Job Information
Cisco Research Engineer - Talos Escalations in Galway, Ireland
Team Description
Creating leading threat intelligence is the focus of the Cisco Talos Security Intelligence and Research Group (Talos). Talos is comprised of leading threat researchers supported by sophisticated systems. Talos researchers create and modify threat intelligence for Cisco products to protect customers from both known and emerging threats. Talos provides the content and logic for Cisco Secure Firewall, Cisco Secure Email, Cisco Secure Email Threat Defense, Cisco Secure Web, Cisco Umbrella, ClamAV, Snort and SpamCop.
Role & Responsibilities
The Research Escalation Engineer works as part of the Talos Escalations group within Talos and is responsible for handling efficacy escalations for our intrusion prevention, anti-virus, email and web security suites. Some of our many solutions include Cisco Secure Firewall, Cisco Secure Endpoint, Cisco Secure Email, Cisco Secure Malware Analytics, Cisco Umbrella, Talos Sender Domain/IP Reputation and Talos Reputation Service among many more.
Talos Research Escalations Engineers.
Triage internal and external escalations related to security efficacy, coverage, scoring, listing, and reputation determinations made by our security systems.
Provide third tier response to intrusion prevention, anti-virus, email and web security issues escalated from customer support and other customer-facing teams.
Answer emails in ticketing queues and respond to alerts generated by monitoring systems.
Contribute to the establishment of procedures and best practices for internal and external use.
Work closely with tier four detection content and engineering teams.
Minimum Qualifications:
Solid base knowledge of networking, transport, and application layer protocols, such as IP, TCP, UDP, and HTTP.
ability to handle higher load of tickets
good communication and teamwork skills, with solid judgment about handling proprietary information.
customer focused, with a strong sense of quality and thoroughness.
technical aptitude with ability and passion to learn.
Preferred Qualifications:
Knowledge of intrusion and anti-virus detection techniques.
analytical and problem-solving skills.
good written and verbal communication skills.
Knowledge of spam, malware, and phishing techniques.
UNIX Experience and familiarity with tools such as dig, traceroute, whois, etc.
Strong email knowledge (administration, blocklists, RFCs, reading email headers and understanding SMTP).
Solid base knowledge of application layer protocols such as SMTP, POP, IMAP, SIP, and SSL Python, shell script
#WeAreCisco
#WeAreCisco where every individual brings their unique skills and perspectives together to pursue our purpose of powering an inclusive future for all.
Our passion is connection—we celebrate our employees’ diverse set of backgrounds and focus on unlocking potential. Cisconians often experience one company, many careers where learning and development are encouraged and supported at every stage. Our technology, tools, and culture pioneered hybrid work trends, allowing all to not only give their best, but be their best.
We understand our outstanding opportunity to bring communities together and at the heart of that is our people. One-third of Cisconians collaborate in our 30 employee resource organizations, called Inclusive Communities, to connect, foster belonging, learn to be informed allies, and make a difference. Dedicated paid time off to volunteer—80 hours each year—allows us to give back to causes we are passionate about, and nearly 86% do!
Our purpose, driven by our people, is what makes us the worldwide leader in technology that powers the internet. Helping our customers reimagine their applications, secure their enterprise, transform their infrastructure, and meet their sustainability goals is what we do best. We ensure that every step we take is a step towards a more inclusive future for all. Take your next step and be you, with us!
Cisco is an Affirmative Action and Equal Opportunity Employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, gender, sexual orientation, national origin, genetic information, age, disability, veteran status, or any other legally protected basis.
Cisco will consider for employment, on a case by case basis, qualified applicants with arrest and conviction records.