Security Support Engineer II

At F5, we strive to bring a better digital world to life. Our teams empower organizations across the globe to create, secure, and run applications that enhance how we experience our evolving digital world. We are passionate about cybersecurity, from protecting consumers from fraud to enabling companies to focus on innovation.

Everything we do centers around people. That means we obsess over how to make the lives of our customers, and their customers, better. And it means we prioritize a diverse F5 community where each individual can thrive.

At F5, we strive to bring a better digital world to life. Our teams empower organizations across the globe to create, secure, and run applications that enhance how we experience our evolving digital world. We are passionate about cybersecurity, from protecting consumers from fraud to enabling companies to focus on innovation.

Everything we do centers around people. That means we obsess over how to make the lives of our customers, and their customers, better. And it means we prioritize a diverse F5 community where each individual can thrive.

Come work at a place where innovation and teamwork come together to support the most exciting missions in the world!

Our Security as a Service (SaaS) Security Operations Center (SOC) is the epicenter of dynamic security events; clients under siege daily, with new attacks and attack vectors evolving continuously.

You will partner collaboratively with seasoned engineers to keep our customers safe and stop attackers cold, around the clock. As part of a Global SOC team, you will be responsible for managing cloud-based security systems on behalf of F5 clients, providing real time protection, detection, mitigation, and resolution of security events. The SOC DDoS Analyst is a master of identifying DDoS attacks and is a skilled security defender.

When not unravelling security issues, you may spend time mentoring and training colleagues, troubleshooting processes and spreading security knowledge throughout the business or investigating new attacks and defenses.

A contender for this role possesses a passion for information security, enjoys solving problems and sharing knowledge with others, excels under pressure, and is continuously looking for opportunities for personal and team improvement.

Attractions of the Job

The Security Operations Center is a critical component of the Security & Distributed Cloud Portfolio. Our expert security Engineers defend a wide spectrum of companies from online fraud, DDoS (Distributed Denial of Service), Application layer, and other security threats.

You will work side-by-side with some of the finest security Engineers in the world, leveraging the best security products available, defending against attacks in real-time, analyzing industry trends, and innovating new protections against a variety of evolving threats and vulnerabilities.

What will you do?

Take proactive and reactive steps to mitigate Layer 4-7 security threats against F5 clients

Interact directly with F5 clients who are under attack via phone, email and / or ticketing systems

Provide proactive and real-time guidance to customers on network configuration, security protocols, and defensive security response

Document activities taken in incident management systems, knowledge base, or ticketing systems, as required

Establish yourself as a trusted security advisor internally and externally

Assist F5 clients with onboarding and provisioning

Engage and support cross-functional teams

Investigate new attacks and vulnerabilities

Appropriately manage time and customer issues based on issue severity and business needs

Collaborate with Product Management and Development on requirements and product release activities

Identify, define, and implement process and procedure improvements

Ensures documented processes and procedures are relevant and up to date

Minimum Qualifications

2-5 years’ experience in the Information Security or network security field.

Ability to excel in a dynamic, challenging, security-oriented operations environment

Undaunted by, and quickly capable of, coming up to speed on new and developing technologies

Must be able to communicate technical and operational details fluently in English (written and oral)

Excellent customer service skills

Robust troubleshooting and problem-solving ability including analytical thinking and a strong attention to detail

Experience with global routing and networking technologies

Skilled understanding of HTTP

• Technical knowledge of, and experience, troubleshooting TCP / IP networks

Fundamental Linux skills

Knowledge of Layer 7 DDoS attack mitigation

Ability to perform log file analysis

Ability to develop creative, efficient solutions to complex problems

Skills & abilities you'll be improving :

Must be able to relay technical information to customers with different levels of technical competence

Experience supporting corporate customers in production environments, working with relevant technologies

Experience working with Customer Support and Service Management portals, including provisioning, reporting, and configuration

Comfortable working with moderate supervision

Ability to develop creative, efficient solutions to complex problems

Detailed protocol analysis using tools such as tcpdump, tshark, and Wireshark

Packet manipulation and crafting using tools such as hping, scapy, and iptables

Traffic generation and replay using tools such as apachebench and tcpreplay

Possess a strong drive to continually learn, always asking “Why?”

Work well in a customer-event driven environment with little day-to-day oversight

Preferred Qualifications

Prior Network Security, SOC, or NOC experience

B.S. in Information System Security or related degree

Background in Security Incident Response

Information Security / Computer Science degree, or equivalent experience

Familiarity with a programming or scripting language

Fluency in additional languages

Experience with F5 hardware and software (Big-IP, TMOS, iRules, iApps, iControl, etc.)

Familiarity with a programming or scripting language.

Experienced in common enterprise network technologies

Work Environment

Duties require the ability to utilize a computer, communicate over the telephone and read digital material

Working in an environment where work hours are scheduled shifts in a full-time position

This role may be required to work outside of core business hours including early morning, late evening, overnight, weekends, and holidays

May be required to travel (5%), including possible international travel

The Job Description is intended to be a general representation of the responsibilities and requirements of the job. However, the description may not be all-inclusive, and responsibilities and requirements are subject to change.

The Job Description is intended to be a general representation of the responsibilities and requirements of the job. However, the description may not be all-inclusive, and responsibilities and requirements are subject to change.