Principal Application Security Engineer – Cloud Security & WAF
ITDS Polska Sp. z o.o.
25200 - 31500 PLN / HOUR
Hybrid
B2B
Status
Hexjobs Insights
Stanowisko: Principal Application Security Engineer – Cloud Security & WAF. Obowiązki: rozwój reguł WAF, współpraca z zespołami, monitorowanie ataków. Wymagania: min. 4 lata doświadczenia w bezpieczeństwie aplikacji. Liczne benefity.
Schlüsselwörter
WAF
cloud security
application security
AWS
Azure
GCP
SIEM
incident response
documentation
cybersecurity standards
Vorteile
- Stabilna i długofalowa współpraca
- Rozwój umiejętności w branży finansowej
- Współpraca przy strategicznych projektach
- Elastyczne godziny pracy
- Dostęp do atrakcyjnego pakietu medycznego
- Udział w wydarzeniach integracyjnych
- Dostęp do programu Multisport
- Dostęp do Pluralsight
Technologies we use
About the project
Your responsibilities
- Develop, deploy, and optimize Web Application Firewall (WAF) rules across cloud platforms such as AWS, Azure, or GCP, ensuring robust protection against Layer 7 DDoS attacks.
- Collaborate with cross-functional teams to implement security baselines and integrate central security capabilities, including SIEM and incident response systems.
- Monitor attack signatures and false positives using native cloud logging and alerting solutions; respond effectively to cyber-attacks.
- Provide guidance on web application security best practices, including reviewing signatures and assisting developers with non-compliance issues.
- Produce procedural documentation and runbooks for secure deployment and incident management related to WAF configurations.
- Participate in maintaining compliance with cybersecurity standards and industry best practices through continuous learning and knowledge sharing.
- Support migration projects for services to cloud-native security rules and facilitate the application of central security policies.
Our requirements
- At least 4 years of hands-on experience in application security, with a focus on WAF rule deployment and cloud-native security solutions.
- Practical experience with at least one major cloud provider (AWS, Azure, GCP) and their native WAF and DDoS protection mechanisms.
- Strong knowledge of web security, including signatures, threat mitigation, and false positive management.
- Experience in working across organizational teams to implement security configurations and respond to security incidents.
- Ability to produce clear documentation, procedural guidelines, and provide training or guidance to development teams.
- Basic certifications in cloud technologies such as AWS Certified Security – Specialty, or equivalent is a plus.
- Familiarity with logging and alerting tools like Splunk or similar.
Optional
- Industry-recognized certifications (AWS, GCP, Azure).
- Experience operating in highly regulated industries such as financial services.
- Additional knowledge of open-source or industry-standard security frameworks.
This is how we organize our work
This is how we work
What we offer
- Stable and long-term cooperation with very good conditions
- Enhance your skills and develop your expertise in the financial industry
- Work on the most strategic projects available in the market
- Define your career roadmap and develop yourself in the best and fastest possible way by delivering strategic projects for different clients of ITDS over several years
- Participate in Social Events, training, and work in an international environment
- Access to attractive Medical Package
- Access to Multisport Program
- Access to Pluralsight
- Flexible hours
Benefits
#GETREADY to meet with us!
ITDS’s Whistleblower Procedure
Aufrufe: 8
| Veröffentlicht | vor 19 Tagen |
| Läuft ab | in 11 Tagen |
| Art des Vertrags | B2B |
| Arbeitsmodus | Hybrid |
Ähnliche Jobs, die für Sie von Interesse sein könnten
Basierend auf "Principal Application Security Engineer – Cloud Security & WAF"
Keine Angebote gefunden, versuchen Sie, Ihre Suchkriterien zu ändern.