2 of 2 Contract Security Posture Jobs in Birmingham

Role Title: WAF & Application Security SME Location: Birmingham B1 1HQ (Hybrid 60% office/40% home - 3 days in the office is mandatory) Start Date: 15/09/2025 End Date: 15/09/2026 Rate: £495p/d via Umbrella Job Description: This role will play a critical role in enhancing our Web Application Firewall (WAF … across multiple solutions and applications and will be pivotal in crafting, testing, and implementing advanced WAF uplifts. This role involves a strong focus on WAF Effiacy and security posture uplift by crafting efficacy testing custom rules and configurations; additionally, the role will cover WAF tuning via detailed log analysis, false positive detection and mitigation, and making tuning and … company's operations, reputation, and customers and monitor and review tuning request, proactively assist with identifying false positives and provide expert recommendations and stay updated with the latest web security threats and trends to ensure optimal protection and performance. Candidate Profile Summary: The primary role is to tune WAF accurately and safely - avoiding outage and bypass. We are not More ❯

Job Title: WAF & Application Security SME Location: Birmingham (Hybrid - 60% office/40% home, 3 days in the office mandatory) Salary/Rate: £480 Per Day - Inside IR35 Start Date: 15/09/2025 End Date: 15/09/2026 Job Type: Contract Company Introduction We have an exciting opportunity for a skilled Web Application Firewall (WAF … Application Security Subject Matter Expert to join a high-profile programme. This role is pivotal in enhancing and tuning WAF solutions across a variety of applications to improve security posture and protect against advanced web-based threats. Job Responsibilities/Objectives You will be responsible for designing, testing, tuning, and implementing advanced WAF configurations, ensuring maximum efficacy … while avoiding outages or bypasses. Craft, test, and deploy complex custom WAF rules to mitigate security gaps and improve overall protection. Conduct detailed log analysis to identify and reduce false positives, optimising rule sets for accuracy and performance. Provide SME-level guidance on web and API-based attack methodologies, evasion techniques, and mitigation strategies. Support DevSecOps pipeline integration for More ❯