Senior IT Security Operations Engineer 1243999

  • Location:
    RTP, North Carolina, US
  • Area of Interest
    Information Technology
  • Job Type
  • Technology Interest
  • Job Id

In Cisco IT, we have a unique opportunity- we actually get to use the technology we create!

We are Innovators. We drive innovation to propel business transformation while maintaining operational excellence.

We are Accelerators. We accelerate digital solutions to generate cost savings and productivity gains for enterprise growth and success.

We are Transformers. As customer zero, we transform the customer experience by being our own customer first.

With agility, quality, and security, we continuously deliver business outcomes. 

Join us in delighting our customers and empowering our employees. Apply today!

What You’ll Do

Cisco Engineering Infrastructure Services is looking for an exceptional Senior IT Engineer to join our Security Operations team. This focus includes incident response and analytics, evolution of access management, architecture and adoption of data security capabilities, and general security oversight and advisory activities for datacenter storage and hosting operations. You will partner with IT service providers, internal customers, and the organization’s multi-functional teams to plan and execute on our strategies.

This role is ideal for a passionate, hands-on leader with Unix-focused SysAdmin experience and an eye for scalable security. You’ll be guiding the enterprise in improving legacy enterprise security standards, influencing other high impact teams with diverse business goals, and driving change while improving business services and taking their security to the next level. This team member will be well versed and capable in enterprise-scale IT infrastructure technologies and can coordinate effectively with an organization that is sensitive to the needs of existing client requirements while embracing innovative technologies.

Responsibilities include (but not limited to):

  • Implement ongoing security improvements for foundational infrastructure stack and administrative environment for the Security and IT Operations teams
  • Maintain familiarity with industry standard information security concepts and best practices, and a strong commitment to learn and apply new concepts
  • Stewardship over internal access management and entitlement systems and workflows
  • Identify requirements to improve the general security posture of the internal IT infrastructure
  • Collaborate with Infosec and multiple IT services teams to align and implement the security of the client-facing services consumed by their internal customers – includes hands-on guidance and compliance enforcement
  • Apply and adapt industry standard metrics and frameworks to existing legacy infrastructure and internal measurements
  • Collaborate to securely develop and support internal security/administrative tools and reports
  • Lead POC and testing for technologies or tools required for support of the environment

Who You'll Work With

The Engineering Security Operations team is a multifunctional security leadership and operations team within the Engineering Infrastructure Services organization. We serve internal Engineering clients who design and code Cisco’s product across the globe. We are the first point of contact for all aspects of securing multiple global service stacks that blend several decades’ worth of legacy and cutting-edge technologies, and often we are the first to see a security gap before it becomes a problem or breach. The team is fast-moving, fun, and dedicated to solving hard problems and “doing the right thing” (not necessarily the easy thing!) while supporting excellence within Cisco, Operations and IT. You will be part of a small and impactful team who are very passionate about the work they do and the impact they make on Cisco’s internal operational capabilities.

Who You Are

You are recognized as a dedicated and detail-oriented leader who is able to lead multiple requirements, projects, and advisory activities across a wide range of technologies. You have existing experience with Unix-focused systems administration and security best practices at an enterprise level and can effectively guide operations teams to investigate specific issues, or dig into system configurations and code yourself determine root cause or potential impact. You enjoy taking on new areas of knowledge, being the first person to gain expertise in a new area and are flexible and sensitive to providing solutions that work well and support the business needs of the organization.

You connect the dots on multiple points of impact to identify problems and upcoming needs, coordinate with the team to design a plan of action, seek out the best technologies and resources to solve problems and share your knowledge with the team and the organization. You work with staff and other teams that are diverse and geographically distributed and may have conflicting priorities.

You have a successful track record of building long-term, trusting relationships with peers, clients, and business partners allowing you to effectively influence with your good communication skills; written, verbal and interpersonal which gives you an edge to create an impact and build consensus. All of this, combined with your innate ability to balance functional security with complex requirements and legacy dependencies, makes you a phenomenal fit for this role.

Minimum requirements:

  • B.S. in Computer Science, Cybersecurity, or related field + 7 years of related experience.
  • Masters + 4 years of related experience preferred

Deep knowledge of and experience with the following:

  • Hands-on expertise with Unix command-line OS system and application administration. Basic configuration, troubleshooting, access management, root cause analysis, etc. (RHEL, CentOS, Ubuntu)
  • Hands-on expertise interacting with enterprise storage technologies (EMC, Netapp, NFS, Samba, NAS/SAN)
  • Experience with automated security scanning tools (Qualys, etc.)
  • Experience with implementing and securing enterprise-grade infra orchestration and hosting technologies (VMWare, OpenStack, Docker, AWS, Puppet, Ansible, etc.)
  • Experience with industry-standard scripting languages (shell, Perl, python, etc.), plus the ability to write and document scripts for automation and reporting
  • Technical problem resolution and analytical processes
  • Communications and collaborative problem-solving with partner teams, exercising influence without direct authority

Knowledge of and experience with the following:

  • Enterprise identity and access/authentication systems
  • Role-based and fine-grained access management systems
  • Data security concepts and methods
  • Leading & reporting security posture – includes leading internal audits, responding to external audits
  • Experience with industry standard risk management & audit practices
  • Deep expertise in industry standard methodologies in the various aspects of IT enterprise identity, data and network security, trends, and ability to implement solutions to enable key business strategies
  • Ability to build a significant partnership with peers, customers, and partners.
  • Excellent written and verbal interpersonal skills, including technical influencing, conflict management, negotiation, public presenting
  • Full dedication to client experience and the highest ethical standards
  • Identify and drive innovation in Cisco internal IT products, services, solutions, technologies, and processes
  • Combine business and security thought leadership into actionable plans and projects
  • Understanding of scale-out software architectures for on-premises and cloud hosted environments across all layers (infrastructure, security, compliance, operations, service support, integration architecture, SP/Enterprise IT architectures, and software lifecycle management)
  • Demonstrated experience in delivering enterprise-wide solutions
  • Strong analytical ability, decision-making, and problem-solving

Technical knowledge including but not limited to:

  • Strong systems architecture background: many boundary systems & integration systems require partnership, especially with the transformation of systems to cloud-native services
  • Multiple lifecycle leadership: a combination of delivery/program-based leadership and operational/service-based leadership
  • Integration & extension: Federation concepts, SSO, OAUTH, SAML, data synchronization
  • Enterprise privacy and access concepts
  • Security compliance and frameworks: SANS Top 20, NIST, ISO27001
  • Infrastructure & technology: Cloud-native identity system architecture & infrastructure, Ping Directory, Active Directory, LDAP
  • Role-based access management concepts: hierarchy (identity->role->resources) vs. raw subscription (identity->resources)
  • Deep knowledge of security, risk and compliance policies and processes, including audit interactions and lifecycle.

Why Cisco

At Cisco, each person brings their unique talents to work as a team and make a difference.

Yes, our technology changes the way the world works, lives, plays and learns, but our edge comes from our people.

  • We connect everything – people, process, data and things – and we use those connections to change our world for the better.
  • We innovate everywhere - From launching a new era of networking that adapts, learns and protects, to building Cisco Services that accelerate businesses and business results. Our technology powers entertainment, retail, healthcare, education and more – from Smart Cities to your everyday devices.
  • We benefit everyone - We do all of this while striving for a culture that empowers every person to be the difference, at work and in our communities.

Colorful hair? Don’t care. Tattoos? Show off your ink. Like polka dots? That’s cool. Pop culture geek? Many of us are. Be you, with us! #WeAreCisco