CSOC Engineer

CSOC Engineer

Leveraging our growing security product suite CSOC Engineers contribute real world security insights to Fastly and our customers as we address Internet-scale threats. CSOC Engineers function as the primary escalation point for SOC Analysts in a globally distributed team. A core responsibility and key performance metric for this role is the effective training and mentoring of our SOC analysts reducing escalations to the Senior CSOC-engineering level so you can focus on process improvements data analysis and security tooling to continue advancing our products services and capabilities.

The CSOC team works with our internal platform security and security research engineering and development teams as well operations and customer organisations internally to deliver support solutions for security threats faced on the Internet today.

What Youll Do:

You will be responsible for escalations around monitoring and analysing customer activity like identifying account-takeover bot attacks and other malicious web traffic. The focus will be around attacks at the application addition as part of CSOC engineering you will be involved in designing building and supporting tooling for our analysts. You will have the opportunity to work on some of the worlds most scalable distributed systems as well as working with the world-class engineers who developed these systems.

• Requirements gathering and development of Security Monitoring Systems and troubleshooting tools

• Be an expert in ensuring security for customers providing an outstanding response to security issues.

• Provide deep application-security experience on escalated cases from customers & automated systems.

• Carry out continuous-improvement work & research to drive our customer security products & operations to be the best they can be.

• Contribute to the processes and policies that scale our organisation as we grow

• Create test and deploy security content (e.g. WAF rules) in response to CVEs and other emerging threats

• Provide guidance mentoring and training for new Security and Customer Support Engineers

• Create & review reporting for customers on security services

• Provide expert-level support for Terraform deployments and configurations

• Troubleshoot and resolve issues related to Kubernetes deployments and management

• Offer technical assistance and guidance on SSO configurations and integrations

• Provide support for next-generation web application firewalls including troubleshooting and performance optimization

• Actively participate in sprint planning deliver committed tasks on time with quality code collaborate with team members communicate blockers and contribute to continuous improvement.

• Manage CSOC tool-related escalations and troubleshooting

What Were Looking For:

• Strong infosec background with strong knowledge & practical skills in application security

• Strong knowledge of core internet-technologies like DNS HTTP & TLS and how to debug with common tools

• Some software development skills/experience in any of the following or other common web languages: Python Go Rust JS

• Experience in security operations or technical support

• Detection engineering experience developing content for security products and services (e.g. WAF rules)

• Application server technologies and frameworks experience

• Ability to work with limited supervision but be a good mentor on security knowledge to the greater team

• Fluent spoken & written English required tailoring depth to fit varying audiences

• Focused on delivering exceptional customer experiences

Ideally youll also have experience in some of these:

• Analysis with log visualisation tools (Grafana Prometheus Looker Splunk Elastic/ELK or others)

• Experience working in a SOC or Incident Response Team

• Apache/NGINX/IIS or other web server platforms

• Cloud ecosystem knowledge & experience (AWS GCP or similar)

• Unix/Linux or Windows system administration

• Systems configuration management and/or orchestration tools

Work Hours:

• Monday to Friday each week around core hours 9am - 6pm

Work Location(s) & Travel Requirements:

This position is open to the following preferred office locations:

• London UK (only) - 2 days per week

Fastly currently embraces a largely hybrid model for most roles which allows employees flexibility to split their time between the office and home.

This position will require occasional travel as required by your role or requested by your manager.

Salary:

The estimated salary range for this position is 78000 to 95000

Starting salary may vary based on permissible non-discriminatory factors such as experience skills qualifications and location.

This role may be eligible to participate in Fastlys equity and discretionary bonus programs.

Benefits:

We care about you. Fastly works hard to create a positive environment for our employees and we think your life outside of work is important too. We support our teams with great benefits that start on the first day of your employment with Fastly. Curious about our offerings

We offer a comprehensive benefits package designed to meet your needs. Our offerings may vary depending on the country where you work and are subject to change.