Job description

Application window has been extended and expected to close on August 30, 2025. However, the job posting may be removed earlier if the position is filled or if a sufficient number of applications are received Meet the Team Join the dynamic Security and Compliance team for Cisco's XDR solution. Our team is dedicated to securing a large-scale SaaS platform, working closely with developer and operations teams across multiple cloud environments. We focus on all facets of security, ranging from cloud infrastructure security to application-level defenses, data protection, and network security. Your Impact As a Cloud Security Engineer, you will play a pivotal role in securing and ensuring compliance for the Cisco XDR platform. You will work closely with the Director of Security & Compliance to get up to speed in all areas, and to author high quality code to achieve security automation outcomes. You'll collaborate with XDR development, operations and quality assurance teams helping them secure the offer. You will also interface with Cisco central security and compliance organizations, external auditors, penetration testing teams (internal and external), participate in blue & purple team exercises, meet with corporate counsel, and chat with data privacy architects. You will be entrusted with the crucial task of securing the platform and ensuring its compliance with both internal policies and various external regulatory frameworks. Responsibilites include: Collaborate with cross-functional teams to secure cloud environments and ensure compliance with internal and external standards.Influence security architecture decisions and contribute to process improvements.Author high-quality code to automate security outcomes. Minimum Qualifications +5 years of experience in security engineering or security operations roles in a professional environment+2 years In-depth experience with AWS, including service catalogs, security offerings, and automation. Specifically in implementing cloud security controls and developing auto-remediation solutions. Proficiency in programming languages such as Python, Java, Go, JavaScript, or Clojure.Foundational knowledge of security principles, including concepts such as authentication, authorization, encryption, and vulnerability management, with a willingness to deepen expertise in cloud and application security Preferred Qualifications Experience with SIEM solutions like Splunk.Familiarity with XDR.Experience with additional cloud platforms, such as GCP and Azure, including their service catalogs and security offerings.Experience with SOC 2 and ISO 27001 evidence collection and audit support.Experience with penetration testing, threat modeling, or security architecture design/review.Familiarity with unit testing and CI/CD pipelines.Experience with SQL and NoSQL databases.Familiarity with OWASP.Strong understanding of security and compliance standards, with at least one relevant certification (e.g., CISSP, CISM, or similar).At least 2 years of experience working on security and compliance for proprietary products, ensuring adherence to internal and external standards.

Requirements