Akamai Security Engineer - 12 Month Contract - Inside IR35 - Hybrid in London

Akamai Security Engineer - 12 Month Contract - Inside IR35 - Hybrid in London

Contract Type: Initial 12 month contract (Inside IR35)
Rate: £575 per day Inside IR35
Location: Hybrid in London

Role Overview:

We are looking for an Akamai Security Engineer to join on a 12-month hybrid contract based in London (2-3 days on-site), with an on-call requirement. The role is responsible for implementing, tuning, and managing Akamai security solutions to protect web applications, APIs, and digital assets from evolving cyber threats, working closely with application owners, Network, Security, and SOC stakeholders.

Key Responsibilities:

• Deploy and manage Akamai security solutions including Kona Site Defender, Web Application Protector, Bot Manager, Client Reputation, API Security, and Account Protector
• Configure, tune, and optimise WAF rules, rate controls, reputation-based controls, and custom security policies to reduce false positives and improve threat detection
• Analyse security events, logs, and alerts to identify malicious activity and attack patterns, providing incident response support including investigation, mitigation, and post-incident analysis
• Use TrafficPeak and Grafana to create dashboards, interpret traffic spikes, fine-tune thresholds, and establish traffic baselines aligned with business and risk requirements
• Support onboarding of new applications and APIs onto Akamai platforms, and maintain technical documentation, runbooks, and process guides in Confluence or equivalent

What You Will Ideally Bring:

• Strong hands-on experience with Akamai security solutions - particularly Kona Site Defender, WAS, CDN, and WAF configuration and tuning
• Solid understanding of web application security concepts including bot mitigation, DDoS protection, and rate limiting, with experience analysing HTTP/S traffic and security events
• Knowledge of TCP/IP, DNS, SSL/TLS, and CDN architectures, with the ability to balance security controls against performance requirements
• Experience with API security concepts and identifying patterns related to bots, scrapers, reputation-based traffic, and volumetric anomalies
• Familiarity with monitoring and dashboard tools such as TrafficPeak, Grafana, and Datadog, with experience in SIEM integration and log analysis