Who We Are

The Security Operations Team is looking for a Security Operations Engineer to uphold security posture for Cisco. Security Operations focus on three pillars: Incident Response, Vulnerability Management, Threat Detection. We deliver a robust security program to help protect a portfolio of products. Deep technical, interpersonal, and relationship building skills are traits of successful employees. We emphasize the importance of working cross-collaboratively to achieve our goals and drive decisions.

What You’ll Do

You are motivated to work with multi-functional teams and drive things together to accomplish role objectives. You thrive in a fast-paced environment and seek ownership of large, critical projects. We're looking for people who enjoy crafting solutions to tackle problems rather than focusing on completing tasks as fast as possible.

Serve as the incident commander during security incidents.Manage queues for vulnerability management tickets, security event tickets, and project tasks.Participate in on-call rotation to ensure 24/7 coverage.Investigate alerts in Security Information and Event Management (SIEM) systems.Respond to engineering teams with detailed information on vulnerabilities and processes.Run Projects scopes independently with limited guidance.Build scripts or automation to aid investigations or reduce workload efforts.Conduct postmortems on security incidents to identify improvements.Assess the security implications of network change requests.Evaluate and articulate risk exceptions clearly.Participate in audit interviews to provide insights and information.Provide evidence requests to compliance teams efficiently.Complete tasks aimed at operational improvements.Create and update documentation playbooks for consistent procedures.Who You Are

Minimum Qualifications

Bachelor's degree in computer science, engineering or a related disciplineMinimum of 3+ years' experience in Security Operations role or relevant security positionExperience working in queue workStrong experience with SIEMs (Preferred Splunk)Strong experience in leading Incidents.Preferred Qualifications:

You have proven experience in the security field performing investigations, evaluating alerts, working and advising security best practices in cloud environments, running incidents as an incident commander. You are passionate about the opportunity to be part of an all-star team that is integral to security.

Strong Investigation and documentation skillsFirm understanding of vulnerability managementPrior experience working on-call rotationExperience working in Cloud infrastructures (AWS, GCP, OCI, etc.)Industry security certifications are a plusWhy Cisco

#WeAreCisco where every individual brings their unique skills and perspectives together to pursue our purpose of powering an inclusive future for all.

Our passion is connection—we celebrate our employees' diverse set of backgrounds and focus on unlocking potential. Cisconians often experience one company, many careers where learning and development are encouraged and supported at every stage. Our technology, tools, and culture pioneered hybrid work trends, allowing all to not only give their best, but be their best.

We understand our outstanding opportunity to bring communities together and at the heart of that is our people. One-third of Cisconians collaborate in our 30 employee resource organizations, called Inclusive Communities, to connect, foster belonging, learn to be informed allies, and make a difference. Dedicated paid time off to volunteer—80 hours each year—allows us to give back to causes we are passionate about, and nearly 86% do!

Our purpose, driven by our people, is what makes us the worldwide leader in technology that powers the internet. Helping our customers reimagine their applications, secure their enterprise, transform their infrastructure, and meet their sustainability goals is what we do best. We ensure that every step we take is a step towards a more inclusive future for all. Take your next step and be you, with us!