Job
Description
Meet the Team Cisco InfoSec seeks an Information Security Engineer to join some of the industry's brightest minds in Network Security, managing access decisions based on Cisco's security policies, assessment of security risks at various PINs in one of the world's largest networks. In this role, you will gain insight on the detailed functionality of how security is handled at various network layers, through administrative, technical and physical controls. The ideal applicant will have professional understanding of Network Security, Cloud Security, Vulnerability Management, and Security Incident Detection and Response. The candidate should be able to comprehend business requirements, assess and communicate relevant risks, and implement suitable controls in accordance with policies, standards, and guidelines. Your Impact As part of the global infosec organization, this role's responsibilities include establishing and preserving relationships with internal business clients, IT, and engineering management worldwide. In addition, the candidate will oversee projects, collaborate with different functional units within the security organization, and find areas of continuous improvement to maximize operational efficiency. As part of a global organization primarily based out of the US, the candidate may be expected to work outside of normal business hours on a weekly basis. You must evaluate diverse security risks in a fast-moving environment and be technically capable of suggesting and carrying out remediation, in accordance with Cisco's security policies and standards. You must a Foundational knowledge in one or more security domains, including network security, cloud security, server security, and identity/access management. You have experience implementing and maintaining security solutions in an enterprise environment. You have a validated foundation of Secure Development Lifecycle (SDL) and a working knowledge of various SDL requirements. You are familiar with Agile methodologies and CI/CD, as well as relevant expertise in all phases of application development across technology stacks. You possess a solid understanding of security vulnerabilities and remediation documented by organizations like OWASP, NIST, SANS, etc. You demonstrate good communication skills and can articulate application vulnerabilities, defects, technical controls, risks, and other complex security matters with non-technical stakeholders. You should be able to understand complex architectures, make security decisions to enable business and help our stakeholders understand any risks involved. You have innovative thinking, analytical reasoning, and creative problem-solving abilities. You act strategically, diligent, highly motivated, and eager to make a major contribution to making Cisco more secure. Minimum Qualifications: Strong knowledge of Data Center, Virtualization, Cloud, Multi-tier deployment environments and their security operations Strong knowledge in Networking & Security preferably evidenced through certifications and hands-on experience in assessing security risks for large enterprise networks. Systems administration skills with an information security background (Good understanding of Unix and windows environment). Preferred Qualifications Typically requires a bachelors degree in computer science or work equivalent of 3+ or more years of experience. Prior experience in information security consulting with the understanding of how to analyze InfoSec policies. Preferred certification(s) CISSP/CISM/CCNA/CCNA Security/CCNP.
