We are seeking a Cloudflare & WAF Security Engineer to manage and secure our cloud infrastructure. The ideal candidate will have 3+ years of experience in Cloudflare and WAF, a strong foundation in networking, and expertise in DNS management, CDN configuration, and SSL/TLS management.
Key Highlights
Technical Skills Required
Benefits & Perks
Job Description
Location: Lisle, IL or Columbia, MD (Hybrid Mon–Thurs)
Duration: 6 month contract to hire (GC or US Citizen) C2c and relocation Fine
Title: Cloudflare Administration & WAF Security Engineer
Key Skills: Cloudflare Administration, Configuration, WAF tuning, DNS, GCP or AWS
QUALIFICATIONS
Education
• Bachelor’s degree in computer science, Engineering, or related field – Required
• Equivalent relevant industry experience – Required
Licenses and Certifications
• Cloudflare and/or WAF certification – Preferred
Work Experience
• 3+ years in Cloudflare and WAF – Required
Knowledge, Skills and Abilities
Strong experience with:
DNS management: Expertise in managing DNS records, routing traffic, and using Cloudflare as an authoritative DNS provider.
CDN configuration: Administering the Content Delivery Network to cache static and dynamic content, improving website performance and speed.
Web Application Firewall (WAF) and DDoS protection: Setting up WAF rules and configuring Cloudflare's DDoS mitigation services to protect applications from malicious traffic.
SSL/TLS management: Implementing and managing SSL/TLS certificates to secure user connections and configure encryption modes (Flexible, Full, Full Strict).
Load Balancing: Configuring load balancers and health checks to distribute traffic across multiple servers, ensuring high availability and reliability.
Cloudflare Workers: Developing and managing serverless functions that run on Cloudflare's edge network. This requires scripting skills in languages like JavaScript.
Zero Trust security (Access and Gateway): Implementing Zero Trust security principles to manage access control for applications and use Cloudflare Gateway for secure internet browsing.
Security and analytics monitoring: Using Cloudflare's analytics and logging tools to monitor traffic, analyze security threats, and track performance.
Rulesets and customization: Creating custom Page Rules and configuration rules to automate traffic management, caching, and security policies.
Experience with:
Demonstrated experience managing and maintaining cloud infrastructure, with a strong preference for Google Cloud Platform (GCP)
Networking: A strong foundation in networking concepts like TCP/IP, subnets, and routing is essential for understanding and managing traffic flow.
Web security: Knowledge of web vulnerabilities and security best practices is crucial for effectively configuring Cloudflare's security features.
Scripting and automation: Skills in scripting languages such as Python or Bash are valuable for automating repetitive tasks and managing Cloudflare configurations programmatically.
Hands-on experience with cloud-native services (e.g., Compute Engine, Cloud Functions, Cloud Run, Kubernetes Engine) and Infrastructure as Code (IaC) tools like Terraform and Google Deployment Manager
Cloud infrastructure: While Cloudflare is a platform in itself, understanding how it integrates with major cloud providers like AWS, Azure, and Google Cloud is a key skill.
Strong skills:
To drive analysis and problem-solving situations.
To lead incident responses and conduct effective post-incident reviews.
To work independently and in a fast-paced team environment.
To communicate and collaborate efficiently.