Lead Performance Engineer seeking to drive performance excellence across IAM applications for RBC. Own the complete performance testing lifecycle ensuring systems meet performance standards
About the role
- Senior AppSec Engineer focusing on application security in Geneva. Involved in WAF configuration, tuning, and deployment in a demanding environment.
Responsibilities
- Application protection & WAF (core of the role 🔥)
- Design, deploy and—most importantly—configure application protection solutions (WAF, reverse proxy, load balancer).
- Establish and refine WAF policies (positive/negative security models).
- Perform advanced rule tuning and reduce false positives.
- Deploy protections against common web attacks (OWASP Top 10, injections, XSS, etc.).
- Implement rate limiting and advanced protection strategies.
- Manage progressive production rollouts (monitoring mode → blocking).
- Secure HTTP/HTTPS traffic and manage TLS configurations at the proxy/termination.
- Control and reduce the exposure surface of applications on the Internet.
- Contribute to optimizing traffic flows (ports, access, filtering).
- Ensure consistency of L4/L7 configurations (load balancing, health checks, session persistence).
- Implement IP reputation-based filtering mechanisms.
- Leverage threat intelligence feeds to strengthen protections.
- Manage exceptions (allowlists), limit false positives and maintain rule quality.
- Contribute to vulnerability management related to application exposure.
- Participate in log analysis and investigation of security incidents.
- Document configurations, maintain standards and ensure traceability.
- Collaborate with network, security and application teams.
Requirements
- Degree in Computer Science or Cybersecurity, with proven experience in application security and a strong focus on protection.
- Solid expertise with WAF solutions (configuration, tuning, operation).
- Strong understanding of protection architectures: reverse proxy, load balancer.
- Excellent knowledge of web protocols (HTTP/HTTPS, TLS, headers, cookies).
- Good grasp of networking concepts (TCP/IP, ports, NAT, stateful filtering).
- Experience securing applications exposed to the Internet.
- Ability to configure, optimize and maintain security solutions in production.
- Knowledge of web attack techniques (OWASP, exploitation, attack vectors).
- Experience with threat intelligence and dynamic filtering.
- Basic automation skills (scripting, APIs, Git).
Benefits
- Location: Geneva
- Start: ASAP
- Remote work: 2 days/week (3 days on site)
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Security Compliance Operation Manager at a mobility AI company focusing on software - defined vehicle development. Responsible for policy establishment, compliance support, and system security management.
Information Security Consultant helping SEB mitigate cybersecurity threats in the Baltic IT environment. Protecting customers' interests while maintaining a high level of service in a collaborative team.
Senior Engineer for Cybersecurity Incident Management Team at GEICO. Coordinate incident responses, perform forensic investigations, and collaborate across teams for enhanced security measures.
Information Security Consultant responsible for safeguarding SEB bank's cybersecurity across the Baltics. Collaborating within a skilled international team to protect customer interests.
Information Security Consultant focusing on cybersecurity for SEB bank. Protecting interests of corporate and private customers in the Baltic environment.
Endpoint User Security Solutionist designing and validating secure system infrastructures and security solutions for enterprise environments at HPE. Supporting cybersecurity improvements, testing, and architectural deployment.
Security Engineer managing cybersecurity services for local and multinational clients in Australia. Ensuring security compliance and assisting in high - priority incident responses.
Senior Full Stack Developer specializing in GenAI/ML at Hitachi Energy. Focused on building AI - driven solutions for real‑world cybersecurity challenges.
Senior Security Engineer developing security strategies for QuantumScape's lithium - metal battery technology. Leading incident response and orchestrating threat intelligence initiatives in a high - tech environment.