At F5, we strive to bring a better digital world to life. Our teams empower organizations across the globe to create, secure, and run applications that enhance how we experience our evolving digital world. We are passionate about cybersecurity, from protecting consumers from fraud to enabling companies to focus on innovation.

Everything we do centers around people. That means we obsess over how to make the lives of our customers, and their customers, better. And it means we prioritize a diverse F5 community where each individual can thrive.

The F5 Security Operations Center is the epicenter of dynamic security events; clients under siege daily, with new attacks and attack vectors evolving continuously.

The F5 Security Operations Center is a critical component of the F5aaS (as a Service) Security Portfolio. Our expert security analysts defend a wide spectrum of companies across the globe in a variety of industries, on infrastructure that is vital to their business operations. You will work side-by-side with some of the finest security analysts in the world, leveraging the best security products available, to deliver critical security services to major corporate enterprises globally.

You will work collaboratively with seasoned engineers & analysts to provide real-time incident management when online fraud attacks are perpetrated against F5 clients. This includes precise documentation of all related information while actively contacting relevant parties to shut down malicious activities. A diligent, passionate approach is a must to manage multiple and rapid attacks efficiently. In addition, the SOC Analyst performs initial malware analysis and present the results to F5 and F5 clients. The Analyst will be responsible for research and analysis of diverse types of malware, monitoring and handling security incidents, preventing online fraud, and will have closely engage with the company sales team to investigate online threats for potential clients and generate information reports.

**This opportunity is located in Mexico.

What will you do?

• Provide F5 customers with outstanding, rapid reaction to real-time alerts regarding phishing, malware and other security attacks

• Provide F5 customers and partners with a consistently outstanding support experience

• Provide technical support to remotely troubleshoot and resolve issues on F5 software products

• Perform initial JavaScript investigations

• Effectively communicate with hosting and registrar companies worldwide by email and phone

• Proactively act to shutdown phishing websites and DropZones

• Manage vast number of incidents rapidly, in real time

• Generate 'post incident' reports to F5 customers

• Handle initial investigation of Malware related alerts (JavaScript's, *PHP etc.)

• Investigate new worldwide Malware and provide F5 clients with relevant information

• Create signatures for new malware attaching F5 clients

• Work closely with the company marketing team to publish threat research reports

• Provide F5 sales team with relevant information of potential client’s online fraud

• Generate online threats reports through comprehensive research of the World Wide Web (WWW) and internal tools

How do you qualify?

• 0-2+ years’ experience in the Information Security field

• Strong background in customer service

• Robust troubleshooting and problem-solving ability including, analytical thinking and a strong attention to detail

• Must be able to relay technical information to customers with different levels of technical competence

• Ability to excel in a dynamic, challenging, security oriented operations environment

• Experience supporting corporate customers in production environments, working with relevant technologies

• Experience working with Customer Support and Service Management portals, including provisioning, reporting, and configuration

• Fundamental Linux skills

• Ability to perform log file analysis

• Ability to develop creative, efficient solutions to complex problems

• Detailed protocol analysis using tools such as tcpdump, tshark, and Wireshark

• Experience using tools such as Fiddler, HTTP Watch, Burp Suite, socat, and netcat

• Packet manipulation and crafting using tools such as hping, scapy, and iptables

• Traffic generation and replay using tools such as "apachebench and tcpreplay"

• Must be able to communicate fluently in English (written and oral)

Preferred Qualifications

• Information Security/Computer Science degree, or equivalent experience

• Prior SOC or NOC experience

• Background in Security Incident Response

• Experience in network design and configuration

• Fluency in additional languages

• Familiarity with a programming or scripting language

• Experience on common enterprise network and routing technologies

• Experience with F5 hardware and software (Big-IP, TMOS, iRules, iApps, iControl, etc.)

Physical Demands and Work Environment

• Duties are performed in an Operations Center environment while sitting at a desk or computer table

• Duties require the ability to utilize a computer, communicate over the telephone and read printed material

• Working in an environment where work hours are scheduled shifts in a full-time position

• This role may be required to work outside of core business hours including early morning, late evening, overnight, weekends, and holidays

• May be required to travel (5%), including possible international travel

#LI-DC1

The Job Description is intended to be a general representation of the responsibilities and requirements of the job. However, the description may not be all-inclusive, and responsibilities and requirements are subject to change.

Please note that F5 only contacts candidates through F5 email address (ending with @f5.com) or auto email notification from Yello/Workday (ending with f5.com or @myworkday.com) .

Equal Employment Opportunity

It is the policy of F5 to provide equal employment opportunities to all employees and employment applicants without regard to unlawful considerations of race, religion, color, national origin, sex, sexual orientation, gender identity or expression, age, sensory, physical, or mental disability, marital status, veteran or military status, genetic information, or any other classification protected by applicable local, state, or federal laws. This policy applies to all aspects of employment, including, but not limited to, hiring, job assignment, compensation, promotion, benefits, training, discipline, and termination. F5 offers a variety of reasonable accommodations for candidates. Requesting an accommodation is completely voluntary. F5 will assess the need for accommodations in the application process separately from those that may be needed to perform the job. Request by contacting accommodations@f5.com.