DFIR Engineer

  • Location:
    Krakow, Poland
  • Area of Interest
    Engineer - Network
  • Job Type
  • Technology Interest
  • Job Id

Who We Are

Cisco’s Customer Experience (CX) organization is one of our fastest growing teams, and the CX Engineering & Product Incubation organization is redefining how Cisco delivers value to our customers & partners via our product portfolio. This team is charged with securing the offerings from CX Engineering & Product Incubation.

What You'll Do

You'll respond to security incidents and analyze and correlate log data with the assistance of teammates. You'll report findings to leadership and other internal Cisco teams while collaborating with engineers to enhance, improve, and modify enterprise and cloud (IaaS, SaaS) configurations based on investigations. Additionally, you'll provide recommendations and ongoing feedback for tools and other new technologies to support business objectives.

Who You'll Work With

You'll be part of an innovative security team redefining the way that Cisco protects data stored in the cloud. Our team is passionate about security and applies savvy risk-based thinking to build the best outcomes for our customers.

You'll work with other teams within CX Security, such as top skilled cloud operations, application, and platform engineers. You'll also work closely with other security professionals across Cisco to implement a new way to secure the Cloud.

Who You Are

  • You possess at least 5 years of security experience focusing on Incident Response and Forensic Analysis. 
  • You will have a detailed understanding of SIEM solutions and strong knowledge of cloud environments and security methodologies for operating in the cloud. 
  • You're passionate about security and you bring deep knowledge of industry standards (NIST, ISO, FedRamp, and others), vulnerability classifications, and attack vectors. 
  • You have knowledge of the MITRE ATT&CK Framework and Cyber Kill Chain and how they pertain to cloud and web applications. 
  • You have experience with scripting/code (REGEX search strings, bash scripting, Python parsing). 
  • You may have one or more security certifications, particularly those with a Cloud focus (CISSP, CCSP, AWS Cloud certifications, etc.).

You Are Highly Capable Of

Effectively communicating complex technical ideas to peers, executives, and customers. You're the perfect balance of advanced technical knowledge and strategic business acuity who is comfortable engaging with senior-level decision makers to convey business value of securing offerings. You show full dedication to customer satisfaction, out-of-the-box thinking, analytical reasoning, and creative ideas to solve complex issues. You have a keen ability to switch from high-level thinking to realistic and pragmatic execution.

Why Cisco?

#WeAreCisco, where each person is unique, but we bring our talents to work as a team and make a difference powering an inclusive future for all.

We embrace digital, and help our customers implement change in their digital businesses. Some may think we’re “old” (36 years strong) and only about hardware, but we’re also a software company. And a security company. We even invented an intuitive network that adapts, predicts, learns and protects. No other company can do what we do – you can’t put us in a box!

But “Digital Transformation” is an empty buzz phrase without a culture that allows for innovation, creativity, and yes, even failure (if you learn from it.)

Day to day, we focus on the give and take. We give our best, give our egos a break, and give of ourselves (because giving back is built into our DNA.) We take accountability, bold steps, and take difference to heart. Because without diversity of thought and a dedication to equality for all, there is no moving forward.

So, you have colorful hair? Don’t care. Tattoos? Show off your ink. Like polka dots? That’s cool. Pop culture geek? Many of us are. Passion for technology and world changing? Be you, with us!