Analyst, Customer Trust & Security Assurance

Application window is expected to close by 02/15/2025.

Job posting may be removed earlier if the position is filled or if a sufficient number of applications are received.

Who We Are:

The Trust and Compliance Organization is seeking a team player to contribute to a talented team focused on handling customer inquiries on security. As a member of this team, you will be responsible for researching, managing and reporting on customer security assurance, data protection and privacy questions. You will be working closely with different product security and information security teams to help reduce sales friction and enable Cisco's effectiveness at winning new business and retaining current customers.

Who You'll Work With:

In today's multifaceted digital environment, security is everyone's job. At Cisco, the Security and Trust Organization is at the core of making infrastructure more secure. Your involvement in this strategic and results-oriented team will enable you to be part of one of Cisco's major objectives - to be the Number 1 Trusted Business partner to our customers.

The organization reports to Cisco's Chief Security and Trust Officer and is responsible for the innovation, training, and implementation of security and trust features and processes across all of Cisco's products.

The Global Cloud Compliance (GCC) group within the STO is responsible to drive Compliance certifications across Cisco. This team is responsible for enabling and protecting Cloud sales for our Commercial customers, US Government and Federal agencies, as well as many international standards bodies.

As an Analyst within the GCC group, your primary role requires an in-depth understanding of various security certification frameworks like SOC2, ISO 27001, ISO 27017, C5, ENS, and others.

What You'll Do:

• Drive security compliance and sales enablement by assessing and resolving current and prospective customers' security and/or compliance requests
• Engage with sales, field and internal support personnel to understand product security architecture, implementations, and operations to adequately address customer security questions
• Process information security questions within the confines of customer and 3rd party GRC portals
• Leverage automated process workstreams to support acceleration of customer requests.
• Partner with information security, technical marketing engineers, product managers, and other SMEs to manage responses to RFPs, RFIs, security assessments, and other pre-sales questionnaires
• Support sales opportunities by addressing customer's detailed technical security questions

Who You Are:

Minimum Qualifications:

• Must have Bachelors, at least 2 years of related experience or Masters + 3 years of related or demonstrated experience in Information security or Cybersecurity.
• Knowledge of technology compliance frameworks such as ISO 27001, SOC 2, ISO 27017, PCI DSS, CIS and/or OWASP App Security Testing Guidelines.

Preferred Qualifications:

• Ability to research, architect and implement security solutions involving various technologies across public cloud environment.
• In-depth understanding of domains such as IAM, secure CI/CD pipeline, Incident Management, Vulnerability Management, Cryptography.
• Excellent problem-solving and critical thinking skills.
• Capable of collaborating with cross-functional technical and business teams and varying levels of management.
• Good communication and reporting skills with ability to clearly articulate to business and engineering teams with transparency.