At Cadmus, we believe that technology only makes sense when it truly transforms lives and businesses. For over 30 years, we have been building solutions that combine innovation, closeness, and real impact — and this is just the beginning.
Here, you are no longer just another person. You are the protagonist of a journey that values ideas, fosters growth, and makes room for the new. Our culture, recognized by GPTW, reflects what we experience every day: collaboration, continuous learning, and respect for people.
If you want to be part of a team that not only keeps up with the future but helps build it, Cadmus is the place for you. Come grow with us.
Role Summary
The WAF Engineer will serve as the primary subject-matter expert responsible for the
operation, and optimization Web Application Firewall ecosystem, including the support of
existing Imperva WAF deployments and the end-to-end migration to Akamai Cloud WAF.
This role requires deep technical expertise in web application security, global-scale WAF
operations, and cloud-based edge security platforms. The engineer will collaborate with
security, infrastructure, DevOps, and application teams to ensure resilient, scalable, and
policy-aligned protection of critical digital assets across a global enterprise.
Key Responsibilities
• Administer, tune, and optimize existing Imperva WAF policies, signatures, and rule sets.
• Collaborate on the design, configuration, and deployment of Akamai Cloud WAF
solutions.
• Develop and maintain custom WAF rules aligned with OWASP Top 10 and emerging
threats.
• Monitor, analyze, and respond to WAF events, logs, and alerts.
• Implement automation and scripting to streamline WAF configuration and governance.
• Support the migration from Imperva to Akamai, including assessment, mapping, and
cutover planning.
• Develop migration runbooks, testing plans, validation procedures, and rollback
strategies.
• Provide guidance on secure application design, API protection, and edge-security best
practices.
• Participate in incident response activities and forensic analysis of web-based attacks.
• Drive continuous improvement initiatives within the IT Security & Risk Management
program.
Required Qualifications & Experience
• 5+ years of hands-on experience administering and engineering WAF solutions.
• Expertise with Imperva Cloud WAF and Akamai WAF platforms.
• Strong understanding of HTTP/HTTPS, TLS, DNS, CDN architectures, OWASP Top 10,
and API security.
• Experience with scripting and automation (Python, Bash, PowerShell) and IaC tools
such as Terraform.
• Knowledge of cloud platforms (AWS, Azure, GCP) and hybrid network architectures.
• Experience with application security testing, vulnerability management, and secure
SDLC.
• 6+ years in IT with 5+ years in cybersecurity roles.
• Bachelor’s degree in Information Security, Computer Science, Information Systems, or
related field.
• Preferred certifications: CISSP, CISA, CISM, GIAC (GWAPT, GWEB, GCWN).
Soft Skills & Competencies
• Strong analytical and problem-solving skills.
• Excellent communication skills for diverse technical and non-technical audiences.
• Demonstrated ability to communicate clearly and professionally in English, both in
writing and in spoken interactions, especially when engaging with global teams and
technical stakeholders.
• Ability to work collaboratively in a global, fast-paced environment.
• Proactive mindset with focus on continuous improvement and operational excellence.