Apply on Employer Site

Cloudflare · 1 week ago

Cloudforce One REACT Principal Consultant

Seattle, WA

Full-time

Hybrid

Mid, Senior Level

3+ years exp

Cloudflare is a mission-driven company focused on building a better Internet. They are seeking a talented Senior Manager, Incident Response to join their Cloudforce One organization, which is responsible for identifying and disrupting cyber threats. This role involves responding to security incidents and engaging with customers to mitigate malicious activity.

AnalyticsEnterprise SoftwareSecurityWeb Hosting

H1B Sponsor Likely

Responsibilities

Respond to customer security incidents in on-premises and cloud environments

Detect and disrupt cyber threat activity across customer networks and cloud environments

Engage with customers at all levels including Executive, VP, Director, and managerial levels

Serve an integral role in the discovery and analysis of cyber threat intrusions

Work alongside forensic analysts, threat researchers, detection engineers, and malware analysts to detect and mitigate malicious activity

Correlate threat actor activity across the customers environment

Qualification

Incident ResponseDigital ForensicsMalware AnalysisCloud Incident ResponseNetwork Forensic AnalysisReverse EngineeringComputer Forensic AnalysisNetwork OperationsCommunication SkillsPythonGolangMITRE ATT&CKNIST Cyber Security FrameworkWindows OSLinux OSMac OSAWSAzureGCP

Required

1-2 years of previous experience in cybersecurity

at least 1+ years in Digital Forensics or Incident Response

experience with hands-on forensic analysis in a Windows, Mac, and Linux environment

experience triaging malware using static or dynamic analysis on Windows, macOS, or UNIX-based platforms

correlating threat actor activity across the customers environment

excellent verbal and written communication skills

experience with incident response reports

reliably able to write simple scripts in Python or Golang

Bachelor's degree in Computer Science, Information Systems, Cybersecurity, related technical field, or equivalent training/practical experience

3+ years of previous experience in cyber security

2+ years of Incident Response experience

1+ years of customer-facing role

experience conducting or managing incident response investigations for organizations

background using a variety of forensic analysis tools in incident response investigations

strong knowledge of network protocols, network analysis tools like Bro/Zeek or Suricata

ability to perform analysis of associated network logs

ability to understand the capabilities of static and dynamic malware analysis

strong understanding of targeted attacks and able to create customized tactical and strategic remediation plans for compromised organizations

strong understanding of secure network architecture and strong background in performing network operations

knowledge in any of the following areas: AWS, Azure, GCP incident response methodologies

strong ability to communicate executive and/or detailed level findings to clients

ability to effectively communicate tasks, guidance, and methodology with internal teams

strong written and verbal communication skills

ability to establish and maintain strong working relationships with business groups

technical knowledge of common network protocols and design patterns including TCP/IP, HTTPS, FTP, SFTP, SSH, RDP, CIFS/SMB, NFS

familiarity with various cloud environments (AWS, Azure, O365, Google, Cloudflare)

understanding of MITRE ATT&CK and NIST Cyber Security Frameworks standards and requirements

in-depth understanding of Windows operating systems and general knowledge of Unix, Linux, and Mac operating systems

Preferred

Proficient in Python or Golang, capable of writing modular code that can be installed on a remote system

Proficient with Yara and writing rules to detect similar malware samples

Understanding of source code, hex, binary, regular expression, data correlation, and analysis such as network flow and system logs

Practical malware analysis experience with static, dynamic, and automated malware analysis techniques

Possess mid-level experience as a Malware Analyst able to reverse engineer various file formats and analyze complex malware samples

Reverse engineering experience with APT malware with an understanding of common infection vectors

Knowledgeable of current malware techniques to evade detection and obstruct analysis

Experience writing malware reports on unique and interesting aspects of malware

Experience with malware attribution

Experience with tracking and identifying threats through Indicator of Compromise (IOCs) pivoting and infrastructure enumeration

Familiarity with bash command line executables to conduct static analysis and investigate IOCs

Company

Cloudflare

Glassdoor3.3

Cloudflare is a web performance and security company that provides online services to protect and accelerate websites online.

Founded in 2009

San Francisco, California, USA

1001-5000 employees

http://www.cloudflare.com

H1B Sponsorship

Cloudflare has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)

Distribution of Different Job Fields Receiving Sponsorship

Represents job field similar to this job

Trends of Total Sponsorships

2025 (117)

2024 (115)

2023 (66)

2022 (98)

2021 (83)

2020 (37)

Funding

Current Stage

Public Company

Total Funding

$2.08B

Key Investors

Franklin TempletonFidelityUnion Square Ventures

2025-06-13Post Ipo Debt· $1.75B

2019-09-12IPO

2019-03-12Series E· $150M

Leadership Team

Matthew Prince

CEO & Co-Founder

Lee Holloway

Co-Founder & Lead Engineer

Recent News

BusinessCloud

Future plc, NCC, The Apprentice, JMX: the week’s best-read stories

2026-01-24

The New Stack

Why platform companies keep buying frontend framework teams

2026-01-23

Mercury News

Andreessen Horowitz makes a $3 billion bet that there’s no AI bubble

2026-01-20

Company data provided by crunchbase