DevOps Security

DevOps Security Engineer

Cisco’s Engineering IT DevOps as a Service team is looking for a DevOps Security Engineer to help with identification and resolution of risks across our portfolio of continuous integration and delivery applications. Engineering IT is a fast-paced group that is working to modernize and evolve development workflows in Cisco Engineering with modern, cloud-native tools and processes. The ideal candidate is self-motivated to accelerate typically slow IT, replace manual processes with automation, and is excited to be a part of an innovative and continually learning development and operations team. We are looking for someone who has experience using industry standard security tools and processes to harden the Engineering IT service offerings.

Responsibilities of This Role

• Secure internally developed and third-party applications used for DevOps in both self-hosted and SaaS environments

• Work with software vendors to gather and provide necessary data for them to harden third-party applications

• Enhance monitoring and log analysis systems to facilitate earlier detection of potential security issues

• Assist with development of automation via configuration management tools and scripts to insure secure and reliable applications

Required Skills and Experience

• 3 years of demonstrable experience using Python or other high-level programming language

• 3 years of recent demonstrable Linux/Unix administration and shell scripting

• Well-versed with writing custom Python scripts demonstrating the power of application API’s to programmatically drive downstream workflows

• Experience utilizing configuration management tools to create, execute, and troubleshoot complex, automated processes (ex. Puppet, Ansible, git-ops, Chef, Salt)

• Experience with continuous integration/deployment tools such as Jenkins or GitLab

Desired Skills and Experience

• Experience performing and addressing vulnerability assessments for configuration and source code (Qualys, Rapid7, AppScan)

• Knowledge of CIS and NIST approved hardening guides

• Experience in applying security best practices to Linux environments

• Preference will be given to candidates with experience administering GitHub Enterprise, Jenkins, Artifactory, or Spinnaker

• General knowledge of reverse proxy systems such as Nginx, HAProxy, or Apache

• Basic understanding of computer networking (OSI layers, DNS, etc)

• Experience creating and using Docker images / containers

• Experience with AWS including EC2, RDS, ELB, and EKS technologies

• Experience generally with troubleshooting in a diverse technical environment

• Well-versed with Git and various workflows (forking, gitflow, etc.)

• Familiar with Agile Scrum methodologies

• Experience applying monitoring technologies such as Nagios or AppDynamics to gain operational intelligence about application systems at run-time

Why Cisco

#WeAreCisco, where each person is unique, but we bring our talents to work as a team and make a difference powering an expansive future for all.

We adopt digital, and help our customers implement changes in their digital businesses. Some may think we’re "old" (36 years strong) and only about hardware, but we’re also a software company. And a security company. We even invented an intuitive network that adapts, predicts, learns and protects. No other company can do what we do - you can’t put us in a box!

But "Digital Transformation" is an empty buzz phrase without a culture that allows for innovation, creativity, and yes, even failure (if you learn from it.)

Day to day, we focus on the give and take. We give our best, give our egos a break, and give of ourselves (because giving back is built into our DNA.) We take accountability, bold steps, and take difference to heart. Because without diversity of thought and a dedication to equality for all, there is no moving forward.

So, you have colorful hair? Don’t care. Tattoos? Show off your ink. Like polka dots? That’s cool. Pop culture geek? Many of us are. Passion for technology and world changing? Be you, with us!

Cisco is an Affirmative Action and Equal Opportunity Employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, gender, sexual orientation, national origin, genetic information, age, disability, veteran status, or any other legally protected basis.

Cisco will consider for employment, on a case by case basis, qualified applicants with arrest and conviction records.