(sr.) Security Software Engineer
Cisco
What You'll Do
As a Cloud Security Engineer, you will collaborate with the BISO (our Security & Compliance leader) for the Cisco XDR solution. This unique and dynamic opportunity allows you to collaborate with development and operations teams across multiple cloud environments that form the backbone of a large SaaS platform. You will play a critical role in developing security automation solutions as well as securing the platform and ensuring its compliance with internal policies and various external regulatory frameworks.
This role offers significant exposure to all aspects of security, including cloud infrastructure protection, application-level defenses, data safeguarding, and network security. Your responsibilities will involve designing and implementing automation solutions to improve security operations and streamline compliance efforts. You will have the opportunity to influence security architecture decisions, contribute to process optimization, and work with emerging technologies. This highly collaborative role requires a strong blend of technical expertise and effective communication skills to maintain a secure, compliant, and resilient SaaS offering.
Who You'll Work With
You will work closely with the XDR BISO (our Security & Compliance leader) to author high quality code to achieve security automation outcomes, and to get up to speed in all relevant areas. You'll collaborate with XDR development, operations and quality assurance teams helping them secure the offer. You will also work with Cisco central security and compliance organizations, external auditors, penetration testing teams (internal and external), and gain exposure to other relevant functions here at Cisco.
Who you are
- Self-starter with a passion for security that is capable of optimally working with various groups, facilitating discussions, building concensus, prioritizing, and building credible relationships.
- Detail oriented individual who enjoys the challenge of multi-tasking and keeping up to date with an evolving landscape.
- Technically skilled individual who can take projects from start to finish.
Minimum Qualifications
- 4 + years of proven experience either in a security engineering, or software engineering or security operations role (e.g., Python, Java, Go, Javascript, or Clojure programming experience)
- Foundational knowledge of security principles, including concepts (not limited to) such as authentication, authorization, encryption, and vulnerability management, with a willingness to deepen expertise in cloud and application security.
- Experience with AWS with in-depth understanding of their service catalogs
Preferred Qualifications
- Experience with penetration testing, threat modeling or security architecture design/review
- Excellent communication and presentation skills with the ability to speak to both business and technical audiences with brevity and clarity.
- security offerings and automation
- Experience in implementing cloud security controls and auto-remediation architecture
- Experience with SIEM solutions like splunk
- Experience with XDR
- Experience with additional cloud platforms such as GCP and Azure with in-depth understanding of their service catalogs, security offerings and automation opportunities
- SOC 2, ISO 27001 evidence collection, audit support
- Unit test, CI/CD pipelines
- SQL and NoSQL databases
- Familiarity with OWASP
Why Cisco
#WeAreCisco, where each person is unique, but we bring our talents to work as a team and make a difference powering an inclusive future for all.
We embrace digital, and help our customers implement change in their digital businesses. Some may think we’re “old” (36 years strong) and only about hardware, but we’re also a software company. And a security company. We even invented an intuitive network that adapts, predicts, learns and protects. No other company can do what we do – you can’t put us in a box!
But “Digital Transformation” is an empty buzz phrase without a culture that allows for innovation, creativity, and yes, even failure (if you learn from it.)
Day to day, we focus on the give and take. We give our best, give our egos a break, and give of ourselves (because giving back is built into our DNA.) We take accountability, bold steps, and take difference to heart. Because without diversity of thought and a dedication to equality for all, there is no moving forward.
So, you have colorful hair? Don’t care. Tattoos? Show off your ink. Like polka dots? That’s cool. Pop culture geek? Many of us are. Passion for technology and world changing? Be you, with us! "
When available, the salary range posted for this position reflects the projected hiring range for new hire, full-time salaries in U.S. and/or Canada locations, not including equity or benefits. For non-sales roles the hiring ranges reflect base salary only; employees are also eligible to receive annual bonuses. Hiring ranges for sales positions include base and incentive compensation target. Individual pay is determined by the candidate's hiring location and additional factors, including but not limited to skillset, experience, and relevant education, certifications, or training. Applicants may not be eligible for the full salary range based on their U.S. or Canada hiring location. The recruiter can share more details about compensation for the role in your location during the hiring process.
U.S. employees have access to quality medical, dental and vision insurance, a 401(k) plan with a Cisco matching contribution, short and long-term disability coverage, basic life insurance and numerous wellbeing offerings. Employees receive up to twelve paid holidays per calendar year, which includes one floating holiday, plus a day off for their birthday. Employees accrue up to 20 days of Paid Time Off (PTO) each year and have access to paid time away to deal with critical or emergency issues without tapping into their PTO. We offer additional paid time to volunteer and give back to the community. Employees are also able to purchase company stock through our Employee Stock Purchase Program.
Employees on sales plans earn performance-based incentive pay on top of their base salary, which is split between quota and non-quota components. For quota-based incentive pay, Cisco typically pays as follows:
.75% of incentive target for each 1% of revenue attainment up to 50% of quota;
1.5% of incentive target for each 1% of attainment between 50% and 75%;
1% of incentive target for each 1% of attainment between 75% and 100%; and once performance exceeds 100% attainment, incentive rates are at or above 1% for each 1% of attainment with no cap on incentive compensation.
For non-quota-based sales performance elements such as strategic sales objectives, Cisco may pay up to 125% of target. Cisco sales plans do not have a minimum threshold of performance for sales incentive compensation to be paid.
