Title: Senior WAF Security Engineer (Citrix NetScaler & Imperva)
Location: Noida
Experience: 69 Years
Employment Type: Permanent
Notice Period: Immediate Joiners Preferred
About the Role
We are looking for an experienced Senior WAF Security Engineer to manage and enhance enterprise-scale Web Application Firewall (WAF) platforms across on-premise and cloud environments. The ideal candidate will act as a subject matter expert (SME), ensuring high availability, performance optimization, compliance adherence, and advanced threat protection for large-scale internet-facing applications.
This role involves close collaboration with SOC, SIEM, Cloud Security, DLP, and EDR teams, along with active participation in governance, audits, and executive-level reporting.
Key Responsibilities
- Manage and operate on-premise and cloud-based WAF deployments supporting large-scale enterprise applications.
- Oversee Citrix NetScaler infrastructure, including:
- 4 SDX appliances
- 11 VPX instances (3 cloud + 8 on-prem)
- Protecting 1500 internet-facing applications
- Manage Imperva WAF gateway appliances and virtual deployments with a focus on:
- High availability
- Low latency
- SSL/TLS acceleration
- Design, configure, and maintain WAF policies, signatures, profiles, and security rules.
- Apply WAF protection for VPNs, authentication services, and enterprise portal endpoints.
- Ensure alignment with enterprise security standards, vendor best practices, and compliance frameworks.
- Handle weekly operational workload, including:
- 34 change requests
- 1012 troubleshooting and support tasks
- Provide L3-level incident response, investigation, and root cause analysis (RCA) for WAF alerts and anomalies.
- Collaborate with SOC and SIEM teams to correlate WAF logs with broader threat intelligence and detection workflows.
- Monitor and optimize WAF performance metrics such as latency, throughput, and SSL/TLS transaction rates.
- Tune security policies to minimize false positives while maintaining strong protection with minimal application impact.
- Implement fault-tolerant architectures, including:
- High-availability clustering
- Hot-swappable components
- Participate in governance forums, SLA reviews, and security posture reporting.
- Support audits by ensuring WAF configurations meet compliance and regulatory requirements.
- Contribute to CXO-level dashboards and Power BI reports for perimeter security insights.
- Act as a domain SME within the Cyber Defense Center (CDC), collaborating with:
- DLP
- EDR
- Cloud Security teams
- Drive cross-skilling and knowledge-sharing initiatives to improve operational resilience and reduce dependency risks.
Required Technical Skills
- Strong hands-on experience with Citrix NetScaler (SDX, VPX).
- Expertise in Imperva WAF (appliance and virtual deployments).
- Deep understanding of Web Application Security, OWASP Top 10, and SSL/TLS.
- Experience with HA architectures, clustering, and failover designs.
- Proficiency in incident handling, RCA, and production support.
- Experience working with SIEM tools and SOC processes.
- Strong knowledge of performance monitoring and tuning for WAF platforms.
- Familiarity with compliance and audit requirements in enterprise environments.
Preferred Skills (Nice to Have)
- Exposure to cloud security platforms (AWS / Azure / GCP).
- Experience with Power BI or executive-level security reporting.
- Knowledge of DevSecOps or CI/CD security integration.
- Prior experience working in a Cyber Defense Center (CDC) or large enterprise security team.
- Leadership or mentoring experience.
