The application window is expected to close on: October 10, 2025

NOTE: Job posting may be removed earlier if the position is filled or if a sufficient number of applications are received.

The successful applicant will be performing work on US Government classified environments, and therefore, must be a U.S. Person (i.e. U.S. citizen, U.S. national, lawful permanent resident, asylee, or refugee). This position may also perform work that the U.S. government has specified can only be performed by a U.S. Citizen on U.S. soil.

Meet the Team

We are the Threat Intelligence Team within Security, Visibility, and Incident Command (SVIC) at Cisco. Our team is responsible for delivering cyber threat intelligence to internal security teams across the company and the broader threat intelligence community. Our goal is to help protect Cisco, its business units, and increase the understanding of the threat landscape to help improve our security posture and reduce risk.

We are a small agile team with a successful track record demonstrating how threat intelligence can be used across internal security teams to identify, protect, detect, and respond to threats impacting our environment.

Your ImpactCollect, process, and analyze data from internal and external sources to produce actionable intelligence products based on requirements from Cisco’s leadershipDevelop partnerships with security teams across Cisco to provide data-driven insights into existing and emerging threatsCreate impactful threat intelligence reports that aid prioritization of preventative controls and mitigations to improve Cisco's internal security postureMaintain visibility and understanding of the threat landscape as it relates to adversaries with the highest capability and intent to disrupt Cisco's operationsSupport response to internal incidents by analyzing intelligence collected during investigations and building a common understanding of threat activities and attributionDrive complex initiatives with key business partners to continuously improve visibilityCollaborate across teams for training, development opportunities, and service improvementCapture metrics in direct-support to executive-level briefings (daily, weekly, monthly)Ensure that all documents, workflows and processes remain accurate and up-to-date
Minimum Qualifications3+ years of experience as a SOC Analyst, Detection Engineer, or Threat Intelligence Analyst2+ years of experience analyzing indicators and incorporating them into organizational security posture improvements2+ years using Cybersecurity Frameworks like MITRE ATT&CK, Diamond Model, Cyber Kill Chain, etc. to map and contextualize intelligence and behaviors2+ years of experience building threat reports for various levels of leadership
Preferred Qualifications 2+ years studying and analyzing threat adversaries and the threat landscapeExperience with Atlassian products such as Jira and ConfluenceExperience with Threat Intelligence Platforms to manage indicatorsExperience with Intelligence Management Platforms to organize, cluster, and enrich intelligenceExperience building actor profiles and attributing activity to themExperience tracking specific adversaries and hunting for their infrastructureExperience with Censys, Shodan, VirusTotal, and other vendor platformsExcellent interpersonal skills and ability to see things through the customer’s eyesBachelor’s degree in computer science, information security or related field or equivalent work experience

At Cisco, we’re revolutionizing how data and infrastructure connect and protect organizations in the AI era – and beyond. We’ve been innovating fearlessly for 40 years to create solutions that power how humans and technology work together across the physical and digital worlds. These solutions provide customers with unparalleled security, visibility, and insights across the entire digital footprint. Simply put – we power the future.

Fueled by the depth and breadth of our technology, we experiment and create meaningful solutions. Add to that our worldwide network of doers and experts, and you’ll see that the opportunities to grow and build are limitless. We work as a team, collaborating with empathy to make really big things happen on a global scale. Because our solutions are everywhere, our impact is everywhere.

We are Cisco, and our power starts with you.