Senior Cybersecurity Engineer, Web Application Firewall (WAF) [ Python & CWPP]

Job Description: Senior Cybersecurity Engineer Web Application Firewall (WAF) Location : BMS Hyderabad At BMS Hyderabad , we are an integrated global hub focused on helping patients prevail over serious diseases through cutting-edge science, technology, and innovation. Our work is centered on building sustainable, breakthrough solutions in drug development and technology that will drive the next wave of medical advancements. This key center supports global initiatives, making a real impact on healthcare. We are seeking a Senior Cybersecurity Engineer for our Web Application Firewall (WAF) team. In this role, you will be responsible for supporting and optimizing the BMS Web Application Firewall capabilities, ensuring the highest level of protection for our critical business applications. You will be a crucial player in our security operations, bringing expertise in WAF technologies and delivering innovative solutions. Key Responsibilities: Provide expert support for the Imperva Cloud Web Application Firewall (CWAF) platform. Oversee onboarding, proactive monitoring, configuration, and integration of CWAF for BMSs mission-critical applications. Act as a trusted cybersecurity advisor, delivering high-quality troubleshooting, investigation, and consultation to application teams. Take ownership of incidents and collaborate with internal CWAF teams and Imperva support to ensure swift resolution. Research, design, and develop solutions for complex application integrations with the WAF platform. Collaborate closely with BMSs Application Security team to enhance and expand the security of our web applications. What We're Looking For: 5 years of experience in technology or production support, networking, IT security, or specifically in Web Application Firewalls (WAF). Strong experience with cloud-based Web Application Firewalls such as Imperva (preferred), Akamai , Cloudflare , or similar platforms. Experience with redirection rules , custom rules , bot protection , and API protection . Ability to finetune WAF rules and troubleshoot WAF-related issues . Strong communication skills, able to explain complex technical concepts to both IT and business stakeholders. Excellent problem-solving abilities with a proactive mindset, willing to dig deep into issues to find effective solutions. Proven ability to work collaboratively with application developers and support teams. Solid knowledge of Networking Technologies and Protocols such as HTTP/S, TLS, DNS, TCP/IP. Understanding of common web technology concepts like HTML, JavaScript, JSON , and REST APIs . Familiarity with OWASP Top 10 web security risks. Experience with application security is a strong advantage, and Imperva CWAF certifications are highly desirable. Preferred Qualifications: A Bachelors degree in Information Technology or equivalent experience. Industry-recognized certifications such as CISSP, CISM, GIAC . Experience in the pharmaceutical or consulting industries is a plus. A passion for continuous learning, with a willingness to pursue relevant security and product-specific certifications.

Location: hyderabad, IN

Posted Date: 3/12/2025