Available Location - Lisbon, Portugal
This role requires full time work over the weekends. Please note that for this particular role we are unable to support work visas.
Role Summary
Threat Advisory Solutions Engineer (TASE) is a highly technical, hands-on role that requires deep understanding of Cloudflare's Security portfolio of products and services. The TASE team is on-call 24x7 to help prospective Cloudflare customers with cyber attack diagnosis, solutioning and mitigation, working alongside sales, product and various other teams at Cloudflare.
Role Responsibilities
TASEs are expected to lead the technology discussion with customers reaching out to Cloudflare while they are "Under Attack", and confidently and calmly handle the efforts of attack mitigation using Cloudflare technology and tools. TASEs work closely with Cloudflare Product and Engineering teams to analyze threat data and provide insights to Sales and Solutions Engineering teams to support the sales process. The role also requires creating threat intelligence reports and collateral for internal and external consumption.
We are looking for curious and ambitious individuals who want to combine their technical, organizational, data-driven research and communication skills with their desire to help customers achieve their goals. Connecting with stakeholders within Cloudflare and utilizing a variety of tools, your role will be to support the Sales and Solution Engineering teams throughout the sales process by focusing on security intelligence, anomaly hunting and incident response. Ideal candidates should be able to leverage intuition, security knowledge and a broad array of tools and advanced security techniques to uncover malicious activity, and assist customers.
Experience should include a combination of the skills below:
- Experience performing technical analysis involving threat event data and evaluating malicious activity.
- Deep knowledge of TCP/IP and related network protocols: knowledge of standard network protocols like TCP, ICMP, DHCP, DNS, HTTP, SNMP etc., and accompanying protocol/packet analysis/manipulation tools.
- Working/in-depth knowledge of information security protection/detection and authentication systems (firewalls, IDS, IPS, anti-virus, etc.)
- Knowledge of commonly-accepted information security principles and practices, as well as techniques attackers would use to identify vulnerabilities, gain unauthorized access, escalate privileges and access restricted information.
- In-depth knowledge of current operating environments (Microsoft, Linux & Other operating systems, and cloud providers).
- Understanding and use of scripting and third party security tools.
- Working understanding of database systems, application system development and installation/implementation processes.
- Exceptional analytical and critical thinking, willingness to challenge the status quo.
- Excellent interpersonal skills.
- Advanced written and oral communications.
- Self-motivator, team player and independent worker.
Experience and skills below are not required but highly preferred:
- Previous experience in a SOC or NOC, or PEN testing.
- Knowledge of specific security products such as Bot Management, DDoS mitigation and Web Application Firewalls (WAF).
- Awareness of the Zero Trust security model architecture.
- Worked with JIRA or other support desk tools in the past.
