CSOC Analyst

Fastly is a company that helps people stay better connected through its edge cloud platform. They are seeking a CSOC Analyst to act as a frontline defender for their global enterprise customers by monitoring traffic, detecting anomalies, and implementing real-time mitigations against various cyber threats.

Responsibilities

• Lead the identification and mitigation of high-impact security events
• Analyze sophisticated traffic patterns and implement precise countermeasures, including rate limiting and custom WAF & Security rules to neutralize threats in real-time
• Serve as a primary security consultant for MSS Customers
• Continuously tune and refine security policies to optimize detection accuracy and maintain a hardened security posture tailored to each client's unique environment
• Conduct data-driven investigations using log analysis to uncover potential threats and hardening opportunities
• Author comprehensive After Action Reports (AARs) and monthly security summaries
• Translate complex telemetry and attack data into high-level actionable insights for customer stakeholders
• Act as the Subject Matter Expert (SME) during active security incidents
• Provide clear, calm, and professional guidance via real-time communication channels, ensuring customers are informed and confident in our defensive strategy

Skills

• Web Security Expertise: Comprehensive understanding of the OWASP Top 10 and advanced attack vectors (e.g., Credential Stuffing, API Abuse, and Layer 7 DDoS). You can interpret raw payloads to distinguish between malicious intent and legitimate traffic
• Protocol Proficiency: Deep technical knowledge of the internet stack, specifically HTTP/S, TCP/IP, DNS, and TLS. You should be comfortable analyzing handshake processes, header structures, and status codes
• Analytical Rigor: A methodical approach to digital forensics and incident response. You possess the ability to correlate disparate data points within JSON or CSV logs to reconstruct an attack narrative
• Communication Excellence: The ability to distill complex technical findings into concise, professional, and empathetic communications for both technical and non-technical audiences
• Proficiency in Python or Bash for log parsing and workflow automation
• Experience with Infrastructure as Code/Security as Code(SaC) (Terraform) or edge-based configurations
• Industry-standard certifications such as CompTIA CySA+, GCIH, or Security+

Benefits

• Medical, dental, and vision insurance
• Family planning
• Mental health support along with Employee Assistance Program
• Insurance (Life, Disability, and Accident)
• A Flexible Vacation policy
• Up to 18 days of accrued paid sick leave
• 401(k) (including company match)
• Employee Stock Purchase Program
• 12 paid local holidays
• 12 paid company wellness days

Company Overview

Company H1B Sponsorship