Sr Security Engineer

At F5, we strive to bring a better digital world to life. Our teams empower organizations across the globe to create, secure, and run applications that enhance how we experience our evolving digital world. We are passionate about cybersecurity, from protecting consumers from fraud to enabling companies to focus on innovation.

Everything we do centers around people. That means we obsess over how to make the lives of our customers, and their customers, better. And it means we prioritize a diverse F5 community where each individual can thrive.

Sr Security Engineer

Join a team using leading edge security technology and processes to protect the F5 enterprise and product environments. The Sr. Security Engineer position will develop and implement strategic processes and build technical solutions to enable our information security program and continuously improve our security posture amidst the industry’s evolving technology landscape.

Primary Responsibilities

1. Identify organizational risks to confidentiality, integrity, and availability, and determine appropriate mitigations.
2. Leverage native Azure, GCP, and AWS cloud services to automate and improve existing security and control activities.
3. Develop or implement open-source/third-party tools to assist in detection, prevention, and analysis of security threats.
4. Perform technical security assessments against F5aaS product and enterprise cloud hosted, virtual, and on-premise systems including static and dynamic analysis, and threat modeling.
5. Review and test changes to services, applications, and networks for potential security impacts.
6. Manage penetration and segmentation testing of F5 applications and networks.
7. Review changes to and ongoing operations of enterprise environments and supporting systems for security and compliance impacts.
8. Assist in detection and response efforts as a product line subject matter expert.
9. Propose new controls to Security Architecture and GRC.
10. Build and implement new security controls, processes, and tools.
11. Implement zero-trust and IAM security patterns with cloud agnostic tooling.
12. Collaborate with Architecture, Site Reliability Engineering and Operations teams to develop and implement technical solutions and security standards.
13. Configure industry standard security testing/scanning tools (network scanning, code scanning, posture management).
14. Advise enterprise stakeholders on security best practices and secure design principles.
15. Implement, design, develop, administer, and manage enterprise security tooling.

Knowledge, Skills and Abilities

1. Experience working with high-availability enterprise production environments.
2. Ability to script in multiple languages (Go, Rust, Python, Ruby, etc.) and experience building scripts for process improvements and automation.
3. Baseline competency in administration of Microsoft Azure Cloud, Amazon Web Services (AWS), Google Cloud Platform (GCP) or equivalent public cloud infrastructure.
4. Technical knowledge and extensive hands-on experience with security and networking architecture, networking protocols, network security design, wireless security, intrusion prevention/detection, and firewall architecture.
5. Experience automating security testing and reporting outputs.
6. Knowledge or familiarity with technological stack (Big-IP, Azure, AWS, GCP, CentOS, Linux, Kubernetes, Docker, Hashicorp Vault, Palo Alto, Cisco, Qualys).
7. Experience assessing and implementing technical security controls.
8. Exposure to DevOps tooling, CI/CD pipelines, container orchestration, and infrastructure as code approach (e.g. Puppet, Chef, Ansible, Terraform, Jenkins, CircleCI, Artifactory, Git).
9. Strong written and verbal communication skills.
10. Experience with network and application vulnerability and penetration testing tools.
11. Willingness to innovate and learn new technologies.
12. Excellent interpersonal and relationship skills with a collaborative mindset.
13. Strong self-directed work habits, exhibiting initiative, drive, creativity, maturity, self-assurance, and professionalism.
14. Agile, tactful, and proactive attitude that can manage prioritization and know when to escalate.

Qualifications

1. B.S. or M.S. in Computer Science, Engineering, or related field, or equivalent experience.
2. 5 years of progressive responsibility in a security organization.
3. 2-4 years of relevant security engineering or network security experience.

The Job Description is intended to be a general representation of the responsibilities and requirements of the job. However, the description may not be all-inclusive, and responsibilities and requirements are subject to change.

The annual base pay for this position is: $126,281.00 - $189,421.00.

Equal Employment Opportunity

It is the policy of F5 to provide equal employment opportunities to all employees and employment applicants without regard to unlawful considerations of race, religion, color, national origin, sex, sexual orientation, gender identity or expression, age, sensory, physical, or mental disability, marital status, veteran or military status, genetic information, or any other classification protected by applicable local, state, or federal laws. This policy applies to all aspects of employment, including, but not limited to, hiring, job assignment, compensation, promotion, benefits, training, discipline, and termination. F5 offers a variety of reasonable accommodations for candidates. Requesting an accommodation is completely voluntary. F5 will assess the need for accommodations in the application process separately from those that may be needed to perform the job. Request by contacting accommodations@f5.com.

We source and recruit the best, diverse talent for F5, whether hybrid or remote.

Hybrid: Employees within 30 commutable miles of an F5 office are required to work from the office a minimum of 30 business days per quarter.

Remote: Primarily work from designated home location but can come into an F5 office to work or travel to an offsite location as needed.

About Us

F5 is a force for a better digital world. We make products that protect apps, APIs, and infrastructure from attackers, so digital businesses can be lightning fast and available whenever customers need them. F5 makes it easier for our customers to provide exceptional, secure digital experiences for their customers — while staying ahead of threats. To do this well, we need people like you— the best and brightest minds in the industry. Learn about our unique, human-first culture, and how we encourage people to be authentic, prioritize diversity and inclusion, and foster our employees’ growth and success.