Application window is extended till 10/10/2024.
What you will do:• This position is critically needed to support Product Security testing for Next Generation Firewall (NGFW). Participate in complete life cycle of features right from inception till it's get delivered as part of release includes Reviews, test planning, and end-to-end security testing.• Performs penetration testing on devices and features to exploit and compromise defined targets ranging from web applications to hardware.• Identify and exploit vulnerabilities in web applications, cloud, OS, hardware, and databases, etc...• Participate in Product Security team as a senior subject matter expert and tester.• Write test plans and create and execute test cases.• Document technical and security findings identified during testing and security assessments and provide security recommendations.• Conduct vulnerability assessments, security audits, and risk assessments on complex systems.• Evaluate devices and features for possible attack vectors to either the device itself or the user.• Track bugs/vulnerabilities through development lifecycle to ensure resolve.
Minimum Qualifications: • Typically requires BS / MS with Computer Science / Computer Networks 5+ years of related experience.• 3+ years of web application penetration testing experience is a requirement. Technical knowledge of security engineering, computer and network security, authentication, and security protocols• Experience in vulnerability identification and remediation is a requirement.
Preferred Qualifications:• Deep understanding of security principles, policies, and industry best practices• Experience with using open-source security tools, with strong understanding of cross-site scripting, SQL injection and other web related vulnerabilities and attacks• Experience in evasion techniques.• Experience using NMAP, Nessus, and other automated scanning tools.• Good Hands-on experience in Python, Java Script and API based development knowledge is required.• Good understanding of networking architecture such as Routing/Switching (OSPF / BGP, EIGRP, VLAN), IP, TCP/UDP, and application layers such as HTTP, SMTP, etc.• Good understanding in security products & technologies like Firewall, NAT, IPS, and VPN• Having Cisco Certification such as CISSP, CISA, CEH, CCNA/CCNP/CCIE (Routing / Security) is a plus.• Experience in analyzing crash logs, stack trace, faults by utilizing basic debugging techniques.• Excellent analytical, communication and technical skills• Ability to deliver results in a short time and experience working in fast paced high growth tech companies.
Why Cisco?
We're global, we're adaptable, we're diverse, and our security portfolio is as extensive as it is groundbreaking. Have you heard of Threat, Detection & Response, Zero Trust by Duo, Common Services Engineering, or Cloud & Network Security? Those are only a few of our product teams! The only thing we're missing is YOU.
Join an enterprise security leader with a start-up culture, committed to driving innovation and giving you the opportunity to make an impact. We #InnovateToWin and we know we're better together, that's why we're dedicated to inclusivity, collaboration, and diversity in everything we do.
We're proud to be the Best Small and Mid-Size Enterprises Security Solution Cisco Secure continues to grow and evolve year after year with 100% of Fortune 100 Companies using our products, and we're excited to see the new heights we'll reach with your passion for security, your customer focus, and your desire to change things up!
There are so many amazing reasons to join Cisco. Learn more here!
Message to applicants applying to work in the U.S. and/or Canada:When available, the salary range posted for this position reflects the projected hiring range for new hire, full-time salaries in U.S. and/or Canada locations, not including equity or benefits. For non-sales roles the hiring ranges reflect base salary only; employees are also eligible to receive annual bonuses. Hiring ranges for sales positions include base and incentive compensation target. Individual pay is determined by the candidate's hiring location and additional factors, including but not limited to skillset, experience, and relevant education, certifications, or training. Applicants may not be eligible for the full salary range based on their U.S. or Canada hiring location. The recruiter can share more details about compensation for the role in your location during the hiring process.U.S. employees have access to quality medical, dental and vision insurance, a 401(k) plan with a Cisco matching contribution, short and long-term disability coverage, basic life insurance and numerous wellbeing offerings. Employees receive up to twelve paid holidays per calendar year, which includes one floating holiday, plus a day off for their birthday. Employees accrue up to 20 days of Paid Time Off (PTO) each year and have access to paid time away to deal with critical or emergency issues without tapping into their PTO. We offer additional paid time to volunteer and give back to the community. Employees are also able to purchase company stock through our Employee Stock Purchase Program.Employees on sales plans earn performance-based incentive pay on top of their base salary, which is split between quota and non-quota components. For quota-based incentive pay, Cisco typically pays as follows:.75% of incentive target for each 1% of revenue attainment up to 50% of quota;1.5% of incentive target for each 1% of attainment between 50% and 75%;1% of incentive target for each 1% of attainment between 75% and 100%; and once performance exceeds 100% attainment, incentive rates are at or above 1% for each 1% of attainment with no cap on incentive compensation.For non-quota-based sales performance elements such as strategic sales objectives, Cisco may pay up to 125% of target. Cisco sales plans do not have a minimum threshold of performance for sales incentive compensation to be paid.
What We Do
Duo Security, now part of Cisco, is the leading multi-factor authentication (MFA) and secure access provider.
Duo is built on the promise of doing the right thing for our customers and each other. This promise is as central to our business as the product itself. Our four guiding principles are the heart of this sensibility: Easy, Effective, Trustworthy, Enduring
We’re transforming security from the ground up by solving the world’s most pressing geopolitical challenge — safe, secure information access. We engineer our business to enable our customers to easily address their ever-evolving security challenges.
We believe that impactful work is rewarding work and that our team is at its best when everyone feels empowered to bring their whole self to work. We learn together by hiring for cultural contribution, not cultural fit, and recognize that diversity in background and thought are essential to building high-impact teams.
We invest in growth and learning opportunities and encourage our people to never stop learning. We foster collaboration and believe in being recognized (and rewarded!) for hard work. We champion a healthy work-life balance. We’re kinder than necessary.
Together we build for the future by designing simple solutions for complex problems. And that’s why we’re the most loved and trusted name in security.
Why Work With Us
With the Most Loved Company in Security and the global leader in network technology joining forces, there are more exciting opportunities than ever to be at the forefront of securing the cloud.
Our culture is built on collaboration and the belief of enabling and empowering you to follow your passions inside and outside of the office.