We are looking for a Cloudflare WAF & Terraform Developer to support the security of internet-facing web applications.
The consultant will work on the configuration, automation and optimization of Cloudflare services to strengthen protection against web attacks and security threats.
This role sits at the intersection of web application security, Infrastructure as Code and DevSecOps, in close collaboration with DevOps, development and security teams.
Mission details
Type of assignment: Freelance / Consulting mission
Initial duration: 3 months
Workload: 60%
Target daily rate: up to 900 per day
Start date: asap
Location: VD
Responsibilities
As a Cloudflare WAF & Terraform Developer, you will be responsible for:
- Configuring, maintaining and optimizing Cloudflare WAF protections for internet-facing applications.
- Developing and maintaining Cloudflare configurations using Terraform and/or automation scripts.
- Creating, adapting and optimizing WAF rules, firewall rules, rate limiting and application protection mechanisms.
- Implementing protections against web attacks, automated abuse, API risks and OWASP Top 10 vulnerabilities.
- Automating security deployments within a DevSecOps and CI/CD approach.
- Monitoring security events, analyzing logs and recommending continuous improvements.
- Working closely with DevOps, development, infrastructure and security teams.
Profile required
We are looking for a hands-on technical profile with strong experience in web security, Cloudflare automation and Infrastructure as Code.
You should have experience with:
- Cloudflare WAF
- Terraform
- Infrastructure as Code
- Firewall rules
- Rate limiting
- Bot management
- DDoS protection
- API security
- OWASP Top 10
- SSL/TLS
- HTTP/HTTPS
- DNS management
- Git and CI/CD
- DevSecOps
- Logging and monitoring
Experience with Cloudflare Workers is a plus.
Ideal candidate
The ideal candidate has proven experience securing publicly exposed web applications and is able to translate security requirements into automated, maintainable and scalable configurations.
You are comfortable working in a collaborative technical environment, understand DevOps and development constraints, and can propose pragmatic improvements to strengthen the web application security posture.
Technical environment
Cloudflare, Cloudflare WAF, Terraform, IaC, Web Security, OWASP, DevSecOps, Firewall Rules, Rate Limiting, Bot Management, DDoS Protection, API Security, DNS, SSL/TLS, HTTP/HTTPS, CI/CD, Git, Logging & Monitoring, Cloudflare Workers.
What makes this mission interesting
- High-impact mission focused on web application security.
- Modern technical environment around Cloudflare and Terraform.
- Direct contribution to the protection of internet-facing applications.
- Cross-functional role involving security, DevOps and development teams.
- Flexible workload: 60% over an initial 3-month period.
Pay: CHF900.00 - CHF1’000.00 per day
Work Location: Hybrid remote in Lausanne, VD
