At F5, we strive to bring a better digital world to life. Our teams empower organizations across the globe to create, secure, and run applications that enhance how we experience our evolving digital world. We are passionate about cybersecurity, from protecting consumers from fraud to enabling companies to focus on innovation. 
 

Everything we do centers around people. That means we obsess over how to make the lives of our customers, and their customers, better. And it means we prioritize a diverse F5 community where each individual can thrive.

About the Role

Join a high-impact team using cutting-edge security technologies and practices to protect F5’s enterprise and product environments. As a Senior Security Engineer / Threat Hunter, you will lead strategic initiatives, develop technical solutions, and drive continuous improvements in our cyber defense capabilities. You’ll be a key player in threat detection, incident response, and proactive threat hunting across cloud and on-prem environments.

Key Responsibilities

• Lead threat hunting engagement for Global Cyber Security Detections and Investigations team across enterprise and product environments.
• Lead and guide team members in threat hunting practices and up skilling efforts.
• Perform proactive threat hunting and cloud/host forensics (AWS, Azure, GCP, Linux, Windows, macOS).
• Conduct technical security assessments, including static/dynamic analysis and threat modeling.
• Automate manual processes to reduce operational toil and improve response times.
• Collaborate with SRE, Architecture, and Operations teams to implement security standards and controls.
• Utilize security tooling (i.e., EDR, DLP, vulnerability scanners, posture management).
• Advise stakeholders on secure design principles and security best practices.
• Maintain and improve security runbooks and documentation.
• Stay current on emerging threats, CVEs, and industry trends applying to hunting practices
• Follow F5 information security policies and protect information assets from unauthorized access, disclosure, modification, destruction or interference
• Performs other related duties as assigned
• Follow the F5 behaviors

Required Skills & Experience

• 8+ years in cybersecurity, including threat hunting, incident response, and security engineering.
• Strong experience with SIEM (e.g., Falcon, Splunk, Sentinel), SOAR, and EDR platforms.
• Deep understanding of MITRE ATT&CK framework and threat actor TTPs.
• Apps Proficiency in scripting or utilizing automation tools (Python, PowerApps, Power Automoate) for automation and tooling.
• Hands-on experience with cloud security (AWS, Azure, GCP) and infrastructure as code (Terraform, Ansible).
• Solid grasp of UNIX/Linux systems, networking protocols, and firewall architecture.
• Experience with vulnerability management, penetration testing, and secure architecture design.
• Excellent communication skills with ability to interface across technical and non-technical stakeholders.

Preferred Qualifications

• Certifications: GCIH, GCFR, CEH, or equivalent SANS training.
• Experience with ServiceNow, ADO or similar ticketing systems.
• Familiarity with container orchestration (Kubernetes, Docker) and CI/CD pipelines.
• Exposure to FedRamp, eDiscovery, and DLP casework.
• Strong interpersonal skills and a collaborative mindset.
• Ability to lead and mentor junior engineers.
• Ability to drive strategic long-term initiatives with cross org leaders.
• Ability to effectively present to our executive leadership

Work Environment

• Full-time position with potential for shift flexibility.
• Requires scheduled on-call work outside core business hours (early mornings, evenings, weekends, holidays) shared with the larger team.
• Duties performed at a desk or computer station; remote collaboration across time zones.

The Job Description is intended to be a general representation of the responsibilities and requirements of the job. However, the description may not be all-inclusive, and responsibilities and requirements are subject to change.

F5 maintains broad salary ranges for its roles in order to account for variations in knowledge, skills, experience, geographic locations, and market conditions, as well as to reflect F5’s differing products, industries, and lines of business. The pay range referenced is as of the time of the job posting and is subject to change.

You may also be offered incentive compensation, bonus, restricted stock units, and benefits. More details about F5’s benefits can be found at the following link: https://www.f5.com/company/careers/benefits. F5 reserves the right to change or terminate any benefit plan without notice. 

Please note that F5 only contacts candidates through F5 email address (ending with @f5.com) or auto email notification from Workday (ending with f5.com or @myworkday.com).

Equal Employment Opportunity

It is the policy of F5 to provide equal employment opportunities to all employees and employment applicants without regard to unlawful considerations of race, religion, color, national origin, sex, sexual orientation, gender identity or expression, age, sensory, physical, or mental disability, marital status, veteran or military status, genetic information, or any other classification protected by applicable local, state, or federal laws. This policy applies to all aspects of employment, including, but not limited to, hiring, job assignment, compensation, promotion, benefits, training, discipline, and termination.  F5 offers a variety of reasonable accommodations for candidates. Requesting an accommodation is completely voluntary. F5 will assess the need for accommodations in the application process separately from those that may be needed to perform the job. Request by contacting accommodations@f5.com.