Web Application Security Analyst CDNWAF Focus - APAC

Web Application Security Analyst (CDN/WAF Focus) APAC

Leveraging our growing security product suite a Web Application Security Analyst(CDN/WAF Focus) contributes real world security insights to Fastly and our customers as part of our Customer Security Operations Center (CSOC) team as we address Internetscale threats.

The CSOC team provides operational support for Fastlys security products and services. Cloud security solutions enable our customers to benefit from extra visibility across the world and expertise from a central team.Analysts within this team focus on delivering outstanding security services to our customers. The team works with the security operations and customer organizations internally to respond to security threats faced on the Internet today.

What Youll Do:

You will play a crucial role in protecting our customers by monitoring and analyzing their web traffic leveraging Fastlys CDN and WAF products to identify security events like account takeover bot attacks DDoS attacks and other malicious activity with a focus on applicationlayer attacks. You will also be responsible for managing security configurations and responding to security events. This role offers an excellent opportunity to contribute to a dynamic environment working on some of the worlds most scalable distributed systems (handling 25 million requests per second) alongside worldclass engineers and advancing your career in application security. If you are a problemsolver with a strong interest in information security and a commitment to delivering exceptional customer experiences we encourage you to apply.

Analysts are responsible for the following:

• Respond to customer security issues and provide outstanding support ensuring an excellent customer experience.
• Analyze web traffic and identify suspicious activity.
• Triage and respond to incoming tickets and proactively detected alerts according to established SLAs.
• Create contribute to and review security reports.
• Manage security configurations for our customers.
• Develop new alert creations and attack mitigations and modify existing controls.
• Provide support for Terraform deployments and configurations.
• Troubleshoot issues related to Kubernetes deployments and configurations.
• Troubleshoot SSO configurations and integrations.
• Contribute to the development and maintenance of processes and policies that support organizational growth.
• Assist with the maintenance of existing runbooks and identify when new ones are needed.
• Interface with clients to address concerns or escalations tracking and driving to close any issues that impact the service and its value.

What Were Looking For:

• A strong interest in infosec and application security.
• Working knowledge of core internet technologies like DNS HTTP and TLS.
• Understanding of the OSI model and the ability to explain potential exploit methods at each layer.
• Experience in IT or security operations technical support or research.
• Scripting ability in a modern language (e.g. Python Bash).
• Experience with Kubernetes and/or Terraform.
• A desire to contribute to process and policy improvement.
• Ability to work independently and learn with limited supervision while also being a collaborative team member.
• Experience troubleshooting WAF products.
• Excellent written and spoken English communication skills with the ability to adapt content for different audiences.
• A focus on delivering exceptional customer experiences.

Bonus Points (Experience in some of the following areas will make you a stronger candidate):

• Experience with log visualization tools (Grafana Prometheus Looker Splunk Elastic/ELK etc..
• Experience working in a SOC or Incident Response Team.
• Familiarity with web server platforms (Apache NGINX IIS etc..
• Knowledge of application server technologies and frameworks.
• Cloud ecosystem knowledge and experience (AWS GCP or similar).
• Unix/Linux or Windows system administration skills.
• Experience with systems configuration management and/or orchestration tools.
• Business speaking and writing proficiency in Japanese and Mandarin

Work Hours:
SUNDAY TO THURSDAY each week around core hours 10am 6pm 11AM 7 PM varies during Daylight savings

Work Location(s) & Travel Requirements:
This position is open to either of the following preferred office locations:

Melbourne Australia

Fastly currently embraces a largely hybrid model for most roles which allows employees flexibility to split their time between the office and home with at least two days per week in the office.This position will require travel to the US for onboarding as well as team and company events. You must be eligible to travel to the US.

Benefits:

We care about you. Fastly works hard to create a positive environment for our employees and we think your life outside of work is important too. We support our teams with great benefits that start on the first day of your employment with Fastly. Curious about our offerings

We offer a comprehensive benefits package designed to meet your needs. Our offerings may vary depending on the country where you work and are subject to change.