Search by job, company or skills

BAJAJ FINSERV HEALTH

Senior Domain Manager

BAJAJ FINSERV HEALTH
Pune, India
5-8 Years
Save
new job description bg glownew job description bg glownew job description bg svg
  • Posted 2 days ago
  • Be among the first 10 applicants
Early Applicant

Job Description

Location Name: Pune Corporate Office - Mantri

Job Purpose

We are seeking a skilled CND & Edge Security Engineer with strong hands-on experience in Akamai, Cloudflare, Multi CDN operations, Multi DNS platforms, WAF Security, Application Load Balancing (ALB), origin server/network management, DNAT, and ingress traffic protection.

The role demands the ability to design, optimize, and operate high scale global content delivery architectures, protect applications via edge security, and ensure end to end availability, latency optimization, and secure delivery of web, API, and mobile traffic.

You will collaborate with internal teams, vendors, and cloud/network partners to ensure 24×7 application availability, performance, and security posture.

Duties And Responsibilities

  • Minimum Required Accountabilities for this Role (Mandatory)

CND & Multi-CDN Operations

  •  Manage and operate Akamai Ion, Kona, GTM, and Cloudflare CDN, Workers, Page Rules, Load Balancing.
  •  Implement and support Multi CDN architecture with automatic failover, performance based routing, and traffic steering.
  •  Configure caching rules, TTL strategies, edge logic, compression, device-based optimizations, and performance tuning.
  •  Monitor CDN performance (latency, throughput, hit/miss ratio) and drive continuous optimization.

Multi-DNS & Global Traffic Management

  •  Operate Multi DNS platforms (Akamai GTM, Cloudflare Load Balancer/DNS, NS1, Route53 or similar).
  •  Design failover/geo routing policies, proximity routing, health checks, and weighted traffic distribution.
  •  Manage DNS zones, CNAME hierarchies, SPF/DMARC/DKIM (where applicable), and coordinate DNS change governance.

WAF & Edge Security Operations

  •  Manage Akamai WAF/Kona, Cloudflare WAF, bot management, rate limiting, IP firewall, and DDoS protection.
  •  Tune security rulesets (OWASP signatures, custom rules, API schema validation, bot scoring, ACLs).
  •  Respond to security alerts, block malicious traffic, and coordinate with SOC for edge attack investigations.

Application Load Balancing & Origin Management

  •  Manage ALB at cloud (Azure/OCI/AWS ALB), on prem ADCs, or CDN-based L7 load balancers.
  •  Handle end to end traffic flow from CDN Load Balancer Reverse Proxy Application Servers.
  •  Maintain and optimize origin server configurations: SSL/TLS policies, caching headers, security headers (HSTS, CSP), keep-alive settings.

Network & Ingress Traffic Management

  •  Implement DNAT, reverse proxy routing, path/host-based routing, and micro segmentation at ingress.
  •  Ensure secure transport via mTLS, TLS 1.2/1.3, certificate lifecycle, OCSP stapling, key rotation.
  •  Troubleshoot traffic issues using HTTP traces, HAR logs, CDN debug headers, edge logs, and packet captures.

Monitoring & Incident Management

  •  Monitor CDN/WAF performance, DNS health, origin latency, and traffic anomalies.
  •  Handle 24×7 operational incidents, CDN failover, WAF rule lockdowns, and DNS routing changes.
  •  Provide RCA (root cause analysis) and implement long term remediation.

Documentation & Collaboration

  •  Maintain documentation for CDN architectures, DNS routing, WAF rules, security policies, and SOPs.
  •  Collaborate with application teams, security teams, DevOps, SRE, and product owners for stable releases and go lives.|B. Additional Accountabilities (Advanced / Growth-Oriented)

Architecture & Optimization

  •  Design and enhance Multi CDN & Multi DNS strategies for high availability, performance, and global coverage.
  •  Implement smart routing logic using Akamai Property Manager, Cloudflare Workers, Transform Rules, and Edge Logic.
  •  Lead optimization for web performance (LCP, FID, CLS) using CDN improvements and origin tuning.

Security Leadership

  •  Build zero trust edge security policies including API security, bot management, behavioural detection, and micro segmented WAF rules.
  •  Periodically test security posture against DDoS, WAF bypass, and bot attacks.
  •  Work with SOC to integrate CDN logs with SIEM.

Automation & DevSecOps

  •  Automate CDN config deployments using Terraform, Akamai APIs, Cloudflare API, CI/CD workflows.
  •  Build scripts for DNS failover checks, certificate renewals, and edge rule validations.
  •  Maintain version-controlled configuration repositories.

Performance Engineering

  •  Drive improvements in latency, TTFB, cache hit ratio, origin offload, and bandwidth cost optimization.
  •  Perform load tests and chaos testing for CDN failover scenarios.

Leadership & Governance

  •  Be the L3 escalation point for CDN/DNS/WAF/security issues.
  •  Guide junior engineers and partner teams on best practices.
  •  Own change governance for CDN, DNS, and security policies across environments.

________________________________________

Key Decisions / Dimensions

  •  Approve CDN cache/waf rule changes, routing policies, DNS steering logic.
  •  Decide on emergency CDN failover or WAF lockdown actions during attacks.
  •  Recommend performance optimizations and security enhancements.
  •  Determine routing strategies for multi cloud and multi edge traffic.

________________________________________

Major Challenges

  •  Maintaining consistent behavior across multiple CDNs, DNS providers, and WAF engines.
  •  Balancing performance vs. security across global user bases.
  •  Managing rapid application changes with tight SLAs and zero-downtime deployments.
  •  Protecting APIs and web workloads from evolving bot/DDoS attacks.
  •  Ensuring fault-tolerant traffic management across CDN DNS LB origin.

________________________________________

Educational Qualifications

Required Qualifications and Experience

  •  Bachelor's/Master's degree in IT/CS/Telecom or relevant field.
  • Work Experience & Certifications

Must Have

  •  5–8 years in CDN, DNS, WAF, and edge security operations.
  •  Strong experience with Akamai (Ion, Kona, GTM) and Cloudflare (WAF, LB, Workers, CDN).
  •  Proven expertise in DNS, traffic routing, Anycast, Multi DNS, Multi CDN.
  •  Deep understanding of HTTP/HTTPS, TLS, caching, redirects, compression, QUIC/HTTP3.
  •  Experience with DNAT, reverse proxying, load balancing, ingress traffic flows.
  •  Hands-on with origin servers (NGINX/Apache/IIS) & header tuning.
  •  Incident management experience in 24×7 environments.

Good to Have

  •  Certifications: Akamai ACA/ACP, Cloudflare Certifications, CCNP Security, or cloud certs (AZ 104, OCI Foundations).
  •  Automation using Terraform, Python, Ansible, Akamai/Cloudflare APIs.
  •  Exposure to SIEM/SOC, bot management, and DDoS mitigation tools.

Soft Skills

  •  Analytical problem solving, excellent communication, ownership mindset, and stakeholder management.




































More Info

Job Type:
Permanent Job
Industry:
Other
Function:
It
Employment Type:
Full time

About Company

BAJAJ FINSERV HEALTH

Job ID: 146027581

Jobs by Skill - IT
Jobs by Skill - Non IT
International Jobs
Last Updated: 20-04-2026 08:30:47 PM
Homejobs in PuneSenior Domain Manager

Similar Jobs

Java Selenium Automation Engineer

LTM

Murex Datamart Support Engineer with SQL, Incident Management, and Data Integrity

Synechron
S

Developer - Collateral Strategy

Barclays

Machine Learning Engineer & Data Scientist

Deutsche Bank

Data Engineer Senior Consultant

NTT Data