WAF Engineer - Insurance

WAF Engineer - Insurance

We are currently recruiting for a WAF Engineer with strong Web Application Firewall experience particularly within Azure environments to join one of our Insurance clients on a 6-month contract.

Inside IR35 / Hybrid - adhoc travel to London

Experience

• 3- 5 years hands-on experience implementing WAF technologies within Azure (Azure WAF / Front Door / App Gateway)
• Ideally similar experience in other cloud environments (Azure WAF / Front Door / App Gateway, AWS WAF, GCP Cloud Armor)
• Strong understanding of HTTP/S protocols and Layer 7 security controls (how WAF protects web traffic vs other network layers)
• Experience with WAF policy tuning and optimisation, including managing rule sets, handling false positives, and improving protection posture
• Familiarity with cloud networking constructs (VNets/VPCs, routing, load balancers, private endpoints, segmentation)
• Knowledge of common web application attack techniques (e.g. OWASP Top 10: injection, XSS, API abuse) and mitigation approaches
• Experience working with infrastructure-as-code and automation tools (Terraform, ARM, CloudFormation) for WAF deployment and policy management
• Ability to analyse logs and security telemetry (WAF logs, SIEM integration) to identify threats and drive remediation
• Exposure to firewalls, DDoS protection, and broader network security controls in cloud environments
• Strong collaboration skills, working with AppDev, Cloud Engineering, and Security teams to enforce controls without blocking delivery

Guidant, Carbon60, Lorien & SRG - The Impellam Group Portfolio are acting as an Employment Business in relation to this vacancy.