Description
Cloud Security Engineer – Cloudflare WAF Specialist
Location: Remote working HOWEVER candidates must already be based in Brussels OR Amsterdam OR Paris OR London (8 days a month on site is mandatory)
Work Type: Permanent
About the Role
We are seeking a highly skilled and security-focused Cloud Security Engineer with deep expertise in Cloudflare WAF to join a high-performing team responsible for protecting critical web infrastructure.
You will play a central role in securing web applications, automating cloud security configurations, and supporting a DevSecOps culture within an Agile environment.
This is an excellent opportunity for someone passionate about cloud security, WAF technologies, and modern automation practices.
Key Responsibilities
Lead the implementation, configuration, and management of Cloudflare WAF, including custom rule sets, rate limiting, and DDoS protection.
Monitor and fine-tune web traffic security policies to safeguard against evolving threats.
Collaborate with application, infrastructure, and DevOps teams to embed security into pipelines and workflows.
Work with other WAF platforms (e.g., Imperva) across on-prem, SaaS, and cloud environments.
Write scripts and tools (preferably in Python) to automate security configurations and tasks.
Apply a deep understanding of network protocols, TLS/mTLS, and authentication mechanisms (e.g., OAuth, SAML).
Support and troubleshoot security issues across Linux-based (RedHat) systems.
Contribute to a DevSecOps culture, embracing continuous improvement, Agile delivery, and cross-functional collaboration.
Required Skills & Experience
Minimum 3 years of hands-on experience with Cloudflare WAF – policy management, custom rules, and advanced security configurations
Strong grasp of the OSI model, especially Layers 3–7
Excellent knowledge of HTTP, HTTPS, SSL, TLS, mTLS
Familiarity with authentication protocols such as SAML, OAuth, or similar
Scripting skills in Python (other programming languages are a plus)
Solid understanding of PKI and certificate management
Experience with Linux/Unix systems, ideally RedHat
Solid networking knowledge (Layer 3 and 4)
Desirable Skills
Experience with Imperva WAF/WAAP – on-prem, SaaS, or cloud
Automation and Infrastructure-as-Code experience using Terraform or Ansible
Familiarity with DevOps, Agile, and Scrum methodologies
Hands-on experience with reverse proxies such as NGINX or Apache HTTPD
Security certifications such as CISSP, OSCP, or similar
Passionate about a specific technical area (cloud, containers, security, etc.)
Soft Skills & Traits
Collaborative team player with a proactive attitude
Strong problem-solving and critical thinking capabilities
Customer-focused, able to understand the broader business context
Open-minded and eager to learn and evolve
Able to communicate complex ideas clearly and assess consequences of decisions
Location: Remote working HOWEVER candidates must already be based in Brussels OR Amsterdam OR Paris OR London (8 days a month on site is mandatory)
Work Type: Permanent
About the Role
We are seeking a highly skilled and security-focused Cloud Security Engineer with deep expertise in Cloudflare WAF to join a high-performing team responsible for protecting critical web infrastructure.
You will play a central role in securing web applications, automating cloud security configurations, and supporting a DevSecOps culture within an Agile environment.
This is an excellent opportunity for someone passionate about cloud security, WAF technologies, and modern automation practices.
Key Responsibilities
Lead the implementation, configuration, and management of Cloudflare WAF, including custom rule sets, rate limiting, and DDoS protection.
Monitor and fine-tune web traffic security policies to safeguard against evolving threats.
Collaborate with application, infrastructure, and DevOps teams to embed security into pipelines and workflows.
Work with other WAF platforms (e.g., Imperva) across on-prem, SaaS, and cloud environments.
Write scripts and tools (preferably in Python) to automate security configurations and tasks.
Apply a deep understanding of network protocols, TLS/mTLS, and authentication mechanisms (e.g., OAuth, SAML).
Support and troubleshoot security issues across Linux-based (RedHat) systems.
Contribute to a DevSecOps culture, embracing continuous improvement, Agile delivery, and cross-functional collaboration.
Required Skills & Experience
Minimum 3 years of hands-on experience with Cloudflare WAF – policy management, custom rules, and advanced security configurations
Strong grasp of the OSI model, especially Layers 3–7
Excellent knowledge of HTTP, HTTPS, SSL, TLS, mTLS
Familiarity with authentication protocols such as SAML, OAuth, or similar
Scripting skills in Python (other programming languages are a plus)
Solid understanding of PKI and certificate management
Experience with Linux/Unix systems, ideally RedHat
Solid networking knowledge (Layer 3 and 4)
Desirable Skills
Experience with Imperva WAF/WAAP – on-prem, SaaS, or cloud
Automation and Infrastructure-as-Code experience using Terraform or Ansible
Familiarity with DevOps, Agile, and Scrum methodologies
Hands-on experience with reverse proxies such as NGINX or Apache HTTPD
Security certifications such as CISSP, OSCP, or similar
Passionate about a specific technical area (cloud, containers, security, etc.)
Soft Skills & Traits
Collaborative team player with a proactive attitude
Strong problem-solving and critical thinking capabilities
Customer-focused, able to understand the broader business context
Open-minded and eager to learn and evolve
Able to communicate complex ideas clearly and assess consequences of decisions