Cisco TD & R Software Engineer XDR 

United States, North Carolina, Cary 

90589574

As a Cloud Security Engineer, you will play a pivotal role in securing and ensuring compliance for the Cisco XDR platform. You will work closely with the Director of Security & Compliance to get up to speed in all areas, and to author high quality code to achieve security automation outcomes. You'll collaborate with XDR development, operations and quality assurance teams helping them secure the offer. You will also interface with Cisco central security and compliance organizations, external auditors, penetration testing teams (internal and external), participate in blue & purple team exercises, meet with corporate counsel, and chat with data privacy architects.

You will be entrusted with the crucial task of securing the platform and ensuring its compliance with both internal policies and various external regulatory frameworks.

• Collaborate with cross-functional teams to secure cloud environments and ensure compliance with internal and external standards.
• Influence security architecture decisions and contribute to process improvements.
• Author high-quality code to automate security outcomes.

• +5 years of experience in security engineering or security operations roles. in a professional environment
• +2 years In-depth experience with AWS, including service catalogs, security offerings, and automation. Specifically in implementing cloud security controls and developing auto-remediation solutions.
• Proficiency in programming languages such as Python, Java, Go, JavaScript, or Clojure.
• Foundational knowledge of security principles, including concepts such as authentication, authorization, encryption, and vulnerability management, with a willingness to deepen expertise in cloud and application security

• Experience with SIEM solutions like Splunk.
• Familiarity with XDR.
• Experience with additional cloud platforms, such as GCP and Azure, including their service catalogs and security offerings.
• Experience with SOC 2 and ISO 27001 evidence collection and audit support.
• Experience with penetration testing, threat modeling, or security architecture design/review.
• Familiarity with unit testing and CI/CD pipelines.
• Experience with SQL and NoSQL databases.
• Familiarity with OWASP.
• Strong understanding of security and compliance standards, with at least one relevant certification (e.g., CISSP, CISM, or similar).
• At least 2 years of experience working on security and compliance for proprietary products, ensuring adherence to internal and external standards.