Site Security Officer supporting security operations at Saab Surveillance in Sweden. Managing risk analyses, security at events, and providing expertise on security projects.
About the role
- Senior Application Security Engineer at Enova Consulting in Genève, specializing in web application security and WAF solutions for critical projects.
Responsibilities
- Application protection & WAF (core of the role 🔥)
- Design, deploy and especially configure application protection solutions (WAF, reverse proxy, load balancer).
- Implement and refine WAF policies (positive/negative models).
- Manage advanced rule tuning and reduce false positives.
- Deploy protections against common web attacks (OWASP Top 10, injections, XSS, etc.).
- Implement rate limiting and advanced protection strategies.
- Lead progressive production rollouts (monitoring mode → blocking).
- Secure HTTP/HTTPS traffic and manage TLS configurations on proxy/termination.
- Control and reduce application exposure surface on the Internet.
- Participate in traffic optimization (ports, access, filtering).
- Ensure consistency of L4/L7 configurations (load balancing, health checks, persistence).
- Implement IP reputation-based filtering mechanisms.
- Leverage threat intelligence feeds to strengthen protections.
- Manage exceptions (allowlisting), limit false positives and maintain rule quality.
- Contribute to vulnerability management related to application exposure.
- Participate in log analysis and security incident investigations.
- Document configurations, maintain standards and ensure traceability.
- Collaborate with network, security and application teams.
Requirements
- Degree in computer science or cybersecurity, with proven experience in application security and a strong focus on protection.
- Solid expertise with WAF solutions (configuration, tuning, operation).
- Strong knowledge of protection architectures: reverse proxy, load balancer.
- Excellent understanding of web protocols (HTTP/HTTPS, TLS, headers, cookies).
- Good grasp of networking concepts (TCP/IP, ports, NAT, stateful filtering).
- Experience securing Internet-facing applications.
- Ability to configure, optimize and maintain security solutions in production.
- Knowledge of web attack techniques (OWASP, exploitation, attack vectors).
- Experience in threat intelligence and dynamic filtering.
- Basic automation skills (scripting, APIs, Git).
Benefits
- Remote work: 2 days per week (3 days on-site)
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Information Security Specialist responsible for protecting systems and data at Ituran. Collaborating with teams and ensuring compliance with security measures and regulations.
Senior Cloud & Information Security Engineer responsible for EC Markets' technical security posture. Designing and operating secure systems while ensuring regulatory compliance and cloud infrastructure security.
Product Security Engineer focusing on ensuring software resilience against attacks during development phases. Collaborating with DevOps and Engineering teams to enhance security protocols.
IT audit specialist responsible for executing technology and cybersecurity audits at an international bank in Zurich. Collaborating with top management to enhance internal controls and efficiencies.
IT Systemadministrator focusing on Sophos Security at bauXpert GmbH. Responsible for IT infrastructure management and support tasks in a hybrid environment.
Cyber Security Specialist designing and implementing security controls for Squarcle clients. Supporting compliance with regulations and best practices in a digital environment.
Head of Security at Street Group managing organizational security and working with IT and Engineering teams. Leading security posture and compliance while mitigating emerging threat vectors.
Cybersecurity Data Analyst Internship at Schneider Electric. Contributing to real - world projects in a dynamic team environment.
Security Consultant providing technical leadership in electronic security systems engineering for complex built environments. Leading projects through all lifecycle stages while engaging with clients and contractors.