Software Engineer / Analyst | AWS | Incident Management | PowerBI | Vulnerability Management |Threat Detection
Description For Software Engineer / Analyst | AWS | Incident Management | PowerBI | Vulnerability Management |Threat Detection
Cisco's Security Operations Team is seeking a Security Operations Engineer to strengthen their security posture. This role sits at the intersection of incident response, vulnerability management, and threat detection, protecting Cisco's product portfolio. The position requires a blend of technical expertise and strong interpersonal skills, emphasizing cross-collaborative work to achieve security goals.
The role involves leading security incident response as an incident commander, working with SIEM systems, managing vulnerability tickets, and participating in 24/7 on-call rotations. You'll be responsible for conducting thorough investigations, building automation scripts, and providing detailed security guidance to engineering teams. The position also includes conducting postmortems, handling audit requirements, and mentoring team members.
Cisco offers an inclusive work environment where employees from diverse backgrounds come together to power an inclusive future. The company pioneered hybrid work trends and provides extensive learning and development opportunities. With a strong focus on community involvement, Cisco offers 80 hours of paid volunteer time annually, and has 30 employee resource organizations fostering belonging and connection.
The ideal candidate should have 7+ years of security operations experience, strong SIEM expertise (particularly Splunk), and proven incident management capabilities. Experience with cloud infrastructures (AWS, GCP, OCI) is preferred, along with excellent documentation skills. The role offers comprehensive benefits including medical, dental, vision insurance, 401(k) with matching, and various time-off policies.
Responsibilities For Software Engineer / Analyst | AWS | Incident Management | PowerBI | Vulnerability Management |Threat Detection
- Serve as the incident commander during security incidents
- Investigate alerts in Security Information and Event Management (SIEM) systems
- Cyber threat identification, analysis and resolution
- Manage queues for vulnerability management tickets, security event tickets, and project tasks
- Participate in on-call rotation to ensure 24/7 coverage
- Respond to engineering teams with detailed information on vulnerabilities and processes
- Build scripts or automation to aid investigations
- Conduct postmortems on security incidents
- Evaluate and articulate risk exceptions
- Participate in audit interviews
- Create and update documentation playbooks
Requirements For Software Engineer / Analyst | AWS | Incident Management | PowerBI | Vulnerability Management |Threat Detection
- Bachelor's degree in computer science, engineering or related discipline
- Minimum of 7+ years' experience in Security Operations role
- Experience working in queue work
- Strong experience with SIEMs (Preferred Splunk)
- Strong experience in leading Incidents
- Strong Investigation skills
- Firm understanding of vulnerability management
- Prior experience working on-call rotation
- Experience working in Cloud infrastructures (AWS, GCP, OCI)
- Strong documentation skills
Benefits For Software Engineer / Analyst | AWS | Incident Management | PowerBI | Vulnerability Management |Threat Detection
- Medical insurance
- Dental insurance
- Vision insurance
- 401(k) plan with company match
- Paid time off
- Paid holidays
- Birthday day off
- Sick leave
- Volunteer time off
- Short and long-term disability coverage
- Basic life insurance
- Wellbeing offerings
