Cyber Security - SIEM content developer

  • Location:
    Cairo Al Qahirah, Egypt
  • Area of Interest
    Customer Experience
  • Job Type
  • Technology Interest
    Internet of Everything, Networking, Security, Service Provider, Webex (Collaboration)
  • Job Id

While reading our job description, please remember - we understand from experience that not ticking every box on the skills sections stops many from applying. You should apply if you feel you are the right person for the job and have the aptitude to learn and deliver results 馃檪

  Strong understanding of Endpoint Detection and Response (EDR) concepts, with specific experience in implementing and managing Fidelis and HX platforms.

  Proficiency in writing code and queries for cybersecurity analysis and monitoring using Splunk, including knowledge of Splunk Search Processing Language (SPL).

  Experience in cyber threat detection, incident response, and endpoint security.

  In-depth knowledge of cybersecurity principles, practices, and best practices.

  Familiarity with scripting languages such as Python, as well as experience in creating custom scripts for automating tasks in a cybersecurity context.

  Ability to analyze and interpret security data, and communicate findings effectively to stakeholders.

  A strong troubleshooting background with the ability to diagnose and resolve issues related to EDR agents, including but not limited to configuration problems, connectivity issues, and false positives/negatives.

  Experience in writing and implementing detection rules within EDR platforms, including the ability to create custom rules tailored to specific threats and environments.

  Proficiency in working with YARA rules, including the capability to attach and integrate YARA rules within the EDR environment for enhanced threat detection and response.

  Proficiency in data integration within Splunk, including the ability to ingest and normalize data from various sources such as logs, databases, and APIs.

  Expertise in creating and optimizing data extraction processes using regular expressions (regex) within Splunk, enabling efficient and accurate extraction of relevant information from raw data.

  Experience with field extractions, event parsing, and transforming data into a format suitable for analysis and visualization within Splunk.

  Understanding of Splunk's props.conf and transforms.conf configurations to effectively extract, transform, and route data within the Splunk platform.

  Knowledge of Splunk's Common Information Model (CIM) for standardizing and normalizing data inputs to facilitate correlation and analysis across different data sources.

  Proficiency in scripting languages commonly used in a Red Hat environment, such as Bash scripting for automation and system administration tasks.

  Experience with Red Hat-specific tools and technologies, including Red Hat Enterprise Linux (RHEL) and its associated scripting and automation frameworks.

  Familiarity with package management and software deployment on Red Hat-based systems, including creating and maintaining scripts for efficient software installation and updates.

  Understanding of Red Hat's security features and best practices, including the ability to script and configure security measures within Red Hat environments.

Why Cisco

#WeAreCisco, where each person is unique, but we bring our talents to work as a team and make a difference powering an inclusive future for all.

We embrace digital, and help our customers implement change in their digital businesses. Some may think we鈥檙e 鈥渙ld鈥 (36 years strong) and only about hardware, but we鈥檙e also a software company. And a security company. We even invented an intuitive network that adapts, predicts, learns and protects. No other company can do what we do 鈥 you can鈥檛 put us in a box!

But 鈥淒igital Transformation鈥 is an empty buzz phrase without a culture that allows for innovation, creativity, and yes, even failure (if you learn from it.)

Day to day, we focus on the give and take. We give our best, give our egos a break, and give of ourselves (because giving back is built into our DNA.) We take accountability, bold steps, and take difference to heart. Because without diversity of thought and a dedication to equality for all, there is no moving forward.

So, you have colorful hair? Don鈥檛 care. Tattoos? Show off your ink. Like polka dots? That鈥檚 cool. Pop culture geek? Many of us are. Passion for technology and world changing? Be you, with us!

Message to applicants applying to work in the U.S. and/or Canada:

When available, the salary range posted for this position reflects the projected hiring range for new hire, full-time salaries in U.S. and/or Canada locations, not including equity or benefits. For non-sales roles the hiring ranges reflect base salary only; employees are also eligible to receive annual bonuses. Hiring ranges for sales positions include base and incentive compensation target. Individual pay is determined by the candidate's hiring location and additional factors, including but not limited to skillset, experience, and relevant education, certifications, or training. Applicants may not be eligible for the full salary range based on their U.S. or Canada hiring location. The recruiter can share more details about compensation for the role in your location during the hiring process.

U.S. employees have access to quality medical, dental and vision insurance, a 401(k) plan with a Cisco matching contribution, short and long-term disability coverage, basic life insurance and numerous wellbeing offerings. Employees receive up to twelve paid holidays per calendar year, which includes one floating holiday, plus a day off for their birthday. Employees accrue up to 20 days of Paid Time Off (PTO) each year and have access to paid time away to deal with critical or emergency issues without tapping into their PTO. We offer additional paid time to volunteer and give back to the community. Employees are also able to purchase company stock through our Employee Stock Purchase Program.

Employees on sales plans earn performance-based incentive pay on top of their base salary, which is split between quota and non-quota components. For quota-based incentive pay, Cisco typically pays as follows:

.75% of incentive target for each 1% of revenue attainment up to 50% of quota;

1.5% of incentive target for each 1% of attainment between 50% and 75%;

1% of incentive target for each 1% of attainment between 75% and 100%; and once performance exceeds 100% attainment, incentive rates are at or above 1% for each 1% of attainment with no cap on incentive compensation.

For non-quota-based sales performance elements such as strategic sales objectives, Cisco may pay up to 125% of target. Cisco sales plans do not have a minimum threshold of performance for sales incentive compensation to be paid.