Security Engineer – Talos Security Operations
Cisco
The successful applicant will be performing work in FedRAMP environments, and therefore, must be a U.S. Person (i.e. U.S. citizen, U.S. national, lawful permanent resident, asylee, or refugee). This position may also perform work that the U.S. government has specified can only be performed by a U.S. citizen on U.S. soil.
Application window is expected to close 10/21/2024.
What Youll Do:
Cisco Talos Intelligence Group is one of the largest commercial threat intelligence teams in the world. Talos defends Cisco customers against known and emerging threats, discovers new vulnerabilities in common software, and interdicts threats in the wild before they can further harm the internet at large.
As a Security Engineer on the Talos Security Operations Team, you will work to protect assets, systems, and intellectual property from threats and vulnerabilities. You will monitor network and system performance, configurations, and security posture in an automated fashion up and down the stack and across a broad range of innovative technologies.
The Talos team is an empowered and collaborative group. We work in an agile/DevOps manner with a strong focus on customer success and protecting Talos & Cisco. You will be positioned to have a significant impact within the group as you work closely with platform and data architects, software developers, system administrators, and data scientists/engineers.
Typical responsibilities include:
Collaborate with development teams to build, deploy and maintain the entire Talos development Suite (ClamAV, Snort, Talos Intelligence, etc.)
Contribute to design of security and compliance tests based on defined testing plans
Identify security gaps and build out automation to optimize ongoing testing and response
Analyze environment and identify potential risks for review by broader team
Interpret results from threat reports and work on sustainability solutions
Track remediation tasks across developers, product owners and business collaborators to ensure vulnerability management compliance
Keep current on industry trends and Cisco and Industry processes
Who You Are:
You are a self-starter who can be counted on to be consistent, thorough, and systematic in securing our platform and services. You tackle problems with a rational, logical approach and are comfortable working in a constantly evolving technical landscape. You are also motivated to learn new tools and technologies that impact the security posture of the environment.
Minimum Qualifications for the Role:
3 years professional experience in information security, with a focus on infrastructure, operating systems, and networking
Experience in incident response and/or vulnerability management
Experience with cloud security controls and/or securing cloud environments
Preferred Skills and Experience:
Familiarity with security frameworks such as FedRAMP or any other government-related framework
Experience working with DevOps practices and tools, integrating security into CI/CD pipelines
Confirmed understanding of web APIs, both from a security testing standpoint as well as using to build scripts/tools and perform analysis tasks
Experience with configuration management and automation tools (preferably Ansible and/or Terraform)
OS and application vulnerability scanning tools experience (e.g. Qualys, Tenable, Burp, ZAP, etc.)
Python (strongly preferred), bash, or other scripting for integration and automation
Automation of monitoring for security, using Prometheus, Splunk, DataDog, etc.
Experience securing, documenting, and ensuring security compliance for FedRAMP environments
Deployment & security support of both cloud and virtual environments (AWS, vSphere, etc)
Advanced degree in computer science or related technical field or equivalent experience
Cybersecurity-related certification(s), including CCSP, CISSP, CISM, CEH, etc.
Why Cisco Secure:
Were global, were adaptable, were diverse, and our security portfolio is as extensive as it is groundbreaking. Have you heard of Threat, Detection & Response, Zero Trust by Duo, Common Services Engineering, or Cloud & Network Security? Those are only a few of our product teams! The only thing were missing is YOU.
Join an enterprise security leader with a start-up culture, committed to driving innovation and giving you the opportunity to make an impact. We #InnovateToWin and we know were better together, thats why were dedicated to inclusivity, collaboration, and diversity in everything we do.
Were proud to be the Best Small and Mid-Size Enterprises Security Solution Cisco Secure continues to grow and evolve year after year with 100% of Fortune 100 Companies using our products, and were excited to see the new heights well reach with your passion for security, your customer focus, and your desire to change things up!
There are so many amazing reasons to join Cisco. Learn more [1] here!
References
Visible links
1. https://www.cisco.com/c/en/us/about/careers.html
Cisco is an Affirmative Action and Equal Opportunity Employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, gender, sexual orientation, national origin, genetic information, age, disability, veteran status, or any other legally protected basis.
Cisco will consider for employment, on a case by case basis, qualified applicants with arrest and conviction records.