Network Security Engineer L3 (WA F5)

Sattrix Information Security

Location: Mumbai, Maharashtra, India
Job type: Full-time

Required skills

Python
SIEM
API
Bash
DevOps
firewall
HTTP
incident response
information security
Kubernetes
Linux
network security
proxy
reverse proxy
Reverse Proxy
Root Cause Analysis
TCP
VMware

About the role

Sattrix Information Security

Website: sattrix.com
Job details:

Role: Device management L3 Support Engineer (Network Security)

Location: Mumbai - Onsite

Shift: Rotational Shift & Rotational week off

5 Days working

Role Overview:

The WAF Security Engineer (L3) will be responsible for advanced troubleshooting, policy tuning, attack analysis, and optimization of Web Application Firewall deployments protecting critical digital payment and financial applications.

Experience

• 7-10 years in WAF / Application Security / Network Security roles.

Key Responsibilities:

1.WAF Troubleshooting & Optimization

• Perform advanced troubleshooting of application access issues and WAF false positives.

• Tune WAF policies to reduce false positives while maintaining security.

• Analyze HTTP transactions and request flows to identify security issues.

• Troubleshoot 502, 503, upstream connectivity, and reverse proxy related issues.

2.Security Analysis

• Analyze WAF attack logs and traffic patterns to identify malicious activity.

• Investigate OWASP Top 10 attacks, bot traffic, and application layer DDoS attempts.

• Perform rule tuning and custom signature development.

3.Deployment & Configuration

• Deploy and manage WAF policies across environments.

• Manage and support containerized WAF deployments.

4.Log Analytics

• Build dashboards and analytics using ELK/SIEM tools.

• Perform deep packet and request analysis when required.

5.Automation

• Develop automation scripts for WAF log parsing, rule management, and operational tasks.

• Support DevSecOps integration for WAF policy deployment pipelines.

6.Incident Response

• Lead investigation for WAF-related security incidents.

• Provide root cause analysis and remediation recommendations.

Required Skills

Core Security Knowledge

• Strong understanding of OWASP Top 10 & Web Application Security

• Strong understanding of HTTP, HTTPS, TLS, and TCP/IP

WAF Platforms

Hands-on experience in one or more:

• Akamai WAF

• NGINX App Protect

• F5 ASM

• VMWare NSx AVi

Troubleshooting Skills

• HTTP request analysis

• Application access troubleshooting

• WAF false positive analysis

Tools & Technologies

• Hands experience with Linux OS

• ELK Stack / SIEM

• Packet analysis (tcpdump / Wireshark)

• Basic scripting (Python / Bash)

Nice to Have

• Experience with NGINX / Load Balancers

• Understanding of DevOps / Containers / Kubernetes

• Experience with API security

Email - kirti.rustagi@raspl.com

Click on Apply to know more.

This page is fully interactive when JavaScript is enabled. Please enable JavaScript to apply or browse related roles.