Technical Specialist – Application Security

Technical Specialist – Application Security

Relevant certifications (e.g., Forcepoint Certified, CISSP)

8 – 10 Years

• Lead the implementation and configuration of F5 WAF across enterprise environments.
• Perform advanced troubleshooting and root cause analysis of WAF-related issues.
• Monitor WAF logs and alerts to identify and respond to potential threats.
• Develop and maintain WAF policies, rulesets, and custom signatures.
• Collaborate with application and infrastructure teams to ensure secure application delivery.
• Conduct regular WAF health checks, performance tuning, and upgrades.
• Provide L3 support for escalated incidents and service requests.
• Participate in security assessments and vulnerability management initiatives.
• Document technical procedures, configurations, and incident reports.
• Mentor junior engineers and contribute to knowledge sharing.

• Deploy, configure, and manage Database Activity Monitoring (DAM) solutions (e.g., Forcepoint DAM, Imperva or AURVA).
• Monitor and analyze database activity to detect anomalies, unauthorized access, and policy violations.
• Create and manage DAM policies, alerts, and reports for compliance and auditing.
• Integrate DAM with SIEM and other security platforms for centralized monitoring.
• Collaborate with database administrators and compliance teams to ensure secure and compliant data access.
• Perform forensic analysis and support investigations related to database activity.

• Manage the full lifecycle of SSL/TLS certificates including issuance, renewal, revocation, and replacement.
• Work with Certificate Authorities (CAs) to procure certificates according to organizational needs.
• Configure and deploy SSL certificates on web servers, load balancers, mail servers, and other network devices.
• Monitor SSL certificate expirations and maintain an inventory to avoid service disruptions.
• Troubleshoot SSL-related issues including handshake failures, certificate chain problems, and trust errors.
• Implement and enforce best practices for certificate management, including key management and secure storage.
• Collaborate with IT, security, and application teams to ensure proper SSL deployment and adherence to security policies.
• Stay current with SSL/TLS protocols, vulnerabilities, and industry standards such as TLS 1.2, and Certificate Transparency.
• Support audits and compliance efforts related to encryption and certificate management

1. 5+ years of experience in network/application security with a focus on WAF technologies.
2. 3+ years of hands-on experience with Forcepoint WAF and DAM in enterprise environments.
3. Strong understanding of HTTP/S protocols, OWASP Top 10, and web application architectures.
4. Proficiency in Forcepoint WAF policy creation, custom rule development, and integration with SIEM tools.
5. Experience with SSL/TLS, load balancing, and reverse proxy configurations.
6. Familiarity with scripting languages (e.g., Python, Bash) for automation and log analysis.
7. Excellent problem-solving and analytical skills