Cisco Software Engineer / Analyst AWS Incident Management 

United States, Georgia, Atlanta 

268490936

What You’ll Do

• Serve as the incident commander during security incidents.
• Investigate alerts in Security Information and Event Management (SIEM) systems.
• Cyber threat identification, analysis and resolution
• Manage queues for vulnerability management tickets, security event tickets, and project tasks.
• Participate in on-call rotation to ensure 24/7 coverage.
• Respond to engineering teams with detailed information on vulnerabilities and processes.
• Run Projects scopes independently with limited guidance.
• Build scripts or automation to aid investigations or reduce workload efforts.
• Conduct postmortems on security incidents to identify improvements.
• Evaluate and articulate risk exceptions clearly.
• Participate in audit interviews to provide insights and information.
• Provide evidence requests to compliance teams efficiently.
• Complete tasks aimed at operational improvements.
• Mentor and motivate other team members in cyber threat analysis principles and operational efficiencies
• Create and update documentation playbooks for consistent procedures.

Who You Are

Mandatory Qualifications:

• Bachelor's degree in computer science, engineering or a related discipline
• Minimum of 7+ years' experience in Security Operations role or relevant security position
• Experience working in queue work
• Strong experience with SIEMs (Preferred Splunk)
• Strong experience in leading Incidents
• Strong Investigation skills
• Firm understanding of vulnerability management
• Prior experience working on-call rotation

Preferred Qualifications:

You are motivated to work with multi-functional teams and drive things together to accomplish role objectives. You thrive in a fast-paced environment and seek ownership of large, critical projects. We're looking for people who enjoy crafting solutions to tackle problems rather than focusing on completing tasks as fast as possible.

• Experience working in Cloud infrastructures (AWS, GCP, OCI, etc.)
• Strong documentation skills
• Industry security certifications are a plus