המקום בו המומחים והחברות הטובות ביותר נפגשים
Cisco Senior Cybersecurity Threat Investigator United States, Georgia, Atlanta 912196370
29.04.2025
The application window is expected to close on: 4/30/2025.
Job posting may be removed earlier if the position is filled or if a sufficient number of applications are received.
The successful applicant will be performing work in FedRAMP High or IL-5 environments, and therefore, must be a U.S. Person (i.e. U.S. citizen, U.S. national, lawful permanent resident, asylee, or refugee). This position may also perform work that the U.S. government has specified can only be performed by a U.S. citizen on U.S. soil.
ative body.
Your Impact
This is an opportunity to contribute to a highly transparent security operations function with global impact upon Cisco, its diversified business, business units, service ventures, partners, and customers. We are looking for a motivated and experienced security engineer who thinks like an attacker but has the heart of a defender. Our investigators thrive on understanding complex systems and how they can be broken. Additionally, candidates with diverse technical backgrounds such as system, network, and database administrators make phenomenal security investigators, whether they realize it or not. As a great candidate for this role, you have a strong interest in complex problem solving, with an ability to challenge assumptions and consider alternative perspectives. You are forward-thinking and act as the voice of reason and calm during high-stakes situations, while operating exceedingly well in a strong, tight-knit, collaborative team environment.
- Respond to and investigate computer security incidents, assessing the scope of impact and guiding the teams involved in the investigation to containment and resolution.
- Communicate incident root cause analysis with management and partner teams.
- Research and deploy new technologies as needed to support business objectives related to security detection, threat hunting, forensics and response.
- Collaborate with data source SMEs in SVIC and InfoSec to enhance, improve, or modify cloud-based security detection and response.
- Continuously strive to improve processes for high-accuracy attack detection and response as attacker tactics and techniques evolve, setting up our SOC Analysts for success.
- Apply and cultivate your expertise in the subject areas you are passionate about, to guide SVIC towards innovative ways of doing things.
- Participate in a follow-the-sun on-call rotation.
- As a senior member of SVIC, guide and mentor our security analysis / detection engineers.
Minimum Qualifications:
- 7+ years' experience in technical roles in Information Technology and / or Information Security or Cybersecurity.
- Experience in networking and core Internet protocols (e.g., TCP/IP, DNS, SMTP, HTTP, and distributed networks).
- Experience with Linux/UNIX systems and the standard methodologies for deploying applications to those stacks.
- Experienced in data querying and data analysis.
- Experience working with third party cloud and virtualization platforms, e.g. AWS, GCP, Azure, VMware
Preferred Qualifications:
- Reasonable scripting/coding abilities to effectively recognize and implement automation opportunities.
- Familiarity with Windows Server and Active Directory administration
We tackle whatever challenges come our way. We have each other’s backs, we recognize our accomplishments, and we grow together. We celebrate and support one another – from big and small things in life to big career moments. And giving back is in our DNA (we get 10 days off each year to do just that).
משרות נוספות שיכולות לעניין אותך
