- Responsibilities: - Develop, implement, and maintain Web Application Firewall (WAF) policies and rules. - Configure and manage F5 BIG-IP devices, including LTM, ASM, and APM modules - Configure and manage WAF solutions, including cloud-native and on-premises deployments. - Monitor and analyse security events and logs to identify potential threats and vulnerabilities. - Collaborate with the security engineering team to design and deploy secure network solutions. - Troubleshoot and resolve issues related to WAF configurations. - Conduct regular security assessments and audits to ensure compliance with industry standards. - Provide technical support and guidance to other teams regarding WAF and F5-related matters. - Stay updated with the latest security trends and technologies. - Qualifications: - Bachelor's degree in computer science, Information Technology, or a related field. - Extensive experience with F5 BIG-IP products. - Extensive experience with WAF technologies and web application security. - Strong understanding of network security principles and best practices. - Excellent problem-solving and analytical skills. - Relevant certifications (e.g., F5 Certified BIG-IP Administrator, CISSP, CEH) are a plus. - Strong knowledge of Active Directory, LDAP, RSA, DNS, Networking and security principles. - Extensive experience in implementing and configuring SSL certificates. - Knowledge of VMware and Cloud infrastructures. If this position were advertised externally, the qualifications and experience listed would be appropriate. However, if it were advertised internally, I realistically don't believe there is anyone out there who has extensive WAF or F5 experience. With that in mind, here would be my minimum requirements: Minimum Requirements (internal) Qualifications/Experience: - Understanding of web application security principles and best practices. - Excellent problem-solving, troubleshooting, and analytical skills. - Solid knowledge of DNS and networking fundamentals. - Understanding of cloud infrastructure and cloud-native security practices. #J-18808-Ljbffr