WAF Security Analyst III

Elevance HealthIndianapolis, IN
Hybrid

About The Position

The WAF Security Analyst III is responsible for providing enterprise security solutions for business, regulatory, and legal requirements, and assuring the confidentiality, integrity, and availability of information assets, with a focus on Web Application Firewall, DoS, BOT mitigation, CDN, and application security protections. This role requires associates to be in-office 1 - 2 days per week, fostering collaboration and connectivity, while providing flexibility to support productivity and work-life balance. This approach combines structured office engagement with the autonomy of virtual work, promoting a dynamic and adaptable workplace. Alternate locations may be considered if candidates reside within a commuting distance from an office. Candidates not within a reasonable commuting distance from the posting location(s) will not be considered for employment, unless an accommodation is granted as required by law. This position is not eligible for current or future visa sponsorship.

Requirements

  • Requires an BA/BS degree in Information Technology, Computer Science or related field of study and a minimum of 3 years of experience in a support and operations or design and engineering role; or any combination of education and experience, which would provide an equivalent background.

Nice To Haves

  • Experience supporting application security or Web Application Firewall technologies preferred.
  • Experience with cybersecurity, privacy principles, threats, vulnerabilities, risk management, and IT security methods, including firewalls, DMZ, encryption, and SSL certificates.
  • Experience with network security architecture concepts and protocols such as TCP/IP, DNS, Dynamic Host Configuration Protocol, and IAM/directory services.
  • Experience working with industry standard Web Application Firewall solutions, such as Cloudflare, Akamai, F5 Networks, Imperva, Fastly, or similar technologies.
  • Knowledge of Layer 7 security attacks and application security vulnerabilities, including OWASP Top 10, SANS Top 25, XSS, SQLi, command injection, remote code execution, CSRF/SSRF, CVEs, and CWEs.
  • Basic understanding of CDN and caching techniques, load balancing, and cloud platforms such as AWS, GCP, Azure, or Oracle Cloud.
  • Technical security certifications (e.g. Systems Security Certified Practitioner) strongly preferred.

Responsibilities

  • Participates and completes tasks associated with the implementations for systems and network and Web Application Firewall security technologies; executes testing plans; coordinates and prepares reporting of data security events and incidents; provides system and network architecture support; provides technical support to business and technology associates.
  • Provides trouble resolution on complex issues, including WAF, web traffic, false positive, application protection, and security event issues.
  • Performs system, network and WAF upgrade tasks.
  • Designs and analyzes vendor services and information security requirements; maintains relationship with key vendors, including WAF, CDN, DoS, BOT mitigation, and application security technology providers.
  • Participates and completes lights-on initiatives to consolidate equipment and/or implement business relocations.
  • Performs complex configuration changes to meet business and information security requirements, including configuration of new sites and applications for WAF protection.
  • Performs capacity analysis; recommends and implements capacity increases.
  • Responds to Level 3 and 4 change and problem requests; leads Level 1 and 2 incident recoveries and root cause analysis.
  • Analyzes, configures, tests, documents, deploys, maintains, patches, and troubleshoots WAF rules/signatures, security processes, controls, and products to mitigate threats and implement best practices.
  • Works with application developers, developer teams, technical peers, business peers, security analysts, and leaders to analyze, prioritize, support, and resolve events, WAF configurations, application remediation, and compliance requirements.

Benefits

  • merit increases
  • paid holidays
  • Paid Time Off
  • incentive bonus programs
  • medical
  • dental
  • vision
  • short and long term disability benefits
  • 401(k) +match
  • stock purchase plan
  • life insurance
  • wellness programs
  • financial education resources
© 2026 Teal Labs, Inc
Privacy PolicyTerms of Service