We are looking for a hands-on Cybersecurity Engineer to help evolve our corporate Web Application Firewall service into a more automated, standardized, and scalable security platform.

The role combines WAF expertise, automation, scripting, APIs, Infrastructure as Code, public cloud understanding, and application security knowledge. You will work mainly with Imperva Cloud WAF, supporting global application onboarding, troubleshooting complex web traffic issues, improving operational processes, and building automation capabilities that reduce manual effort and improve service quality.

This is not a pure operations role. The position is intended for someone who enjoys solving technical problems, automating repetitive work, improving service quality, and working with multiple technical teams to protect global web applications.

The ideal candidate should be comfortable working across WAF configuration, cloud and application architecture, automation, technical troubleshooting and general cybersecurity topics.

Key Responsibilities:

• Operate, monitor, and continuously improve the corporate Imperva Cloud WAF service, including configuration, maintenance, health checks, and lifecycle activities.
• Build and maintain automation capabilities, including scripts, API integrations, reusable templates, Terraform or other Infrastructure as Code components, and standardized configuration patterns.
• Support the onboarding of new web applications to the WAF service, including requirement collection, architecture and exposure review, DNS and certificate validation, and cutover coordination.
• Troubleshoot incidents and service requests across WAF, HTTP/S, DNS, SSL/TLS certificates, routing, reverse proxy, and connectivity layers.
• Analyze WAF traffic, logs, and security events to identify anomalies such as spikes, suspicious patterns, bot activity, or potential attacks, and recommend practical mitigations.
• Tune WAF policies and rules, including signatures, exceptions, allowlisting, rate limiting, geo controls, and risk adjustments, to reduce false positives while maintaining security controls.
• Provide L2 support and act as an escalation point for L1 teams by validating triage, coaching on troubleshooting steps, and maintaining knowledge articles and runbooks.
• Partner with application, DevOps, cloud, network, and security teams to resolve issues, improve onboarding quality, and support secure-by-design decisions.

Required Skills & Qualifications:

• 3 to 6 years of experience in cybersecurity, cloud security, DevSecOps, infrastructure, automation, or application security roles.
• Hands-on experience with WAF technologies, preferably Imperva Cloud WAF.
• Practical automation skills using scripting languages such as Python, Bash, PowerShell, or similar.
• Experience working with APIs and building reusable automation, templates, or integration patterns.
• Experience with Terraform or other Infrastructure as Code technologies.
• Good understanding of HTTP/S, DNS, SSL/TLS certificates, reverse proxy, routing, connectivity, and common web stack components.
• Ability to analyze WAF traffic, logs, and security events to detect anomalies and recommend practical mitigations.
• Proven capability to tune WAF policies and rules to reduce false positives while maintaining the required level of protection.
• Working knowledge of public cloud environments, especially Azure.
• Solid understanding of web application architectures and application exposure patterns, with the ability to support technical onboarding discussions and cutovers.
• Awareness of OWASP Top 10, common web attacks, API security risks, and application-layer security concepts.
• Ability to work with technical teams and translate requirements into practical configurations, scripts, documentation, or automation.
• Good written and spoken English.

Nice to Have:

• Experience with Imperva APIs or automation around Imperva Cloud WAF.
• Experience with Azure Application Gateway WAF or AWS WAF.
• Experience with DevSecOps practices and security automation.
• Knowledge of API security, bot protection, DDoS protection or CDN security.
• Experience with network security technologies such as Palo Alto, Fortinet, Check Point, Cisco, or similar. This is useful but not the main focus of the role.
• Experience working in global teams and enterprise environments.

Preferred Certifications:

• Microsoft Certified: Azure Security Engineer Associate.
• AWS Certified Security, Specialty.
• Terraform Associate.
• Imperva-related training or certification.

What is in it for you:

• You will work on a global WAF service that protects web applications across a large enterprise environment.
• You will help transform the service from manual operations into a more automated, standardized, and scalable model.
• You will combine hands-on security operations with automation, cloud understanding, and engineering practices.
• You will collaborate with application, DevOps, cloud, network, and security teams across different countries and business areas.
• You will have a flexible work schedule with up to 80% remote working, based on your personal preference and business needs.
• You will have access to a broad benefits package, including health insurance, flexible compensation, meal allowance, pension plan, sport support, and remote working allowance.
• You will benefit from education support programs, including training opportunities for employees and study support for employees’ children.
• You will have access to well-being and health programs, including medical care, psychological support, and fitness benefits.
• You will have access to internal career development platforms to explore global opportunities within Siemens Healthineers.

Being part of our team:

Our global team: Siemens Healthineers (certified as Great Place to Work) is a leading global medical technology company. 72.000 dedicated colleagues in over 75 countries are driven to shape the future of healthcare. An estimated 5 million patients across the globe benefit every day from our innovative technologies and services in the areas of diagnostic and therapeutic imaging, laboratory diagnostics and molecular medicine, as well as digital health and enterprise services.

Curious about our culture? Our culture embraces different perspectives, open debate, and the will to challenge convention. Change is a constant aspect of our work. We aspire to lead the change in our industry rather than just react to it. That’s why we invite you to take on new challenges, test your ideas, and celebrate success.

As an equal-opportunity employer we are happy to consider applications from individuals with disabilities.