Who We Are
Cisco’s Customer & Partner Experience Engineering (CPXE) organization is one of our fastest growing teams, redefining how Cisco delivers value to our customers & partners via our product portfolio. This team is charged with securing Cisco’s CPX offerings in federal and non-federal cloud environments.
What You’ll Do
You will provide advice and guidance on a wide variety of information security issues, concerns, and problems; and ensure that all development of applications and processes include adequate control measures. You will collaborate with various security partners across the broader CPX organization including governance and compliance personnel, developers, product owners, architects, and engineers pertaining to the design and build of Cisco cloud SaaS for FedRAMP and other security framework compliance initiatives.
You’ll work within Security Engineering to help to ensure the review and implementation of application security components and tools ranging from Static to Dynamic scanning and processes to further mitigate any vulnerabilities. Integrating with the other functions across the team, you will guide and manage vulnerability mitigation, tracking and transparency across the greater CX organization. You will be working across a number of other teams within CX to support the success of our application security posture. You will drive improvements, measure consumable metrics and lead mitigation guidance with the appropriate teams.
Key Responsibilities
- Acts as the primary security point of contact for CPX FedRAMP projects and initiatives
- Provides authoritative information security risk control consultation with focus on FedRAMP defined controls
- Regularly collaborates with business leaders and product owners to evaluate security needs and impacts of security decisions on business processes as well as to communicate risks
- As part of project development, business application or process improvement, assists in the development of efficient and practical information security systems, procedures and controls
- Participates as a technical advisor for a variety of ad-hoc security projects
- Designs and implements an integrated risk management approach that applies operating controls to manage information security risks
- Implements information security policies, standards, and other requirements
- Guides staff in their efforts to develop applications maintaining secure coding practices and interpret the output of code analysis tools
- Addresses information security related issues and findings, ensuring that remedial actions as well as long term solutions are implemented to mitigate the underlying risks
Who You’ll Work With
You’ll be part of an innovative security team working with top-skilled cloud operations, application, and platform engineers within CPXE redefining the way that Cisco protects data stored in the cloud. Our team is passionate about security and applies savvy risk-based thinking to build the best outcomes for our customers.
Who You Are
You possess a Master’s degree (BS/BA with additional experience will be considered), and at least 7 years of security experience, with a passion for information risk management and balancing controls with business needs. While you have deep technical expertise and FedRAMP experience, you thrive by applying this expertise to gain support and understanding from developers, product owners, and business leaders. You’re adept at working with people of all backgrounds within a growing environment, and helping them be successful while improving security.
You have experience securing Cloud systems for federal customers and enjoy mentoring technical personnel. You understand FedRAMP information collection and reporting processes and bring deep knowledge of technical control mechanisms, authentication and authorization methodologies, DevSecOps, and industry security standards such as FedRAMP, NIST, ISO, and others. You have one or more security certifications, particularly those with a Cloud focus (CISSP, CCSP, AWS Cloud, Google Cloud Platform, etc.), and experience with reports development (status, metrics, and measures).
You Are Highly Capable Of
Effectively communicating complex technical ideas to peers, executives, and customers. You balance advanced technical knowledge and strategic business acuity when engaging with senior-level decision makers to convey business value of security. You’re a leader who holds yourself and others accountable to deliver excellent results with little guidance. You view security as a service. You show full commitment to customer satisfaction, out-of-the-box thinking, analytical reasoning, and creative problem solving skills. You have a keen ability to switch from high-level thinking to realistic and pragmatic execution.
Why Cisco:
#WeAreCisco, where each person is unique, but we bring our talents to work as a team and make a difference powering an inclusive future for all.
We embrace digital, and help our customers implement change in their digital businesses. Some may think we’re “old” (36 years strong) and only about hardware, but we’re also a software company. And a security company. We even invented an intuitive network that adapts, predicts, learns and protects. No other company can do what we do – you can’t put us in a box!
But “Digital Transformation” is an empty buzz phrase without a culture that allows for innovation, creativity, and yes, even failure (if you learn from it.)
Day to day, we focus on the give and take. We give our best, give our egos a break, and give of ourselves (because giving back is built into our DNA.) We take accountability, bold steps, and take difference to heart. Because without diversity of thought and a dedication to equality for all, there is no moving forward.
So, you have colorful hair? Don’t care. Tattoos? Show off your ink. Like polka dots? That’s cool. Pop culture geek? Many of us are. Passion for technology and world changing? Be you, with us!
#cpx/sec
The health and safety of Cisco’s employees, customers, and partners is a top priority. Our goal is to protect and mitigate the spread of COVID-19 infection for strong business resiliency during the pandemic. Therefore, Cisco requires all new hires to be fully vaccinated against COVID-19 in the U.S., unless otherwise prohibited by applicable law, and in countries where COVID-19 vaccination is legally required. The company will consider legally required accommodations/exceptions for medical, religious, and other reasons as per the requirements of the role and in accordance with applicable law. Additional information will be provided to candidates about the requirements and accommodation process at the offer time based on region.
More Information
- Address Chicago, IL, USA
- Salary Offer $100.000 ~
- Experience Level Manager
- Total Years Experience 5-10