Senior Security Engineer

Senior Security Engineer - 2010865

Cisco is transforming to become the world's leading security company. As part of this initiative, our Security Operations & Technology organization is adopting best-in-class tools, standards, and practices. Identity is at the heart of this transformation, making this an exciting time to join our team as a Senior Security Engineer focused on Directory Services and Identity Security.

Who You'll Work With

You will work with our innovative Directory Services and Authentication team as part of Security Operations & Technology at Cisco, collaborating with other teams within IT and our Security & Trust organization. You will provide solutions and support for Directory Services and Authentication capabilities and will grow into other areas in a cross-functional team setup.

Who You Are

You are passionate about learning new technologies, communicate clearly and effectively with distributed teams, possess strong critical thinking and analytical skills, and can stay focused while working under pressure. You demonstrate strong operational discipline, have a security mindset, are committed to change management and incident response, and thrive in a global, distributed team environment. You are adaptable to new technologies and evolving security threats.

What You'll Do

• Operate, troubleshoot, and optimize large-scale, complex Active Directory environments (multi-forest, multi-site, hybrid).
• Maintain and enhance Entra ID (Azure AD) multi-tenant environments, integrating with on-premises and cloud services.
• Collaborate in the design and rollout of security guardrails for directory services and privileged access, both on-prem and in the cloud.
• Develop, implement, and manage automation/scripts (PowerShell, Python, etc.) for routine operations and self-service enablement, leveraging generative and agentic AI technologies when appropriate.
• Participate in a rotating On-Call schedule to ensure 24/7 operational coverage.
• Partner with cross-functional teams to support incident response, change management, and audits.
• Drive adoption of modern security frameworks, including Zero Trust and least privilege principles.

Required Qualifications

• Experience with security guardrails: enforcing LDAPS, disabling legacy protocols, implementing modern encryption and experience with cloud security controls: Conditional Access, risk-based authentication, privileged role management.
• Proficient in scripting (PowerShell, Python, etc.) for automation.
• Familiarity with SIEM platforms (Splunk or similar) and security monitoring and understanding of Zero Trust and identity-centric security architecture with Deep expertise with multi-forest, multi-site Active Directory operations, troubleshooting, and replication.
• Proficient in authentication, authorization, and access control concepts.
• Strong knowledge of core networking, virtualization, and cloud concepts (Azure, AWS, GCP) and experience with Entra ID (Azure AD) administration and integration.
• Bachelor's degree in Computer Science, Engineering, or related field (or equivalent practical experience) or equivalent 8+ years of enterprise IT experience, including directory services and privileged access management.

Preferred Qualifications

• Relevant certifications: CISSP, Microsoft Certified: Identity and Access Administrator, Azure Security Engineer, CyberArk Guardian, etc.
• Experience supporting application migrations from on-prem to cloud-native environments and supporting large-scale, hybrid or cloud-native environments.
• Hands-on experience with attack path analysis frameworks (e.g., Bloodhound Enterprise).
• Experience with System Center (SCOM, SCCM, SCO).
• Experience with other identity and access management platforms (Okta, SailPoint, Ping).
• Familiarity with Zero Trust, SSO, FIDO2/WebAuthn implementations.
• Experience with infrastructure as code (Terraform, Ansible) for identity solutions.

Why Cisco?

At Cisco, we’re revolutionizing how data and infrastructure connect and protect organizations in the AI era – and beyond. We’ve been innovating fearlessly for 40 years to create solutions that power how humans and technology work together across the physical and digital worlds. These solutions provide customers with unparalleled security, visibility, and insights across the entire digital footprint. Fueled by the depth and breadth of our technology, we experiment and create meaningful solutions. Add to that our worldwide network of doers and experts, and you’ll see that the opportunities to grow and build are limitless. We work as a team, collaborating with empathy to make really big things happen on a global scale. Because our solutions are everywhere, our impact is everywhere. We are Cisco, and our power starts with you.

Key skills/competency

• Active Directory
• Entra ID (Azure AD)
• Identity Security
• Cloud Security
• Scripting (PowerShell, Python)
• Zero Trust
• Incident Response
• Change Management
• Privileged Access Management
• SIEM Platforms