F5 F5 SIRT Security Engineer - 

India, Telangana, Hyderabad 

559963844

Primary Responsibilities

• Responsible for upholding F5s business code of ethics & for promptly reporting violations of the code or other company policies

• Manages multiple issues and prioritizes based upon customer and business needs, without direction

• Provides F5 customers with a consistently high-quality support experience

• Assist Senior Security Engineer with other tasks as required based upon business operation needs

• Effectively engages supporting escalation personnel, without direction

• Participate in weekend support rotation

Product Vulnerability Response and Management

• Work with the PD Platform Security team to maintain the 3rd Party Module Vulnerability Triage information

• Open Escalation when requested by Platform Security to investigate orphaned Vulnerability bugs

• Participate in the release meetings and triage bugs for release

• Assist ENE owners with ENE006 SRs that are in deadlock or stalled

• Perform threat and vulnerability management, monitoring of CVE and vendor notifications

• Monitor the F5SIRT shared mailbox, identify external researchers and create SRs where necessary to be assigned to Security Engineers

Customer Security Incident Response

• Provide incident handling and drives both attack analysis and mitigation options

• Participate in tier 2 and tier 3 security support

• Follows processes defined in F5’s Quality Management System (QMS)

• Mentoring Security SRs to resolution - Proactively monitors Securty Service Request (SR) with long Time to Resolution (TTR)

• Working with F5 SIRT Specialists to handle ESRP cases

• Maintain incident documentation, participate in post-mortems, and write incident reports.

• Working with SR Security Engineers on post-mortem for ESRP incidents

• Tracking attack trends and threat intelligence from different sources

• Monitors security issues in order to identify and act upon them as they occur – Active Mentoring

• Running workshops to help F5 SIRT Specialists build hands-on experience in a lab environment in order to better prepare for dealing with attacks in the real environment – With Sr. Sec Eng

• Simulating typical customer network environment (in terms of versions, modules, network devices), running different attacks, documenting security incident response plan and exercising it

• Work closely with others to develop incident response plans

Building Security Mindset - Security Evangelism

• Running regional F5 SIRT meetings

• Handling reactive mentor questions on Security from F5 SIRT Specialists and NSEs – Monitor F5 SIRT email

• Creating security presentations for a wide audience

• Engages in on-going training within the security field and with F5 products

• May lead projects and provide guidance/training to less experienced staff and mentoring.

• Evaluate and execute cross-functional security initiatives across the enterprise.

• Work with cross functional Engineering teams to ensure all systems are properly remediated according to our policies and standards.

Bring:

• Minimum of 5 years of related experience in a technical security role such as support, monitoring or consulting (e.g. pen testing) working with relevant technologies

• Appropriate security based qualification; CISSP, GCIH (or demonstrated skills and ability to obtain certification) – more than one certification preferred.

• Strong understanding of industry standards such as CVE, CPE, and CVSS

• Experience with security incident handling processes, procedures and methodologies.

• Technical experience with identifying and mitigating a breadth of attacks such as DDoS, web application, DNS and other network attacks.

• Knowledge with common security vulnerabilities and the ability to judge their severity

• Experience with working security incidents at corporate production environments

• Experience working with network and packet analysis tools

• BA/BS degree or equivalent experience

• Knowledge with Web Application Firewalls, Firewalls and IPS/IDS

• Experience with network vulnerability scanners

• OS hardening and security best practices

• Hands on technical experience with and very knowledgeable on LAN/WAN operations, and/or networking hardware required

• CVE and CERT experience

• Knowledge of security offensive/defensive techniques and methodologies.

• Understanding of security attack/defense methodologies (e.g. DNS, network TCP/IP, SSL and HTTP)

• Intermediate understanding and working knowledge of TCP/IP, SSL, DNS, HTTP and common protocols.

• Knowledge of network and security monitoring tools

• Coding experience – having in addition to Python knowledge in other scripting languages

• Familiarity with load balancers, WAF’s and common network architectures

• Working knowledge of standard UNIX/Linux command line tools

• Ability to generate new training and knowledge sharing content via various delivery method

• Proven track record in a team environment

• Analytical thinker with strong attention to detail

• Must be able to read, write and speak English fluently, including technical concepts and terminology.

• Must be able to relay technical information to customers with varying skill levels

• Ability to create attack Proof of Concepts

• Experience with incident tracking software, Seibel experience a plus
  

The Job Description is intended to be a general representation of the responsibilities and requirements of the job. However, the description may not be all-inclusive, and responsibilities and requirements are subject to change.