Job Overview
The Senior Cyber Security Analyst will play a key leadership role within the Perimeter Security team, focusing on network perimeter defense for our public web, api, and partner platforms . The Senior Analyst will be responsible for identifying and prioritizing edge threats, managing cybersecurity incidents, performing advanced threat hunting, and maintaining system integrations. The role requires collaboration with Security Engineering, Application Engineering, Site Reliability(SRE), and infrastructure teams to safeguard the organization's application perimeter, leveraging tools such as Splunk, native database queries, CDN defensive systems, WAFs, and internal security tools.
Key Responsibilities
- Incident Response & Mitigation:
○ Lead responses to traffic and perimeter-related security incidents, ensuring the
accurate identification and prioritization of edge threats.○ Leverage CDN defenses, WAFs, and internal tooling to quickly implementeffective mitigations.○ Focus on reducing false positive rates by refining detection and mitigationtechniques to ensure defensive systems have minimal operational impact whilemaintaining robust security.○ Detect, analyze, and investigate incidents involving customer traffic interference,bot activity, scanners, and malicious actors.○ Utilize native database queries, Splunk, and other monitoring platforms to identifypatterns and anomalies indicative of security risks.○ Manage the prioritization and escalation of incidents based on severity, workingclosely with Web Engineering, SRE, and infrastructure teams to drive rapidmitigation.
- Threat Monitoring, Hunting & False Positive Reduction:
○ Proactively monitor traffic patterns using Splunk, internal databases, and other
security tools to identify and assess threats within cloud environments.○ Track and analyze threat actors, scanner activities, and IP reputation todistinguish between legitimate threats and benign anomalies, with a strongemphasis on reducing false positives.○ Investigate traffic anomalies to proactively mitigate operational impacts onengineering teams and ensure optimized security controls.○ Collaborate closely with Web Engineering and SRE teams to minimize customerimpact and refine mitigation processes for greater accuracy.
- System Integration & Maintenance:
○ Ensure seamless integration, patching, and ongoing maintenance of security
controls for cloud perimeter systems, including CDNs, WAFs, SigSci, andNGINX.○ Lead efforts to identify and address vulnerabilities related to API endpoints andcloud services.○ Maintain continuous monitoring of cloud-based perimeter security applications,ensuring resilience against emerging threats.
- Collaboration with Engineering and Operations Teams:
○ Partner with Security Engineering, Application Engineering, Web Engineering,
and SRE teams to embed security into new systems, endpoints, and integrationsfrom the start.○ Lead cross-functional efforts to optimize security controls, reduce alert noise, andminimize operational impacts while ensuring strong perimeter defenses.○ Document, communicate, and prioritize security incidents, recommended actions,and resolutions clearly to both technical and non-technical stakeholders.
- Reporting & Documentation:
○ Generate and present executive-level reports on traffic mitigation, includingmetrics such as sessions impacted by mitigation systems, financial savings frombot/attack prevention, and availability impacts due to traffic anomalies.○ Maintain comprehensive documentation on incidents, threat patterns, systemchanges, and mitigation strategies to support continuous improvement.○ Regularly report on efforts to reduce false positives and improve the operationalimpact of mitigation technologies.
Qualifications
- Exceptional proficiency in the English language, both written and verbal, with a
demonstrated ability to craft detailed, engaging, and audience-appropriate reports for
peers and leadership.
- Strong analytical skills with a proven ability to quickly identify and mitigate complex
threats in high-volume environments.
- Bachelor’s degree in Cybersecurity, Computer Science, or a related field, or equivalent
work experience.
- Minimum of 6 years of experience in cybersecurity or public application software
engineering, with a focus on CDN Management, cloud technologies and perimeter
security.
- Extensive experience in incident response, cloud-native threat hunting, and mitigation in public/private/hybrid cloud environments (e.g., AWS, Azure, GCP).
- Strong hands-on experience with traffic and threat monitoring tools such as Splunk,
native database queries, and cloud-native security solutions.
- Deep knowledge of CDNs, WAFs, firewalls, IDS/IPS, and API security, particularly in
cloud-based architectures.
- Proficiency with web and API systems such as NGINX, Kubernetes, Apache, Web
Servers, along with cloud-native edge defense platforms.
About Us
Fanatics is building a leading global digital sports platform. We ignite the passions of global sports fans and maximize the presence and reach for our hundreds of sports partners globally by offering products and services across Fanatics Commerce, Fanatics Collectibles, and Fanatics Betting & Gaming, allowing sports fans to Buy, Collect, and Bet. Through the Fanatics platform, sports fans can buy licensed fan gear, jerseys, lifestyle and streetwear products, headwear, and hardgoods; collect physical and digital trading cards, sports memorabilia, and other digital assets; and bet as the company builds its Sportsbook and iGaming platform. Fanatics has an established database of over 100 million global sports fans; a global partner network with approximately 900 sports properties, including major national and international professional sports leagues, players associations, teams, colleges, college conferences and retail partners, 2,500 athletes and celebrities, and 200 exclusive athletes; and over 2,000 retail locations, including its Lids retail stores. Our more than 22,000 employees are committed to relentlessly enhancing the fan experience and delighting sports fans globally.
About The Team
Fanatics Commerce is a leading designer, manufacturer, and seller of licensed fan gear, jerseys, lifestyle and streetwear products, headwear, and hardgoods. It operates a vertically-integrated platform of digital and physical capabilities for leading sports leagues, teams, colleges, and associations globally – as well as its flagship site, www.fanatics.com.Fanatics Commerce has a broad range of online, sports venue, and vertical apparel partnerships worldwide, including comprehensive partnerships with leading leagues, teams, colleges, and sports organizations across the world—including the NFL, NBA, MLB, NHL, MLS, Formula 1, and Australian Football League (AFL); the Dallas Cowboys, Golden State Warriors, Paris Saint-Germain, Manchester United, Chelsea FC, and Tokyo Giants; the University of Notre Dame, University of Alabama, and University of Texas; the International Olympic Committee (IOC), England Rugby, and the Union of European Football Associations (UEFA).At Fanatics Commerce, we infuse our BOLD Leadership Principles in everything we do:
- Build Championship Teams
- Obsessed with Fans
- Limitless Entrepreneurial Spirit
- Determined and Relentless Mindset
