At a Glance
- Tasks: Implement and operate WAF solutions across multi-cloud environments to protect applications.
- Company: Join a leading insurance client with a focus on innovative security solutions.
- Benefits: Hybrid work model, competitive pay, and opportunities for professional growth.
- Other info: Collaborative team environment with a focus on cutting-edge technology.
- Why this job: Make a real impact by enhancing security for internet-facing applications.
- Qualifications: 3-5 years of WAF experience in Azure and other cloud environments.
The predicted salary is between 50000 - 65000 £ per year.
We are currently recruiting for a Network Engineer with strong WAF experience to join one of our Insurance clients on a 6-month contract. Hybrid - adhoc travel to London.
The Role
- Implement and operate WAF solutions across multi-cloud environments (Azure Front Door, Application Gateway, AWS WAF, GCP equivalents), ensuring consistent protection for all internet-facing applications.
- Configure and optimise WAF policies (managed rule sets, custom rules, bot protection, request inspection) to prevent threats.
- Drive remediation of WAF gaps and misconfigurations, including transitioning services from detection to prevention mode and enforcing baseline guardrails.
- Collaborate with application and cloud engineering teams to onboard applications to WAF, troubleshoot false positives, and ensure minimal business disruption.
- Integrate WAF telemetry into SIEM / monitoring platforms to enable visibility, alerting, and incident response workflows.
- Support WAF deployment at scale, contributing to rollout plans to achieve full coverage of external-facing services.
- Contribute to security guardrails and standards, ensuring WAF implementations align with enterprise policy and Zero Trust principles.
Experience
- 3-5 years hands-on experience implementing WAF technologies within Azure (Azure WAF / Front Door / App Gateway).
- Ideally similar experience in other cloud environments (AWS WAF, GCP Cloud Armor).
- Strong understanding of HTTP/S protocols and Layer 7 security controls (how WAF protects web traffic vs other network layers).
- Experience with WAF policy tuning and optimisation, including managing rule sets, handling false positives, and improving protection posture.
- Familiarity with cloud networking constructs (VNets/VPCs, routing, load balancers, private endpoints, segmentation).
- Knowledge of common web application attack techniques (e.g. OWASP Top 10: injection, XSS, API abuse) and mitigation approaches.
- Experience working with infrastructure-as-code and automation tools (Terraform, ARM, CloudFormation) for WAF deployment and policy management.
- Ability to analyse logs and security telemetry (WAF logs, SIEM integration) to identify threats and drive remediation.
- Exposure to firewalls, DDoS protection, and broader network security controls in cloud environments.
- Strong collaboration skills, working with AppDev, Cloud Engineering, and Security teams to enforce controls without blocking delivery.
Network Engineer- WAF employer: Lorien
Join a forward-thinking insurance client as a Network Engineer, where you will be part of a dynamic team dedicated to enhancing security across multi-cloud environments. With a strong emphasis on collaboration and innovation, the company fosters a supportive work culture that prioritises employee growth through continuous learning opportunities and hands-on experience with cutting-edge technologies. Enjoy the flexibility of a hybrid working model, along with the chance to make a significant impact in a critical role that aligns with modern security practices.
StudySmarter Expert Advice🤫
We think this is how you could land Network Engineer- WAF
✨Tip Number 1
Network with industry professionals! Attend meetups, webinars, or online forums related to WAF and cloud security. Engaging with others in the field can lead to job opportunities that aren't advertised.
✨Tip Number 2
Showcase your skills through projects! If you’ve worked on WAF implementations or have experience with Azure, AWS, or GCP, create a portfolio or GitHub repository. This gives potential employers a tangible look at what you can do.
✨Tip Number 3
Prepare for interviews by practising common technical questions related to WAF technologies and cloud environments. We recommend doing mock interviews with friends or using online platforms to get comfortable with the format.
✨Tip Number 4
Apply directly through our website! We often have exclusive listings that might not be found elsewhere. Plus, it shows your enthusiasm for joining our team and makes it easier for us to connect with you.
We think you need these skills to ace Network Engineer- WAF
Some tips for your application 🫡
Tailor Your CV:Make sure your CV highlights your WAF experience and relevant skills. We want to see how your background aligns with the role, so don’t be shy about showcasing your achievements in implementing WAF solutions!
Craft a Compelling Cover Letter:Your cover letter is your chance to shine! Use it to explain why you’re the perfect fit for this Network Engineer position. We love seeing enthusiasm and a clear understanding of the role, so let your personality come through.
Showcase Your Technical Skills:When filling out your application, make sure to mention your hands-on experience with Azure WAF and other cloud environments. We’re looking for specific examples of how you’ve tackled challenges and optimised WAF policies in the past.
Apply Through Our Website:We encourage you to apply directly through our website. It’s the best way for us to receive your application and ensures you don’t miss any important updates from our team. Plus, we love seeing applications come in through our platform!
How to prepare for a job interview at Lorien
✨Know Your WAF Inside Out
Make sure you brush up on your knowledge of WAF technologies, especially those mentioned in the job description like Azure WAF, AWS WAF, and GCP equivalents. Be ready to discuss how you've implemented and optimised these solutions in past roles.
✨Showcase Your Problem-Solving Skills
Prepare examples of how you've tackled WAF misconfigurations or gaps in security. Highlight specific instances where you transitioned services from detection to prevention mode and how you collaborated with teams to resolve issues without disrupting business operations.
✨Understand the Bigger Picture
Familiarise yourself with the OWASP Top 10 and common web application attack techniques. Be prepared to discuss how you would mitigate these threats using WAF policies and how they fit into broader security guardrails and Zero Trust principles.
✨Demonstrate Collaboration
Since this role involves working closely with application and cloud engineering teams, think of examples that showcase your collaboration skills. Discuss how you've worked with cross-functional teams to onboard applications to WAF and troubleshoot any issues that arose.
