Cisco Cloud Security Engineer 

India, Karnataka, Bengaluru 

441454

What You’ll Do

• Creating, updating, and maintaining threat models for a wide variety of software projects
• Manual and Automated Secure Code Review, primarily in Java, Python and Go
• Adversarial security analysis using cutting-edge tools to augment manual effort
• Assess critical and high security findings and work with engineering teams to remediate
• Develop and update IR and BC/DR plans and run tabletop exercises to ensure readiness
• Assess perimeter security posture and develop and implement appropriate defensive measures following a layered security approach
• Contribute to the assessment, remediation and response to active and potential attacks against the infrastructure
• Security training and outreach for internal development teams

• · Provides technical interface between development, operation and the Cisco security organization
• · Develop automated security and compliance capabilities in support of DevOps processes in a large-scale Cloud computing environment
• · Scoping, planning, provisioning access, generating reports for penetration tests or other internal purple teaming exercises
• · Assess and evaluate security risks. Ensure mitigating controls in place in sufficient measure
• · In depth experience with security tools such as Wiz.io, Tenable, Blackduck, Solis, SonarQube, TruffleHog, Coverity, AWS Inspector, GitGuardian
• · Demonstrative knowledge of PKI, certificates, cryptography, secrets management and associated tools such as CyberArk and Vault
• · Hands on experience with setting up secure environments using foundational security concepts to protect against perimeter and internal attack scenrarios

• · Automate security processes –
  • o Centralized patching and asset tagging
  • o Centralized Secrets management and key rotation
  • o Centralized inventory management for all asset classes including users and privileges
  • o Automate API endpoint scans – authenticated and unauthenticated
• · Build secure CI/CD pipeline to include SAST/DAST scans, hardcoded secrets detection, third party software compliance and vulnerability assessment and SBOM

Compliance:

• · Create and maintain boundary, network, dataflow and system architecture diagrams
• · Strong familiarity with various market access certifications and control frameworks such as FedRAMP, Soc2, ISO etc
• · Coordinate with teams on gap analysis with respect to market access certification framework and help drive remediation and implementation of relevant security controls
• · Provide and articulate responses to architecture and process related queries, both internal and external with relevant artifacts

• We Are Cisco