Tier 3 Security Engineer
Denver, CO

Job Description

Fastly helps the world's most popular digital businesses keep pace with their customer expectations by delivering fast, secure, and scalable online experiences. Businesses trust Fastly to accelerate the pace of technical innovation, mitigate evolving threats, and scale on demand. Founded in 2011, Fastly powers online destinations including Airbnb, GitHub, Alaska Airlines, Pinterest, Vimeo, The Guardian, and The New York Times.

The worldwide cloud services market is projected to grow rapidly to $236 billion in 2020, according to Forrester, Inc. As more and more businesses move operations to the cloud, Fastly is well positioned to continue increasing CDN, cloud networking and cloud security market share with edge cloud services that reach beyond content delivery.

We're building a better Internet. Come join us.

Tier 3 Security Engineer

The use of cloud security solutions enables customers to benefit from extra visibility across the world and expertise from a central team. By leveraging our growing security product suite, the Tier 3 Security Engineer will contribute real world security insights to Fastly and our customers as we address Internet-scale threats. This Security Engineer is an experienced security professional within the Fastly Mission Control Center and has a solid understanding of the threat and vulnerability management domains. The security analyst team at Fastly focuses on delivering outstanding service to our customers and helping them with security insights. The team works with the rest of the security organization along with our operations and customer facing parts of the organization to support solutions for security threats facing the Internet today. As we expand our security product offerings, we seek expanded customer support capabilities.

What You'll Do

This role will function as the principle engineer in building and enhancing security operations functions. This role also acts as the primary escalation group for Tier 1 and Tier 2 Mission Control Engineers which supports customers in the Fastly cloud stack. Fastly builds on the popular Varnish cache along with the VCL language to provide security capabilities, including DDoS defense and WAF functionality. You will have the opportunity to work on some of the world's most highly-scaled distributed systems that handle around 8 million requests per second.

In this position, the Tier 3 Security Engineer will be responsible for the following:

* Develop, document, and train security processes for handling attack mitigation, rule updates, proactive monitoring of WAF logs and DDoS threats.
* Develop automation around rule management, creation and testing, as well as security investigations, using Go and Python.
* Investigate DDoS attacks and other security related incidents. Serve as an escalation point for junior team members.
* Troubleshoot, tune and develop WAF rules for existing customers.
* Invent/create new methods and procedures and document them for use by the rest of the team.
* Serve as the primary point of escalation for Tier 2 Mission Control Engineers (MCE) for customer impacting issues related to WAF, DDOS, and other security incidents
* Implement training and exercises to ensure MC team proficiency, staying abreast of the current threats facing our customers and the Internet at large
* Coordination with stakeholders, building and maintaining positive working relationships with them
* Identify, procure and prototype new solutions designed to prevent, detect, and respond to threats
* Take an active role in proposing solutions and requirements for future WAF, DDOS and future security product development to product & marketing teams, as well as internal tools to empower Mission Control Engineers to better serve our customers
* Assist Security Solutions team in positioning and selling security solutions

What We're Looking For

* 10+ years experience in a leadership role within a Security Operations capacity
* Proficiency in incident management and response processes and technologies
* Demonstrated experience in a security technical support role, working with relevant technologies
* Develop scripts in Go, Python or Ruby.
* Excellent customer service, analytical skills, problem solving and interpersonal skills
* Experience supporting corporate security customers in production environments
* Ability to work with moderate supervision
* Must be able to relay technical information to customers of varying skill levels
* Experience configuring and tweaking ModSecurity / OWASP Rulesets for applications.
* Experience configuring setup and analyzing data using an ELK Stack
* Hands-on technical experience in analyzing TCP/IP traffic, especially HTTP, TLS, and DNS traffic
* Hands-on technical experience analyzing scripting languages, including: JS, PHP, HTML, HTML5 in security contexts, including proof-of-concept exploits.
* Web malware experience including analysis of existing exploits and finding new vulnerabilities

Relevant Skills

We value a variety of voices, so this is not a laundry list. You'll be a good candidate if you have experience and/or interest in SOME of these:

* Experience in threat management
* Technical leadership with an emphasis on team building and capability development
* Web application security technologies like mod_security
* Linux/UNIX systems, both high and low level
* Experience with software engineering best practices (e.g. unit testing, code reviews, design documentation)
* Experience with Unix/Linux command line interface and common system administration commands
* Familiarity with one or more programming languages: Go, Python, Ruby.
* Ability to debug connections using cURL, HTTP headers, ping, traceroute, MTR, and other network diagnostic tools
* Monitoring tools expertise (pingdom, nagios, Datadog, New Relic, Catchpoint, Conviva, Prometheus, Grafana)
* Deep understanding of cloud services: AWS, Azure, Google Cloud Platform, etc.

Why Fastly?

* We have a huge impact. Fastly is a small company with a big reach. Not only do our customers have a tremendous user base, but we also support a growing number of open source projects and initiatives. Outside of code, employees are encouraged to share causes close to their heart with others so we can help lend a supportive hand.
* We love distributed teams. Fastly's home-base is in San Francisco, but we have multiple offices and employees sprinkled around the globe. In fact, 50% of our employees work outside of SF! An international remote culture is in our DNA.
* We care about you. Fastly works hard to create a positive environment for our employees, and we think your life outside of work is important too. We support our teams with great benefits like up to 20 weeks of paid parental leave, options for free medical/dental/vision plans, and an open vacation program that enables our folks to take the time they need to recharge (some benefits may vary by location).
* We value diversity. Growing and maintaining our inclusive and diverse team matters to us. We are committed to being a company where our employees feel comfortable bringing their authentic selves to work and have the ability to be successful -- every day.
* We are passionate. Fastly is chock full of passionate people and we're not 'one size fits all'. Fastly employs authors, pilots, skiers, parents (of humans and animals), makeup geeks, coffee connoisseurs, and more. We love employees for who they are and what they are passionate about.

We're always looking for humble, sharp, and creative folks to join the Fastly team. If you think you might be a fit please apply!

Fastly provides equal employment opportunity without regard to an applicant's race, sex, pregnancy, sexual orientation, gender identity or expression, genetic information, national origin, age, physical or mental disability, medical condition, religion, marital status or veteran status.

Applicants with disabilities may be entitled to reasonable accommodation under the terms of the Americans with Disabilities Act and certain state or local laws. A reasonable accommodation is a change in the way things are normally done which will ensure an equal employment opportunity without imposing undue hardship on Fastly. Please inform us if you need assistance completing any forms or to otherwise participate in the application process.