Lead Email Security Detections Engineer
Posted on 3/8/2023

1,001-5,000 employees

Web performance & security platform
Company Overview
Cloudflare's mission is to help build a better Internet. The company specializes in providing a content delivery network and DDoS mitigation services.
Austin, TX, USA • Remote in USA
Experience Level
Desired Skills
Data Analysis
DevOps & Infrastructure
Software Engineering
  • At least 5 years experience in one of the following:
  • Analyzing, tracking and defending against phishing attacks
  • Incident detection and response
  • Intrusion analysis
  • Cyber threat hunting
  • Penetration testing
  • Network defense
  • Endpoint forensics
  • Experience leading a team and/or several projects
  • Working knowledge of email authentication protocols, and experience in email header analysis
  • Experience in rule configuration and using a comprehensive data analysis platform
  • Experience with detection development using YARA
  • Working knowledge of OSI Layers, DNS, SMTP/SMTPS, TCP/UDP, HTTP/HTTPS
  • Familiarity with regular expressions and their practical application in tracking malicious activity
  • Working knowledge of SQL and devising SQL queries
  • Ability to understand the latest security trends as they relate to email-borne threats
  • A passion for analyzing attacker TTPs at varying levels
  • Familiarity with the cyber threat landscape, cyber intelligence, and working knowledge of threat actors and their techniques
  • Experience tracking and analyzing cyber campaigns utilizing technical Indicators of Compromise (IOCs)
  • Ability to synthesize technical information and document it in a non-technical manner through both graphical and verbal representation
  • Capable and comfortable communicating actionable threat intelligence to both technical and executive-level stakeholders
  • Great oral and written communications skills
  • One of the following:
  • BS in Computer Science, Information Technology, Information Security, Computer Security, Information Systems or related discipline, OR
  • Military or industry training and experience in cyber intelligence, general intelligence studies, security studies, or related discipline
  • Desire to learn and improve
  • Willing and eager to share knowledge, and mentor
  • Cloudflare is a system spanning the globe, on a mission to make the internet better, safer, and more powerful everyday. To help fulfill this mission, we are seeking a talented Lead Security Detections Engineer to identify, track, and defeat sophisticated email-borne cyber threats. In this position, you will examine and mitigate threats in realtime, leveraging emerging technologies to build detections that protect millions of people from phishing attacks. Your efforts will help us in our constant pursuit of reaching far beyond today's email security market
  • As a Lead Security Detections Engineer, your analytical thinking and quick action will be the key to our success. You will identify Tactics, Techniques, and Procedures (TTPs) of ongoing and ever-evolving cyber attacks to protect our global customer base. You will work in close collaboration with team members to develop new and innovative ways to present and interact with our unique insights. You will stop the adversary
Desired Qualifications
  • Software development skills, with preferred experience programming in Go, React and Python
  • Working knowledge of SQL (e.g., Postgres) and NoSQL (e.g., Redis)
  • Experience with Continuous Integration and Continuous Delivery environments (e.g., Docker, Kubernetes, etc.)