GCP WAF Engineer

We are seeking a skilled GCP WAF Engineer to join our security-focused DevOps team. This role is critical in safeguarding our web applications and infrastructure by implementing, tuning, and automating Web Application Firewall (WAF) rules within GCP environments. You'll be hands-on with GCP, Terraform, and Python Scripting, working closely with Security Operations (SOC) teams to enhance web security and OWASP protection.

Key Responsibilities

• Design, implement, and maintain GCP WAF solutions across various cloud workloads.
• Tune WAF rules and signatures to reduce false positives and protect against OWASP Top 10 vulnerabilities.
• Build automated WAF deployments and updates using Terraform and Python.
• Collaborate with SOC and DevSecOps teams to analyze web traffic and improve threat detection.
• Integrate WAF solutions with CI/CD pipelines and automate security controls
• Proven experience with WAF platforms: Cloud Armour.
• Strong understanding of CRS tuning, regex optimization, and transformation logic
• Expertise in IDS/IPS platforms.
• Hands-on experience in SIEM tools