JOb TITLE: Security eNGINEER

 

JOB DESCRIPTION

You will play a role as a security SME covering Application, Operating systems, Network and Compute. You will be part of a core Agile scrum team responsible for the following:

Be a security champion and elevate our CI/CD pipeline to identify, resolve and govern security vulnerabilities.

Establish formal BAVA/DAVA testing processes.

Establish security standard operating procedures.

Establish life cycle management process across entire stack.

Engage with Enterprise IT to enable new application deployment process.

Use Rally to manage development activities.

Develop highly scalable microservices and APIs.

Develop user-friendly interfaces and dashboards.

Write unit, integration, Regression, Security, Soak, and Performance tests

Build instrumentation and metrics for monitoring and alerting systems

Craft supporting documents (release notes, sudo code, etc)

Collaborate with internal and external cross-functional teams on the following areas:

CSDL4E standards

Research and implement new technologies to tackle specific product asks

Design, develop, fix problems and debug software applications and web services

As a member of the software engineering division, you will take an active role in the definition and evolution of standard practices and procedures.

Be responsible for defining and developing tasks associated with the developing, designing and debugging of software applications or operating systems. The work is non-routine and very complex, involving the application of advanced technical/business skills in the area of specialization. You will be a leading contributor individually and as a team member, provide direction and mentoring to junior SW engineers and others.

TQSG is a central software development organization within supply chain that supports building and testing of Cisco products globally and establishing a rigorous quality standard prior to shipping to customers

You will engage with Architects, SW developers and other multi-functional teams supporting the fast growth of our private Cloud Services

Highly motivated individual who is passionate about working in a skilled, rapidly changing technical environment and eager to play an integral part in our client’s continued success. You are skilled at solving problems and can communicate well internally with business units and externally with 3rd party SW suppliers?

From a technical perspective, you meet the following requirements:

Breadth of industry good practices knowledge BS/MS in Computer Science or related field Strong knowledge on Operating systems (Linux, Windows, etc) Strong fundamentals including an understanding of data structures, concurrent programming 7+ years experience with Java, JavaScript and Python

You are experienced in the following disciplines:

In-depth experience identifying and protecting against web application vulnerabilities

Strong knowledge of browser security model, mobile app security, crypto and network security

Experience with security tools for static analysis, dynamic analysis, penetration testing, intrusion detection

Understand and interpret corporate policies, standard methodologies, and results from security reviews and audits

Develop and build security tools and processes for scanning, testing, monitoring and reporting

Lead, coach and mentor development teams to incorporate software security techniques

Conduct vulnerability and risk assessments to provide actionable remediation plans

Develop technical security specifications for targeted cloud applications/workloads

Coordinate security concerns with software teams across the company through a security guild

Stay ahead of emerging security threats and solution technologies

IaaS, Paas, CaaS, FaaS, SaaS

Cloud Provider offerings

Building CI/CD framework

Test automation with Jenkins

Management of repositories (Git, SVN, etc...)

DevOps models

Experience in implementing the following technologies/offerings:

Containerization of lightweight applications

Cloud providers - AWS, Azure, Google, Rackspace, etc...

Cloud technologies - Kubernetes, Openshift, DC/OS, ECS, Cattle, Kontena, Docker Swarm, Cloud Foundry, etc...

 

Cloud management platforms - Redhat, VMware, Right Scale, Cisco, Service Mesh, etc...

#WeAreCisco (This is the Standard and cannot be changed)

#WeAreCisco where every individual brings their unique skills and perspectives together to pursue our purpose of powering an inclusive future for all.

 

Our passion is connection—we celebrate our employees’ diverse set of backgrounds and focus on unlocking potential. Cisconians often experience one company, many careers where learning and development are encouraged and supported at every stage. Our technology, tools, and culture pioneered hybrid work trends, allowing all to not only give their best, but be their best.

 

We understand our outstanding opportunity to bring communities together and at the heart of that is our people. One-third of Cisconians collaborate in our 30 employee resource organizations, called Inclusive Communities, to connect, foster belonging, learn to be informed allies, and make a difference. Dedicated paid time off to volunteer—80 hours each year—allows us to give back to causes we are passionate about, and nearly 86% do!

 

Our purpose, driven by our people, is what makes us the worldwide leader in technology that powers the internet. Helping our customers reimagine their applications, secure their enterprise, transform their infrastructure, and meet their sustainability goals is what we do best. We ensure that every step we take is a step towards a more inclusive future for all. Take your next step and be you, with us!