for WAF alerts and anomalies.
• Collaborate with SOC and SIEM teams to correlate WAF logs with broader threat intelligence and detection workflows.
• Monitor and optimize WAF performance metrics such as latency, throughput, and SSL/TLS transaction rates.
• Tune security policies to minimize false positives while maintaining strong protection with minimal application impact.
• Implement fault-tolerant architectures , including:
• High-availability clustering
• Hot-swappable components
• Participate in governance forums, SLA reviews, and security posture reporting .
• Support audits by ensuring WAF configurations meet compliance and regulatory requirements .
• Contribute to CXO-level dashboards and Power BI reports for perimeter security insights.
• Act as a domain SME within the Cyber Defense Center (CDC), collaborating with:
• DLP
• EDR
• Cloud Security teams
• Drive cross-skilling and knowledge-sharing initiatives to improve operational resilience and reduce dependency risks.

Required Technical Skills

• Strong hands-on experience with Citrix NetScaler (SDX, VPX) .
• Expertise in Imperva WAF (appliance and virtual deployments).
• Deep understanding of Web Application Security , OWASP Top 10, and SSL/TLS.
• Experience with HA architectures, clustering, and failover designs .
• Proficiency in incident handling, RCA, and production support .
• Experience working with SIEM tools and SOC processes .
• Strong knowledge of performance monitoring and tuning for WAF platforms.
• Familiarity with compliance and audit requirements in enterprise environments.

Preferred Skills (Nice to Have)

• Exposure to cloud security platforms (AWS / Azure / GCP).
• Experience with Power BI or executive-level security reporting .
• Knowledge of DevSecOps or CI/CD security integration .
• Prior experience working in a Cyber Defense Center (CDC) or large enterprise security team.
• Leadership or mentoring experience.