SOC Analyst I (AntiFraud) Location: Guadalajara, Mexico
F5 Networks
hace 7 días

The F5 Security Operations Center is the epicenter of dynamic security events; clients under siege daily, with new attacks and attack vectors evolving continuously.

This opportunity is located in Guadalajara, Mexico!

As a SOC Analyst, you will work collaboratively with seasoned engineers & analysts to provide real-time incident management when online fraud attacks are perpetrated against F5 clients.

This includes precise documentation of all related information while actively contacting relevant parties to shut down malicious activities.

A diligent, passionate approach is a must to manage multiple and rapid attacks efficiently. In addition, the SOC Analyst performs initial malware analysis and present the results to F5 and F5 clients.

The Analyst will be responsible for research and analysis of diverse types of malware, monitoring and handling security incidents, preventing online fraud, and will have closely engage with the company sales team to investigate online threats for potential clients and generate information reports.

Attractions of the Job

The F5 Security Operations Center is a critical component of the F5aaS (as a Service) Security Portfolio. Our expert security analysts defend a wide spectrum of companies across the globe in a variety of industries, on infrastructure that is vital to their business operations.

You will work side-by-side with some of the finest security analysts in the world, leveraging the best security products available, to deliver critical security services to major corporate enterprises globally.


  • Provide F5 customers with outstanding, rapid reaction to real-time alerts regarding phishing, malware and other security attacks
  • Provide F5 customers and partners with a consistently outstanding support experience
  • Provide technical support to remotely troubleshoot and resolve issues on F5 software products
  • Perform initial JavaScript investigations
  • Effectively communicate with hosting and registrar companies worldwide by email and phone
  • Proactively act to shutdown phishing websites and DropZones
  • Manage vast number of incidents rapidly, in real time
  • Generate 'post incident' reports to F5 customers
  • Handle initial investigation of Malware related alerts (JavaScript's, *PHP etc.)
  • Investigate new worldwide Malware and provide F5 clients with relevant information
  • Create signatures for new malware attaching F5 clients
  • Work closely with the company marketing team to publish threat research reports
  • Provide F5 sales team with relevant information of potential client’s online fraud
  • Generate online threats reports through comprehensive research of the World Wide Web (WWW) and internal tools
  • Minimum Qualifications

  • 0-2 years’ experience in the Information Security field
  • Strong background in customer service
  • Robust troubleshooting and problem-solving ability including, analytical thinking and a strong attention to detail
  • Must be able to relay technical information to customers with different levels of technical competence
  • Ability to excel in a dynamic, challenging, security oriented operations environment
  • Experience supporting corporate customers in production environments, working with relevant technologies
  • Experience working with Customer Support and Service Management portals, including provisioning, reporting, and configuration
  • Fundamental Linux skills
  • Ability to perform log file analysis
  • Ability to develop creative, efficient solutions to complex problems
  • Detailed protocol analysis using tools such as tcpdump, tshark, and Wireshark
  • Experience using tools such as Fiddler, HTTP Watch, Burp Suite, socat, and netcat
  • Packet manipulation and crafting using tools such as hping, scapy, and iptables
  • Traffic generation and replay using tools such as "apachebench and tcpreplay"
  • Must be able to communicate fluently in English (written and oral)
  • Preferred Qualifications

  • Information Security / Computer Science degree, or equivalent experience
  • Prior SOC or NOC experience
  • Background in Security Incident Response
  • Experience in network design and configuration
  • Fluency in additional languages
  • Familiarity with a programming or scripting language
  • Experience on common enterprise network and routing technologies
  • Experience with F5 hardware and software (Big-IP, TMOS, iRules, iApps, iControl, etc.)
  • Physical Demands and Work Environment

  • Duties are performed in an Operations Center environment while sitting at a desk or computer table
  • Duties require the ability to utilize a computer, communicate over the telephone and read printed material
  • Working in an environment where work hours are scheduled shifts in a full-time position
  • This role may be required to work outside of core business hours including early morning, late evening, overnight, weekends, and holidays
  • May be required to travel (5%), including possible international travel
  • LI-DC1#

    Añadir a los favoritos
    Elimnar de mis favoritos
    Mi Correo Electrónico
    Al hacer clic en la opción "Continuar", acepto que neuvoo recolecte y procese mis datos de conformidad con lo establecido en su Política de privacidad . Tengo derecho a darme de baja o retirar mi autorización en cualquier momento.
    Formulario de postulación