Company:Cisco Meraki - Please do not apply directly! HQ: San Francisco, but this is a REMOTE opportunity - anywhere in the U.S. Position: Senior/Lead Security Operations Detection &Response EngineerComp: Competitive base salary dependent on work location and seniority + Attractive Cisco RSU's + 12-15% annual performance bonus + 401k (4.5% match) + sign on bonus At Cisco Meraki, we know that technology can connect, empower, and drive us. Our mission is to simplify technology so our customers can focus on what's most meaningful to them: their students, patients, customers, and businesses. We’re making networking easier, faster, and smarter with technology that simply works. As a Senior member of the Security Operations team, you will have a substantial impact on the security of millions of Cisco Meraki users all around the world. We are looking for people who are passionate about building full stack security tools and have substantial experience developing in a containerized cloud/data center hybrid environment. Key responsibilities:
- Build and maintain custom security tools and services such as:
- AWS-based SIEM solution
- Monitoring and anomaly detection tooling
- Automated certificate renewal and PKI infrastructure
- Incident response automation
- Deploy and tune vendor solutions to feed data into our detection stack, such as:
- Intrusion detection systems
- File integrity monitoring
- Vulnerability scanners
- Partner with the greater security team as well as our product and infrastructure teams to build scalable and user-friendly security tooling
- Build seamless integrations between our tools, Meraki’s development stack, and the broader Cisco security infrastructure
- Have 5+ years of full-stack development experience in Ruby or Python
- Have experience in web, database, information, and/or infrastructure security
- Know and love learning about the latest security tools, infrastructure, and industry best practices
- Have experience developing in a hybrid environment utilizing AWS or other cloud providers
- Enjoy working across and being a resource for other engineers and sharing your knowledge of secure coding practices
- Have experience on a pager rotation where you responded to escalations quickly
- Are excited to champion security as a first-class concern
- Know and recognize common vulnerability types, including SQL/command injection, XSS, CSRF, and SSRF
- Experience with IoT platforms, large-scale distributed systems, and/or client-server architectures
- Proven track record to ship in a dynamic environment