CSOC Analyst

Fastly is seeking a CSOC Analyst to join our dedicated Customer Security Operations Centre. In this role, you will be a frontline defender for Fastly's global enterprise customers. You will leverage our edge cloud platform and an array of security products in monitoring traffic, detect sophisticated anomalies, and deploy real-time mitigations against DDoS, Bot, and Web Application attacks.

This is a high-impact role where you act as a strategic partner for our Managed Security Service (MSS) clients, providing the expert visibility and rapid response necessary to address internet-scale threats.

What you'll Do:

• Active Incident Response: Lead the identification and mitigation of high-impact security events. You will analyze sophisticated traffic patterns and implement precise countermeasures, including rate limiting and custom WAF & Security rules to neutralize threats in real-time.
• Managed Security Delivery: Serve as a primary security consultant for MSS Customers. This involves continuous tuning and refining of security policies to optimize detection accuracy and maintaining a hardened security posture tailored to each client's unique environment.
• Advanced Threat Hunting: Conduct data-driven investigations using log analysis to uncover potential threats and hardenings opportunities
• Security Intelligence & Reporting: Author comprehensive After Action Reports (AARs) and monthly security summaries. You will translate complex telemetry and attack data into high-level actionable insights for customer stakeholders.
• Strategic Communication: Act as the Subject Matter Expert (SME) during active security incidents. You will provide clear, calm, and professional guidance via real-time communication channels, ensuring customers are informed and confident in our defensive strategy.

• Protocol Proficiency: Deep technical knowledge of the internet stack, specifically HTTP/S, TCP/IP, DNS, and TLS. You should be comfortable analyzing handshake processes, header structures, and status codes.
• Analytical Rigor: A methodical approach to digital forensics and incident response. You possess the ability to correlate disparate data points within JSON or CSV logs to reconstruct an attack narrative.
• Communication Excellence: The ability to distill complex technical findings into concise, professional, and empathetic communications for both technical and non-technical audiences.

We'll be super impressed if you have experience in any of these:

• Proficiency in Python or Bash for log parsing and workflow automation.
• Experience with Infrastructure as Code/Security as Code(SaC) (Terraform) or edge-based configurations.
• Industry-standard certifications such as CompTIA CySA+, GCIH, or Security+.

Work Hours: This position will require you to be available during core business hours 9am - 6pm

Work Location(s) & Travel Requirements: This position is a hybrid role (twice a week in office) and open to candidates residing in the following location: London

Fastly helps people stay better connected with the things they love. Fastly's edge cloud platform enables customers to create great digital experiences quickly, securely, and reliably by processing, serving, and securing our customers' applications as close to their end-users as possible - at the edge of the Internet. The platform is designed to take advantage of the modern internet, to be programmable, and to support agile software development. Fastly's customers include many of the world's most prominent companies, including GitHub, Yelp, Paramount, and JetBlue., Why Fastly? * We have a huge impact. Fastly is a small company with a big reach. Not only do our customers have a tremendous user base, but we also support a growing number of open source projects and initiatives. Outside of code, employees are encouraged to share causes close to their heart with others so we can help lend a supportive hand. * We love distributed teams. Fastly's home-base is in San Francisco, but we have multiple offices and employees sprinkled around the globe. As a new hire, you will be able to attend our IN-PERSON new hire orientation in our San Francisco office! It is an exciting week-long experience that we offer to new employees to build connections with colleagues across Fastly, participate in hands-on learning opportunities, and immerse yourself in our culture firsthand. * We value diversity. Growing and maintaining our inclusive and diverse team matters to us. We are committed to being a company where our employees feel comfortable bringing their authentic selves to work and have the ability to be successful -- every day. * We are passionate. Fastly is chock full of passionate people and we're not 'one size fits all'. Fastly employs authors, pilots, skiers, parents (of humans and animals), makeup geeks, coffee connoisseurs, and more. We love employees for who they are and what they are passionate about.