Cloudflare
Overview
Security Operations Center Engineer at Cloudflare. Join our team to help protect and accelerate Internet applications for customers ranging from individual bloggers to Fortune 500 companies. Job locations: Hybrid - Austin. This role requires full-time weekend work with a Tuesday-Saturday or Sunday-Thursday 5-day schedule. Description
Security Operations Center Analysts provide premium-level support for Cloudflare’s security products and features. Our customers range from small to large enterprises and may contact the SOC as a Service team for assistance and threat intelligence across OSI Layers 3, 4, and 7. Products include Magic Transit Infrastructure Protection, DDoS mitigation, Network Firewall, Web Application Firewall (WAF), Spectrum, Bot Management and Rate Limiting. You will analyze threats, propose mitigation strategies, and may implement mitigations on behalf of customers. You may also contribute to attack reporting beyond Cloudflare’s self-service reports. Responsibilities
Monitor and investigate alerts to identify attacks Collaborate with Engineering and Operations to mitigate attacks and apply appropriate mitigations Work with Engineering and Product teams to improve products and tools Communicate with customers via chat, email, and phone Review alerts for relevancy and urgency; create tracking tickets for incidents requiring review or escalation Configure and manage security monitoring rules; contribute to tool improvements Analyze traffic signatures and attributes to distinguish good vs. malicious traffic Participate in weekend and holiday rotation; main working hours 9 to 5 Pacific Time Key skill sets
Strong understanding of the OSI model, TCP, UDP, BGP, QUIC Advanced understanding of iptables Experience analyzing traffic for attack anomaly detection and mitigation rule creation Experience handling attack mitigation; knowledge of L3/L4 and L7 attacks At least 2 years of technical and customer support experience Strong communication skills with high-value customers Command line / Bash Sysadmin skills (Linux/Mac/Windows) and programming skills (Python, Ruby, PHP, C, C#, Java, Perl, Git, etc.) Security certifications preferred: CISSP, GCIA, GCIH, GCFA, GCFE, etc. Bonus Points
Previous DDoS mitigation experience for OSI layers 3, 4, and 7; familiarity with Cloudflare tools like Magic Transit, Network Firewall, WAF, IP reputation lists, packet inspection, blacklisting/whitelisting, and rate limiting What makes Cloudflare special
We are a highly ambitious technology company with a mission to help build a better Internet. We protect the free and open Internet and support initiatives like Project Galileo, the Athenian Project and 1.1.1.1 to improve security and privacy for users worldwide. Additional information
This position may require access to information protected under U.S. export control laws (Export Administration Regulations). Offers may be conditioned on authorization to receive software or technology controlled under these laws without sponsorship for an export license. Cloudflare is an equal opportunity employer. We value diversity and inclusion. All qualified applicants will be considered for employment without regard to race, color, religion, sex, gender, gender identity, gender expression, sexual orientation, national origin, age, disability, or any other basis protected by law. We are an AA/Veterans/Disabled Employer. Reasonable accommodations are provided to qualified applicants; please contact hr@cloudflare.com or 101 Townsend St. San Francisco, CA 94107 if needed. Job metadata
Seniority level: Associate Employment type: Full-time Job function: Customer Service Industries: IT Services and IT Consulting, Technology, Information and Internet, and Computer and Network Security
#J-18808-Ljbffr
Security Operations Center Engineer at Cloudflare. Join our team to help protect and accelerate Internet applications for customers ranging from individual bloggers to Fortune 500 companies. Job locations: Hybrid - Austin. This role requires full-time weekend work with a Tuesday-Saturday or Sunday-Thursday 5-day schedule. Description
Security Operations Center Analysts provide premium-level support for Cloudflare’s security products and features. Our customers range from small to large enterprises and may contact the SOC as a Service team for assistance and threat intelligence across OSI Layers 3, 4, and 7. Products include Magic Transit Infrastructure Protection, DDoS mitigation, Network Firewall, Web Application Firewall (WAF), Spectrum, Bot Management and Rate Limiting. You will analyze threats, propose mitigation strategies, and may implement mitigations on behalf of customers. You may also contribute to attack reporting beyond Cloudflare’s self-service reports. Responsibilities
Monitor and investigate alerts to identify attacks Collaborate with Engineering and Operations to mitigate attacks and apply appropriate mitigations Work with Engineering and Product teams to improve products and tools Communicate with customers via chat, email, and phone Review alerts for relevancy and urgency; create tracking tickets for incidents requiring review or escalation Configure and manage security monitoring rules; contribute to tool improvements Analyze traffic signatures and attributes to distinguish good vs. malicious traffic Participate in weekend and holiday rotation; main working hours 9 to 5 Pacific Time Key skill sets
Strong understanding of the OSI model, TCP, UDP, BGP, QUIC Advanced understanding of iptables Experience analyzing traffic for attack anomaly detection and mitigation rule creation Experience handling attack mitigation; knowledge of L3/L4 and L7 attacks At least 2 years of technical and customer support experience Strong communication skills with high-value customers Command line / Bash Sysadmin skills (Linux/Mac/Windows) and programming skills (Python, Ruby, PHP, C, C#, Java, Perl, Git, etc.) Security certifications preferred: CISSP, GCIA, GCIH, GCFA, GCFE, etc. Bonus Points
Previous DDoS mitigation experience for OSI layers 3, 4, and 7; familiarity with Cloudflare tools like Magic Transit, Network Firewall, WAF, IP reputation lists, packet inspection, blacklisting/whitelisting, and rate limiting What makes Cloudflare special
We are a highly ambitious technology company with a mission to help build a better Internet. We protect the free and open Internet and support initiatives like Project Galileo, the Athenian Project and 1.1.1.1 to improve security and privacy for users worldwide. Additional information
This position may require access to information protected under U.S. export control laws (Export Administration Regulations). Offers may be conditioned on authorization to receive software or technology controlled under these laws without sponsorship for an export license. Cloudflare is an equal opportunity employer. We value diversity and inclusion. All qualified applicants will be considered for employment without regard to race, color, religion, sex, gender, gender identity, gender expression, sexual orientation, national origin, age, disability, or any other basis protected by law. We are an AA/Veterans/Disabled Employer. Reasonable accommodations are provided to qualified applicants; please contact hr@cloudflare.com or 101 Townsend St. San Francisco, CA 94107 if needed. Job metadata
Seniority level: Associate Employment type: Full-time Job function: Customer Service Industries: IT Services and IT Consulting, Technology, Information and Internet, and Computer and Network Security
#J-18808-Ljbffr