Key Responsibilities: • Lead the deployment and configuration of F5 WAF across multiple public-facing applications and APIs. • Collaborate closely with application analysts and stakeholders to understand application architecture, functionality, and traffic patterns. • Design and implement WAF policies and rules based on industry best practices and tailored to specific application needs. • Conduct impact assessments and risk analysis to ensure WAF implementation does not adversely affect application performance or availability. • Develop and execute testing plans to validate WAF configurations and ensure effective threat mitigation. • Monitor and fine-tune WAF policies post-deployment to optimize protection and minimize false positives. • Document configurations, processes, and lessons learned for knowledge transfer and future reference. • Provide guidance on WAF lifecycle management, including updates, tuning, and integration with broader security infrastructure.
F5 Qualifications: • Extensive hands-on experience with F5 WAF (ASM/Advanced WAF) in enterprise environments. • Deep understanding of web application security, including OWASP Top 10 vulnerabilities and mitigation strategies. • Proven ability to work with cross-functional teams, especially application analysts and developers. • Strong knowledge of F5 BIG-IP platform, including LTM and iRules. • Experience with change management and downtim