Security Engineer - 1310252

September 21, 2021 - Fulton, MD/ Remote, USA

Cisco, worldwide leader in networking and IT, is increasingly growing into all aspects of the security space. Cisco is building an interconnected threat intelligence platform to safely connect these devices while leaving bad actors out of the picture. The Cisco Talos Security Intelligence and Research Group detects and correlates threats in real-time using the world’s largest threat detection network, protecting against known and emerging cybersecurity threats to better protect the Internet. Talos is seeking a puzzle-loving security researcher to join our growing team as a Security Researcher. If you have a passion to stop bad guys and love working with large data-sets, then we need you.

What You’ll Do

The Cisco Talos Security Researcher - Endpoint Security will work within established methodologies to create behavioral detection content for Cisco Endpoint Security. This will include proactively hunting for adversaries in customer environments, but also emergency response to cyber incidents. This Security Researcher will also be responsible for leading and working on projects that will support tactical and strategic business objectives. Demonstration of clear and concise communication with a variety of stakeholders, personal agility to adapt to changing environments, and a strong comprehension of malware, emerging threats and calculating risk will be critical to success.

Who You’ll Work With

You’ll be part of a global team of highly empowered Security Researchers professionals as a collaborative team passionate about helping our clients be both better prepared to defend against adversaries on their network, specifically at the endpoint, as well as responding to active incidents within their network.

Who You Are

You check your ego at the door and learn from others constantly, while also helping educate those who aren’t as well versed as you are in technical or procedural topics. As a result, you have a track record of working diligently to help your clients and teammates and have even come up with some novel techniques in your time.

Required Skills:

  • Sound understanding of the Kill Chain (Attack) Life Cycle.
  • Demonstrate capability to map technical findings to business impacts and communicate those in a manner which is understandable by a non-technical audience.
  • Specialize in host centric analysis, especially endpoints running Windows, Linux or MacOS.
  • Specialize in network forensic analysis with a solid understanding of network protocols.
  • Proactively hunt for adversaries in customer environments leveraging a variety of tools and techniques.
  • Understanding of different attacks and how best to design custom detection, containment, and remediation plans for customers.

Be a champion for the process

  • Develop and document processes to ensure consistent and scalable response operations.
  • Demonstrate industry leadership through blog posts and public speaking at conferences and events.
  • Bachelors’ Degree in Computer Science or a related technical degree; or, equivalent industry experience.
  • 4+ years of experience in information security or 4+ years of industry experience in a relevant role using Python, x86 assembly, SQL, Bash, Elastic Stack, Docker, Git and expertise with major endpoint operating systems, in particular Windows, MacOS and Linux.

Desired Characteristics

Detailed understanding of current cyber security threats, attacks, and countermeasures. Such as Advanced Persistent Threat (APT), Cyber Crime, Hacktivism and associated tactics. Strong track record of understanding and interest in recognized IT Security-related standards and technologies, demonstrated through training, job experience and/or industry activities.

Why Cisco Talos

We always strive to do the right thing, for our team, for our customers, and for the world!

We Are Cisco

#WeAreCisco, where each person is unique, but we bring our talents to work as a team and make a difference. Here’s how we do it.

We embrace digital, and help our customers implement change in their digital businesses. Some may think we’re “old” (30 years strong!) and only about hardware, but we’re also a software company. And a security company. An AI/Machine Learning company. We even invented an intuitive network that adapts, predicts, learns and protects. No other company can do what we do – you can’t put us in a box!