Creating leading threat intelligence is the focus of the Cisco Talos Security Intelligence and Research Group (Talos). Talos is comprised of leading threat researchers supported by sophisticated systems. Talos researchers create and modify threat intelligence for Cisco products to protect customers from both known and emerging threats. Talos provides the content and logic for Cisco Secure Firewall, Cisco Secure Email, Cisco Secure Email Threat Defense, Cisco Secure Web, Cisco Umbrella, ClamAV, Snort and SpamCop.Role & ResponsibilitiesThe Research Escalation Engineer works as part of the Talos Escalations group within Talos and is responsible for handling efficacy escalations for our intrusion prevention, anti-virus, email and web security suites. Some of our many solutions include Cisco Secure Firewall, Cisco Secure Endpoint, Cisco Secure Email, Cisco Secure Malware Analytics, Cisco Umbrella, Talos Sender Domain/IP Reputation and Talos Reputation Service among many more.Responsibilities:Triage internal and external escalations related to security efficacy, coverage, scoring, listing, and reputation determinations made by our security systems.Provide third tier response to intrusion prevention, anti-virus, email and web security issues escalated from customer support and other customer-facing teams.Answer emails in ticketing queues and respond to alerts generated by monitoring systems.Contribute to the establishment of procedures and best practices for internal and external use.Work closely with tier four detection content and engineering teams.Minimum Qualifications:Solid base knowledge of networking, transport, and application layer protocols, such as IP, TCP, UDP, and HTTP.Ability to handle a higher load of tickets.Good communication and teamwork skills, with solid judgment about handling proprietary information.Customer focused, with a strong sense of quality and thoroughness.Technical aptitude with ability and passion to learn.Preferred Qualifications:Knowledge of intrusion and anti-virus detection techniques.Analytical and problem-solving skills.Good written and verbal communication skills.Knowledge of spam, malware, and phishing techniques.UNIX experience and familiarity with tools such as dig, traceroute, whois, etc.Strong email knowledge (administration, blocklists, RFCs, reading email headers and understanding SMTP).Solid base knowledge of application layer protocols such as SMTP, POP, IMAP, SIP, and SSL Python, shell script.#WeAreCisco#WeAreCisco where every individual brings their unique skills and perspectives together to pursue our purpose of powering an inclusive future for all.Our passion is connection—we celebrate our employees’ diverse set of backgrounds and focus on unlocking potential. Cisconians often experience one company, many careers where learning and development are encouraged and supported at every stage.Sign up to receive notifications of similar jobs
#J-18808-Ljbffr