Response Engineer, PhishGuard

Cloudflare, Inc

Quick summary

Work type
On-site
Location
Bengaluru, India
Posted
today

Market check

Salary context

How this pay compares to similar roles

Similar $178k
$120k most similar roles pay here $227k

This listing doesn't post a salary. Most similar roles pay $151,156–$205,375.

Based on 240 similar postings.

Employer

About Cloudflare, Inc

Cloudflare is a prominent cloud services and security company that provides content delivery network (CDN), DDoS mitigation, and Zero Trust security services to millions of internet properties.

Cloudflare, Inc currently has 133 open roles on FindRole.

Listed pay typically runs $234,000–$292,000 across 47 roles with salary data.

Most-posted roles

View all roles at Cloudflare, Inc

At a glance

TL;DR · Response Engineer, PhishGuard

As a Response Engineer for PhishGuard at Cloudflare’s INTERDICT team in Bengaluru, you will work closely with internal teams like Detection Engineering and PREDICT to identify and mitigate sophisticated email-borne threats such as Business Email Compromise (BEC) and vendor fraud. Your daily tasks include real-time monitoring of threat queues, investigating customer-reported submissions, and executing proactive threat hunts. You will also provide critical feedback to refine machine learning models and contribute to global intelligence repositories. Essential skills for this role include a degree in Computer Science or Information Security, 5+ years of experience analyzing complex cyber campaigns, expertise in email authentication protocols like SPF, DKIM, and DMARC, and hands-on use of AI LLM tools for automation. The ideal candidate will have strong verbal and written communication skills to translate technical threats into actionable business intelligence.

What you'll do

  • Conduct real-time monitoring of email threat queues to analyze sophisticated attacks flagged by automated systems.
  • Investigate customer-reported submissions and execute proactive threat hunts to identify emerging patterns and mitigate risks.
  • Provide critical feedback to Detection Engineering for updating machine learning models and enhancing global intelligence repositories.
  • Identify nuanced threat patterns by correlating technical telemetry with behavioral indicators, generating detailed threat dossiers.
  • Deliver direct crisis intervention and proactive phone notifications to customers regarding high-dollar BEC threats and insider risks.
  • Lead technical onboarding sessions for new customers, configuring internal system instances with bespoke detection rules and custom lists.

What we're looking for

  • 5+ years of experience tracking and analyzing complex cyber campaigns using technical indicators like domains, IP addresses, and email headers.
  • Proven expertise in analyzing, investigating, and defending against targeted phishing, invoice fraud, and Business Email Compromise (BEC) attacks.
  • Deep knowledge of core email authentication protocols including SPF, DKIM, and DMARC.
  • Hands-on experience with AI LLM tools for developing automations in daily analysis and productivity workflows.
  • Strong ability to communicate complex technical threats effectively to executive stakeholders in both verbal and written English.
  • Undergraduate degree in Computer Science, Information Security, or related field, or equivalent practical experience.

More like this

Similar roles

Cybersecurity Engineer, FedRAMP

Motorola Solutions

Remote 43 days ago $90,000$100,000
FedRAMP FISMA NIST RMF Nessus ACAS DB Protect WebInspect NMAP DISA STIGs SCC Python Go CI/CD Git AWS Azure GCP Kubernetes Terraform Docker Prometheus Grafana
Remote

Incident Response Analyst

Cloudflare, Inc

Bengaluru, India 7 days ago
AWS Azure GCP Cloudflare Python Go Yara MITRE ATT&CK NIST Cyber Security Framework BGP Anycast DNS TCP/IP GRE/IPsec JA3/JA4 fingerprinting bot detection behavioral traffic analysis API abuse investigations DDoS mitigation WAF rules L3/L4 DDox shunning real-time traffic filtering

Lead, PKI Security Engineer

Prudential Financial

Newark, NJ 30 days ago $133,600$220,400
Keyfactor Command Venafi EJBCA Digicert HashiCorp Vault AWS Azure Docker Kubernetes HSM appliances cloud KMS services Splunk CI/CD PKI architecture certificate lifecycle management monitoring tools containerization technologies

Senior Engineer, Cybersecurity - Threat Response

T-Mobile

Bellevue, WA +2 7 days ago $103,400$186,400
SIEM IDS/IPS EDR MITRE ATT&CK Cyber Kill Chain NIST SANS Incident Handling SOAR Python Perl Shell HTML PHP TCP/IP DNS routing switching firewalls network protocols digital forensics scripting security automation CI/CD