People Matter

SOC Engineer - DDoS



Posted on Thursday, March 28, 2024

At F5, we strive to bring a better digital world to life. Our teams empower organizations across the globe to create, secure, and run applications that enhance how we experience our evolving digital world. We are passionate about cybersecurity, from protecting consumers from fraud to enabling companies to focus on innovation.

Everything we do centers around people. That means we obsess over how to make the lives of our customers, and their customers, better. And it means we prioritize a diverse F5 community where each individual can thrive.

Role Overview:
Our Security as a Service (SaaS) Security Operations Center (SOC) is the epicenter of dynamic security events; clients under siege daily, with new attacks and attack vectors evolving continuously.

You will partner collaboratively with seasoned engineers to keep our customers safe and stop attackers cold, around the clock. As part of a Global SOC team, you will be responsible for managing cloud-based security systems on behalf of F5 clients, providing real time protection, detection, mitigation, and resolution of security events. The SOC DDoS Engineer is a master of identifying DDoS attacks and is a skilled security defender.

Then not unravelling security issues, you may spend time mentoring and training colleagues, troubleshooting processes and spreading security knowledge throughout the business or investigating new attacks and defenses.

A contender for this role possesses a passion for information security, enjoys solving problems and sharing knowledge with others, excels under pressure, and is continuously looking for opportunities for personal and team improvement.

This role may be required to work outside of core business hours including early morning, late evening, overnight, weekends, and holidays.

What you will do:

  • Take proactive and reactive steps to mitigate Layer 4-7 security threats against F5 clients
  • Interact directly with F5 clients who are under attack via phone, chat, email and/or ticketing systems
  • Provide proactive and real-time guidance to customers on network configuration, security protocols, and defensive security response
  • Document activities taken in incident management systems, knowledge base, or ticketing systems, as required
  • Assist F5 clients with onboarding and provisioning
  • Investigate new attacks and vulnerabilities
  • Appropriately manage time and customer issues based on issue severity and business needs
  • Collaborate with Product Management and Development on requirements and product release activities

What you will bring:

  • 3+ years’ experience in the Information Security or network security field.
  • Prior Network Security, SOC, or NOC experience
  • Skilled and Experienced with global routing and networking technologies (GRE, BGP, ASN routing), HTTP, TCP/IP, Linux, Layer 7 DDoS attack mitigation
  • Familiarity with a programming or scripting language
  • Experience with F5 hardware and software (Big-IP, TMOS, iRules, iApps, iControl, etc.) is a plus

Physical Demands and Work Environment

  • This role requires availability outside normal business hours to align with the distributed team or to respond to critical security events.
  • Some travel may be required (less than 10%).

What you will get:

The Job Description is intended to be a general representation of the responsibilities and requirements of the job. However, the description may not be all-inclusive, and responsibilities and requirements are subject to change.

Please note that F5 only contacts candidates through F5 email address (ending with or auto email notification from Yello/Workday (ending with or

Equal Employment Opportunity

It is the policy of F5 to provide equal employment opportunities to all employees and employment applicants without regard to unlawful considerations of race, religion, color, national origin, sex, sexual orientation, gender identity or expression, age, sensory, physical, or mental disability, marital status, veteran or military status, genetic information, or any other classification protected by applicable local, state, or federal laws. This policy applies to all aspects of employment, including, but not limited to, hiring, job assignment, compensation, promotion, benefits, training, discipline, and termination. F5 offers a variety of reasonable accommodations for candidates. Requesting an accommodation is completely voluntary. F5 will assess the need for accommodations in the application process separately from those that may be needed to perform the job. Request by contacting