WAF - L2 / L3

Key Responsibilities

 Provide L3 support for Akamai WAF (Kona Site Defender), including policy tuning,

configuration, and troubleshooting.

 Monitor and analyze WAF events, logs, and alerts to detect and mitigate web attacks.

 Handle incident management and escalation to vendor support when required.

 Onboard new applications and services into the Akamai WAF platform, including

ruleset design and deployment.

 Collaborate with application, DevOps, and security teams to validate and optimize

protection policies.

 Perform root cause analysis of recurring WAF-related incidents and propose long-term

fixes.

 Support change management activities (policy updates, upgrades, patching).

 Maintain and update documentation, SOPs, and runbooks for WAF operations.

 Stay updated with OWASP Top 10, CVEs, and latest web security threats.

 Work with compliance / audit teams to ensure WAF security standards are met.

Required Skills & Qualifications

 5–10 years of experience in Network Security / Application Security.

 Hands-on experience with Akamai WAF (Kona Site Defender).

 Strong knowledge of OWASP Top 10, web threats, and mitigation techniques.

 Proficiency in HTTP / HTTPS, TLS, DNS, TCP / IP protocols.

 Experience in policy configuration, false positive tuning, and custom rule creation.

 Familiarity with Akamai Control Center (Luna Portal) and API integrations.

 Good understanding of CDN, reverse proxy, caching, and load balancing concepts.

 Strong incident troubleshooting and analytical skills.

 ITIL process knowledge (Incident / Change / Problem Management).