Job
Description
You must evaluate diverse security risks in a fast-moving environment and be technically capable of suggesting and carrying out remediation, in accordance with Cisco's security policies and standards. You have experience implementing and maintaining security solutions in an enterprise environment. You must ensure compliance with relevant industry regulations and data protection standards, such as ISO27001, SOC2, GDPR, CCPA or other applicable requirements You must provide guidance and support to developers, data scientists, and other team members on security best practices and automation techniques. You have a In-depth knowledge in one or more security domains, including network security, cloud security, server security, and identity/access management. You possess a solid understanding of security vulnerabilities and remediation documented by organisations like OWASP, NIST, SANS, etc. You are familiar with Agile methodologies and CI/CD, as well as relevant expertise in all phases of application development across technology stacks. You demonstrate ability to articulate application vulnerabilities, defects, technical controls, risks, and other complex security matters with non-technical stakeholders. You should be able to understand complex architectures, make security decisions to enable business and help our stakeholders understand any risks involved. You have innovative thinking, analytical reasoning, and creative problem-solving abilities. You act strategically, diligent, highly motivated, and eager to make a major contribution to making Cisco more secure. Required Skills: Typically requires a bachelors degree in computer science or work equivalent of 10 or more years of experience. Operational experience in Security Operations Centres/Incident Command In-depth knowledge in Networking & Security preferably evidenced through certifications and hands-on experience in assessing security risks for large enterprise networks. Prior experience in information security consulting with the understanding of how to analyze InfoSec policies. Desirable Skills: Good understanding of Data Center, Virtualization, Cloud, Multi-tier deployment environments and their security operations Experience in threat modelling, risk assessment, and vulnerability management. Excellent problem-solving skills and the ability to analyse complex systems. Strong communication and collaboration skills to work effectively with cross-functional teams. Relevant certifications such as CISSP, CISM, or CCSP are desirable.
