DoD Cloud Security Operations and Compliance Engineer (SecOps)

Apply
  • Location:
    RTP, North Carolina, US
  • Alternate Location
    Richardson, TX
  • Area of Interest
    Engineer - Software
  • Compensation Range
    136300 USD - 200700 USD
  • Job Type
    Professional
  • Technology Interest
    Security, Software Development
  • Job Id
    1416922

Who You'll Work With

Cisco SD-WAN Cloud Team (Previously, Viptela Cloud Team) builds, deploys, and handles the entire SD-WAN cloud infrastructure for enterprises and service providers. With the growth and expansion of SD-WAN, we are looking to expand our team in all aspects. We work with multiple clouds and collaborate with multiple teams including an engineering operation's team. You will work with the SD-WAN solution team, Cloud development, and test teams to secure orchestrated controllers and services for SD-WAN. This security and compliance role will have views across the complete lifecycle of the product to include ordering, provisioning, on-boarding, and operations.


Who You Are

As part of SDWAN Cloud Security Operations team, you will apply your skills and knowledge to make sure the SaaS environments (Department of Defense, U.S. Federal, and commercial) are secured in accordance with cloud security standard processes, operated with security in mind, and aligned with Cisco internal requirements, as well as external regulations. You will continuously assess and improve security posture, implement effective security monitoring systems, and collaborate on security controls reporting automation.

You will have direct responsibilities to ensure that active security monitoring of both commercial and U.S. Federal environments is undertaken on a continuous basis by leading all aspects of a vulnerability management program, participating in and leading risk analysis of findings, and ensuring that the SecOps team is performing at maximum efficiency globally. Ability and willingness to travel, as needed, in support of Global SecOps leadership role is required. This role will have a main focus on, and responsibility for, U.S. Department of Defense cloud solutions. Applicants should have a Top-Secret Clearance.

Required Skills

  • Have, or be able to achieve, Top-Secret Clearance
  • Must be a U.S. Citizen, U.S. Soil
  • 8+ years proven track record in cybersecurity
  • Consistent track record with the FedRAMP authorization process; first-hand experience with FedRAMP PMO
  • Must be proficient in coding in Python
  • Experience with vulnerability management and incident response processes
  • Knowledge of authentication protocols, authorization standards and crypto primitives (TLS, OAuth, SAML, JWT, etc.)
  • Firm grasp of SOC2, NIST 800-53, ISO 27001, ISO 27017, ISO 27018, C5, IRAP, and other key cloud certifications

Preferred Skills

  • Have a working history/knowledge of the DoD/DISA authorization processes
  • Have prior experience protecting cloud-based environments. 2+ years in a cloud security role preferred
  • Have clear experience with AWS services: EC2, VPC, KMS, ECS, EKS, S3, Route53, IAM, SSO GuardDuty, Secret Manager, CloudWatch
  • Practiced in CSDL, IL5, DSAWG / DISA PA
  • Clear experience building and maintaining compliance programs for Cisco product and cloud offerings.
  • Solid grasp of Tenable, Linux, Docker, Kubernetes
  • History of implementing enterprise security tools - SIEM, IDS/IPS, FIM, PAM
  • Familiarity with OWASP TOP-10, CIS Benchmarks, STIGs
  • Experience / knowledge eMASS, SNAPS, PPSM, C-ITP
  • Experience with Infrastructure as Code and Configuration Management tools.
  • Experience / knowledge of working with RESTFUL APIs and Webservices
  • Experience with alerting and monitoring tools.
  • Experience with common security scanning tools (e.g., Nessus, Tenable, Qualys, IBM AppScan, Burp Suite, etc.)
  • Understanding of software development lifecycle models, as well as the approaches to implement the AWS Well-Architected Framework.
  • Knowledge of Ansible and Terraform
  • Certification (AWS Security Specialty, GCIH - GIAC Certified Incident Handler, (ISC)2 CCSP – Certified Cloud Security Professional) is a plus

3 reasons to apply

  1. You have a passion for automating the easy things in life—and the hard ones too!
  2. You thrive when things are ambiguous, and desire to strategically explore problem spaces without having a clear goal. Where you're going, you don't need roads!
  3. You care about chipping in to a collaborative culture and being responsible for providing technical leadership.

Why Cisco

At Cisco, everyone brings outstanding talents to work as a team and make a difference. Yes, our technology changes how the world works, lives, plays, and learns, but our edge comes from our people. We connect everything – people, processes, data, and things – and use those connections to improve our world. We innovate everywhere - From launching a new era of networking that adapts, learns, and protects to building Cisco Services that accelerate businesses and business results. Our technology powers entertainment, retail, healthcare, education and more – from Smart Cities to your everyday devices. We benefit everyone - We do all of this while aspiring for a culture that empowers every person to be the difference at work and in our communities. Colorful hair? Don’t care. Tattoos? Show off your ink. Like polka dots? That’s cool. Pop culture enthusiast? Many of us are. Be you, with us! #WeAreCisco

Message to applicants applying to work in the U.S. and/or Canada:

When available, the salary range posted for this position reflects the projected hiring range for new hire, full-time salaries in U.S. and/or Canada locations, not including equity or benefits. For non-sales roles the hiring ranges reflect base salary only; employees are also eligible to receive annual bonuses. Hiring ranges for sales positions include base and incentive compensation target. Individual pay is determined by the candidate's hiring location and additional factors, including but not limited to skillset, experience, and relevant education, certifications, or training. Applicants may not be eligible for the full salary range based on their U.S. or Canada hiring location. The recruiter can share more details about compensation for the role in your location during the hiring process.

U.S. employees have access to quality medical, dental and vision insurance, a 401(k) plan with a Cisco matching contribution, short and long-term disability coverage, basic life insurance and numerous wellbeing offerings. Employees receive up to twelve paid holidays per calendar year, which includes one floating holiday, plus a day off for their birthday. Employees accrue up to 20 days of Paid Time Off (PTO) each year and have access to paid time away to deal with critical or emergency issues without tapping into their PTO. We offer additional paid time to volunteer and give back to the community. Employees are also able to purchase company stock through our Employee Stock Purchase Program.

Employees on sales plans earn performance-based incentive pay on top of their base salary, which is split between quota and non-quota components. For quota-based incentive pay, Cisco typically pays as follows:

.75% of incentive target for each 1% of revenue attainment up to 50% of quota;

1.5% of incentive target for each 1% of attainment between 50% and 75%;

1% of incentive target for each 1% of attainment between 75% and 100%; and once performance exceeds 100% attainment, incentive rates are at or above 1% for each 1% of attainment with no cap on incentive compensation.

For non-quota-based sales performance elements such as strategic sales objectives, Cisco may pay up to 125% of target. Cisco sales plans do not have a minimum threshold of performance for sales incentive compensation to be paid.

Share

Apply