Information Security Engineer

About ThousandEyes (part of Cisco)

The name ThousandEyes was born from two big ideas: the power to see what’s not ordinarily possible, and the ability to collect intelligence from vantage points as diverse and global as the Internet. As organizations depend on cloud services, the Internet has become their defacto network connecting cloud applications to users. Our Internet and cloud intelligence platform is like a ‘Google maps of the Internet’, providing the only collectively powered view of digital experiences end-to-end. We enable our customers made up of the world’s largest and fastest-growing brands, to identify problems before they impact revenue, brand reputation, or employee productivity.

In August 2020, Cisco Systems completed the acquisition of ThousandEyes, which now forms the ThousandEyes Business Unit within Cisco’s Network Services Business Group, and is a foundational component of Cisco’s growing Observability business.

About the Role

We are seeking a skilled Security Operations and Incident Response Engineer to join our team. The ideal candidate will have very strong operational capabilities and ability to define priorities while handling incidents and other operational tasks. This role requires a learning and deep understanding of incident response procedures, along with experience in penetration testing, Docker, AWS, and use of Elasticsearch for queries (ELK stack). The Security Operations Incident Response Engineer will also be required to participate in an on-call rotation to react to alerts and address any security incidents that may occur outside of regular business hours.

Responsibilities

• Conduct and validate 3rd party penetration testing to identify vulnerabilities in our systems and infrastructure
• Collaborate with cross-functional teams to identify and resolve security incidents
• Monitor security systems and investigate security breaches and intrusions, including but limited to server, AWS, docker, network flows, IDS
• Manage incident response procedures, including containment, eradication, and recovery
• Participate in an on-call rotation to address security incidents outside of business hours
• Maintain and secure AWS infrastructure and services as part of Lab environment, including EC2, S3, and IAM
• Investigate using ELK stack and other SIEM solutions for log management and threat analysis
• Keep up-to-date with the latest security threats, vulnerabilities, and technologies

Requirements

• Bachelor's degree in Computer Science, Information Security, or a related field
• Minimum of 5 years of experience in incident response, security operations, or a related field
• Knowledge of penetration testing tools and techniques
• Experience with Docker, AWS, and ELK stack
• Ability to participate in an on-call rotation to address security incidents
• Excellent problem-solving skills and attention to detail
• Strong communication skills and ability to collaborate with cross-functional teams
• Relevant certifications such as CompTIA Security+1, CEH, or similar are a plus

Cisco is an Affirmative Action and Equal Opportunity Employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, gender, sexual orientation, national origin, genetic information, age, disability, veteran status, or any other legally protected basis. Cisco will consider for employment, on a case by case basis, qualified applicants with arrest and conviction records. 

Why Cisco

#WeAreCisco, where each person is unique, but we bring our talents to work as a team and make a difference powering an inclusive future for all.

We embrace digital, and help our customers implement change in their digital businesses. Some may think we’re “old” (36 years strong) and only about hardware, but we’re also a software company. And a security company. We even invented an intuitive network that adapts, predicts, learns and protects. No other company can do what we do –you can’t put us in a box! But “Digital Transformation” is an empty buzz phrase without a culture that allows for innovation, creativity, and yes, even failure (if you learn from it.)

Day to day, we focus on the give and take. We give our best, give our egos a break, and give of ourselves (because giving back is built into our DNA.) We take accountability, bold steps, and take difference to heart. Because without diversity of thought and a dedication to equality for all, there is no moving forward.

So, you have colourful hair? Don’t care. Tattoos? Show off your ink. Like polka dots? That’s cool. Pop culture geek? Many of us are. Passion for technology and world changing? Be you, with us.

We recognize that diverse teams make the strongest teams, and we encourage people from all backgrounds to apply.

Cisco COVID-19 Vaccination Requirements

The health and safety of Cisco's employees, customers, and partners is a top priority. Our goal is to protect and mitigate the spread of COVID-19 infection for strong business resiliency during the pandemic. Therefore, Cisco may require new hires to be fully vaccinated against COVID-19 if the role requires business-related travel, meeting with customers/partners (including visiting third-party sites on behalf of Cisco), attending trade events, and Cisco office entry, unless otherwise prohibited by applicable law, and in countries where COVID-19 vaccination is legally required. The company will consider legally required accommodations/exceptions for medical, religious, and other reasons as per the requirements of the role and in accordance with applicable law. Additional information will be provided to candidates about the requirements and accommodation process at the offer time based on region.