Key Responsibilities
* Design and implement comprehensive security solutions for web applications using F5 WAF.
* Collaborate with the internal IT and security teams to understand the business needs and translate them into scalable, secure architectural solutions.
* Define security policies, guidelines, and best practices to ensure the confidentiality, integrity, and availability of the client's web applications.
* Deploy, configure, and maintain F5 WAF devices and related security appliances to secure web applications and API traffic.
* Ensure optimal performance and continuous tuning of WAF rules to detect and block threats such as SQL injection, cross-site Scripting (XSS), and other OWASP Top 10 threats.
* Integrate F5 WAF solutions with existing security tools and processes, including SIEM and monitoring systems.
* Identify, assess, and mitigate vulnerabilities across the banking client's infrastructure.
* Lead incident response for web-based attacks and ensure proper security monitoring, detection, and remediation of security events.
* Analyse logs and reports from WAF, SIEM, and other security tools to detect and respond to potential threats and vulnerabilities.
* Stay up to date with the latest trends and best practices in web application security, threat intelligence, and F5 WAF technologies.
Required Skills
* In-depth knowledge of F5 technologies, including BIG-IP, ASM, LTM, APM, and Advanced WAF.
* Strong understanding of web application protocols (HTTP, HTTPS) and SSL/TLS encryption.
* Expertise in mitigating web application vulnerabilities (OWASP Top 10).
* Familiarity with Scripting languages (eg, Python, Bash).
* Hands-on experience managing F5 appliances in large-scale enterprise environments.
* Knowledge of load balancing, traffic management, and DNS configurations.
* Experience with SIEM tools, log analysis, and incident response workflows