WAF Technical Specialist - Application Security

Job Description : Description :

Airbus is on its Digital journey and the objective is to transform the company and to prepare it for the future. This transformation includes new global governance, new ways of working and the implementation of digital business services and platforms. As a part of this transformation journey we have set up a GIC in the silicon valley of India - Bangalore. This state of the art GIC is responsible for driving excellence in IT and OT for Airbus.

Challenges are numerous and exciting.!

What is the Airbus Application Security team doing

Security for Applications is designed to strengthen Airbus applications against evolving threats, reduce vulnerabilities and de-risk them by applying all the necessary security controls.

Your role as a WAF Solution Engineer is to support the overall management of Airbus Web Application Firewall in the context of the Application Security and Secure Development and Operations of Software Applications. Your role is key as you contribute to the overall performance and success of Airbus Digital Security Posture.

Qualification & Experience :

We seek out curious minds! We value attention to detail! And we care deeply about outcomes!

We're looking for passionate people, who are eager to learn, willing to share, and establishing innovative ways of working and influencing cultural changes

Bachelor or masters in Computer Science, Engineering, or related field would be preferred

4 to 8+ years of relevant experience as a WAF Engineer / Application Security Specialist

Hands-on experience in management, deployment and operation of Web Application Firewall technologies (Specially Imperva WAF)

Strong understanding of large range of security topics from Hardware system, Applications, IAM, Networks, Database to Encryption and new age Digital capabilities

In-depth knowledge of common application security vulnerabilities : OWASP Top 10, SANS Top 25 and their mitigation controls & strategies

Good understanding of monolithic & microservices application architecture and knowledge of common web application frameworks

Good to have relevant industry certifications : CCNA, CISSP, OSCP, CompTIA Security+ etc.

Proven ability to prioritise workload, meet deadlines, and utilise time effectively

A team player with excellent interpersonal, communication and negotiation skills

Knowledge of Agile frameworks : SAFe, Scrum, Kanban is an added advantage

Responsibilities

As a WAF Solution Engineer with our Application Security team, you will work on the following activities :

Secure deployment and configuration of the WAF solutions to protect Airbus web applications from common vulnerabilities, DDoS attacks, and other malicious activities

Analyze detection patterns and contribute towards fine-tuning of the WAF detection capabilities

Automate WAF rule management and reporting, ensuring ongoing optimization and integration with security monitoring tools like SIEM

Support in the implementation of WAF solutions for Airbus roofs (Airbus regional offices outside core countries)

Coordinate with Security architects and Application owners to ensure on-boarding of their web applications into WAF services

Connect and collaborate with the Vulnerability management, Critical asset protection & Business teams to manage WAF non-compliances and enable remediation

Provide recommendations, support and guidance to other security team and application owners on WAF services

Build integrated dashboards that measure the progress of WAF deployment and WAF service key performance indicators (KPIs)

Ensure close alignment with the Application Security Product Manager / Owners on strategies & roadmap

The candidate will also support the control of financial aspects of the WAF services and acting as an interface with the Airbus subcontractors that provide the WAF services

Participate in Security threat and monitoring forums to learn and stay abreast on latest security trends, threats, and vulnerabilities, continually building knowledge in the cyber threat landscapes and good practices

Participate in workshops, training, certifications & security conferences to enhance skills in Cyber Security

Benefits

You will be part of a truly international team

Travel opportunities (domestic and international)

Competitive remuneration, bonus and incentives

Good work / life balance and career growth opportunities

Training and development opportunities (online, classroom, conferences)

Comprehensive benefits package (complementary health and life insurance)

Success Metrics

Success will be measured in a variety of areas, including but not limited to

Consistently ensure the on-time delivery and quality (first-time-right) of the projects

Bring innovative cost effective solutions

Achieve customer satisfaction

This job requires an awareness of any potential compliance risks and a commitment to act with integrity, as the foundation for the Company's success, reputation and sustainable growth.

Company :

Airbus India Private Limited

Employment Type : Permanent

Experience Level : Professional

Job Family : Cyber Security

By submitting your CV or application you are consenting to Airbus using and storing information about you for monitoring purposes relating to your application or future employment. This information will only be used by Airbus.

Airbus is committed to achieving workforce diversity and creating an inclusive working environment. We welcome all applications irrespective of social and cultural background, age, gender, disability, sexual orientation or religious belief.

Airbus is, and always has been, committed to equal opportunities for all. As such, we will never ask for any type of monetary exchange in the frame of a recruitment process. Any impersonation of Airbus to do so should be reported to .

At Airbus, we support you to work, connect and collaborate more easily and flexibly. Wherever possible, we foster flexible working arrangements to stimulate innovative thinking.

Skills Required

Application Security