The successful applicant will be performing work in FedRAMP environments, and therefore, must be a U.S. Person (i.e. U.S. citizen, U.S. national, lawful permanent resident, asylee, or refugee).
As a Security Engineer on the Talos Security Operations Team, you will work to protect assets, systems, and intellectual property from threats and vulnerabilities. You will monitor network and system performance, configurations, and security posture in an automated fashion up and down the stack and across a broad range of innovative technologies.
Typical responsibilities include:
Collaborate with development teams to build, deploy and maintain the entire Talos development Suite (ClamAV, Snort, Talos Intelligence, etc.)
Contribute to design of security and compliance tests based on defined testing plans
Identify security gaps and build out automation to optimize ongoing testing and response
Analyze environment and identify potential risks for review by broader team
Interpret results from threat reports and work on sustainability solutions
Track remediation tasks across developers, product owners and business collaborators to ensure vulnerability management compliance
Keep current on industry trends and Cisco and Industry processes
Minimum Qualifications for the Role:
3+ years professional experience in information security, with a focus on infrastructure, operating systems, and networking
Experience in incident response and/or vulnerability management
Experience with cloud security controls and/or securing cloud environments
Familiarity with security frameworks such as FedRAMP or any other government-related framework
Experience working with DevOps practices and tools, integrating security into CI/CD pipelines
Confirmed understanding of web APIs, both from a security testing standpoint as well as using to build scripts/tools and perform analysis tasks
Experience with configuration management and automation tools (preferably Ansible and/or Terraform)
OS and application vulnerability scanning tools experience (e.g. Qualys, Tenable, Burp, ZAP, etc.)
Python (strongly preferred), bash, or other scripting for integration and automation
Automation of monitoring for security, using Prometheus, Splunk, DataDog, etc.
Experience securing, documenting, and ensuring security compliance for FedRAMP environments
Deployment & security support of both cloud and virtual environments (AWS, vSphere, etc)
Advanced degree in computer science or related technical field or equivalent experience
Cybersecurity-related certification(s), including CCSP, CISSP, CISM, CEH, etc.