Web Application Firewall (WAF) - Security P-054

SMASH, Who we are?

We are agents for tech professionals in Costa Rica and Colombia that help them build careers in the United States. 

• We believe in long-lasting relationships with our talent. We invest time getting to know them and understanding what they are looking for as their professional next step. 
• We aim to find the perfect match. As agents, we pair our talent with our US clients, not only by their technical skills but as a cultural fit. Our core competency is to find the right talent, fast.
• We purposefully move away from the “contractor” or “outsourcing” type of relationship. Our clients don’t want contractors or “just a service.” Neither does our talent.

 Our Benefits

• Work from everywhere within Costa Rica
• Private Medical Insurance
• English Academy for Employees and Relative
• Business Skills Coach – Certifications
• Discounts with Tech Universities
• Events and additional Perks

This position is Remote to work with a US Company; you will be required to have Citizenship or a work permit from Costa Rica or Colombia to apply for this role

Job Description:
We are looking for a skilled Web Application Firewall (WAF) Specialist to join our cybersecurity team. The WAF Specialist will be responsible for managing and maintaining our WAF infrastructure, particularly focused on platforms such as Cloudflare. The ideal candidate will have expertise in web application security, strong technical skills in WAF technologies, and the ability to implement and enforce effective WAF policies to protect against web-based attacks.

Key Responsibilities:

1. Administer and optimize our Web Application Firewall (WAF) infrastructure hosted on Cloudflare, including configuration, tuning, and policy management.
2. Monitor and analyze web traffic for security threats, including XSS, SQL injection, CSRF, and other common web application vulnerabilities.
3. Develop and implement WAF policies to detect and block malicious web traffic, unauthorized access attempts, and suspicious activities.
4. Collaborate with development teams to integrate WAF solutions into web applications and services, ensuring secure coding practices and compliance with security standards.
5. Conduct regular audits and assessments of WAF configurations to ensure alignment with security best practices and regulatory requirements.
6. Provide expertise and guidance to internal stakeholders on web application security issues and risk mitigation strategies.
7. Stay abreast of emerging web security threats, vulnerabilities, and industry trends.
8. Participate in incident response activities related to web application security incidents, including analysis, containment, and remediation.

Qualifications:

• Bachelor's degree in Computer Science, Information Security, or a related field.
• 5+ years of experience in managing Web Application Firewall (WAF) solutions, preferably on Cloudflare, and DLP (Data Loss Prevention) with NetSkope
• Strong understanding of web application security principles, including OWASP Top 10 vulnerabilities and mitigation techniques.
• Hands-on experience with WAF technologies, rule configuration, and policy management.
• Familiarity with web development frameworks, APIs, and microservices architecture.
• Excellent analytical and problem-solving skills, with the ability to identify and respond to web-based security threats effectively.
• Effective communication and collaboration skills, with the ability to work closely with cross-functional teams.