Azure Web Application Firewall & Cyber Security Tools Engineer

Azure Web Application Firewall & Cyber Security Tools Engineer Oakland, CA (hybrid) 12+ Months Contract Potential to convert to perm Summary Client is seeking an experienced Security Engineer specializing in Azure WAF and cloud security to manage, optimize, and secure web application environments. This role focuses on administering Azure Front Door and Application Gateway WAF, driving infrastructure-as-code deployments, supporting incident response, and collaborating with stakeholders to ensure robust application security. The ideal candidate brings strong hands-on expertise in Azure security services, automation, and DevSecOps practices. Responsibilities Administer and maintain Azure Front Door WAF and Azure Application Gateway WAF policies, rulesets, exclusions, and custom signatures Design and implement application-specific protection profiles aligned with business and security requirements Monitor WAF performance, analyze logs, reduce false positives, and continuously tune security policies Build and maintain Terraform modules for Azure WAF and related resources with version-controlled deployments Manage CI/CD pipelines using GitHub, including branching, environment promotion, and rollback strategies Configure and deploy WAF policies using infrastructure-as-code practices Respond to WAF-related incidents and support tickets, diagnose issues, and guide resolution Provide incident response support including rapid policy tuning and coordination with stakeholders Develop and maintain documentation including runbooks, standards, and troubleshooting guides Support additional security tools such as Proofpoint, Digital Guardian, Windows Certificate Services, Silverfort, Calico, F5 ASM, Rapid7 Nexpose, and Qualys Assist with troubleshooting, performance tuning, and enhancements across security platforms Requirements 5+ years of experience in application security, cloud security, or network security engineering Hands-on experience with Azure Front Door WAF and/or Azure Application Gateway WAF, including policy creation and tuning Strong expertise in Terraform for Azure and GitHub-based deployments Proven ability to configure and manage WAF/firewall solutions using code Scripting skills (PowerShell, Bash, or Python) for automation and operational tasks Strong understanding of web application security concepts (OWASP Top 10, API security, bot protection, TLS, headers) and secure DevOps practices Experience with F5 ASM and WAF policy tuning Exposure to security tools such as Calico, Proofpoint, Netskope, Digital Guardian, Silverfort, and vulnerability management platforms Knowledge of PKI fundamentals and certificate lifecycle management (e.g., Windows Certificate Services) Experience working in Agile environments (Scrum/Kanban) and DevSecOps practices Proven experience building infrastructure-as-code solutions and managing Git-based deployments Strong documentation, communication, and stakeholder management skills Ability to manage changing priorities and deliver secure, reliable outcomes in a dynamic environment Metasys Technologies is an equal opportunity employer. All applicants will be considered for employment without attention to race, color, religion, sex, sexual orientation, gender identify, national origin, veteran or disability status