Senior Security Engineer

Cisco

Remote Hybrid

Quick summary

Work type: Remote
Location: Research Triangle Park, NC
Salary: $137,000–$200,500 / yr
Posted: 3 days ago
Closes: Sep 14, 2026
Nearby: 99+ roles within 25 mi

Market check

Salary context

Competitive pay

How this pay compares to similar roles

Similar $181k

This role $169k

$127k most similar roles pay here $230k

This role pays less than 58% of similar roles. Most pay $150,300–$212,343 — the shaded band above. At the midpoint, this role pays about $169k versus about $181k for comparable roles.

Based on 240 similar postings.

Employer

About Cisco

Cisco Systems is the world''s leading networking technology company, designing and manufacturing networking hardware, telecommunications equipment, and cybersecurity solutions for businesses and governments. Industry: Networking Technology & Cybersecurity

Cisco currently has 185 open roles on FindRole.

Listed pay typically runs $165,000–$241,400 across 185 roles with salary data.

Most-posted roles

View all roles at Cisco

At a glance

TL;DR · Senior Security Engineer

Apply Now Log in to save

As a Security Incident Detection Engineer at Cisco's Webex & Collaboration Cloud Platform Security organization, you will join the CCPS IDR team to develop and maintain Splunk knowledge objects, detection content, validation dashboards, and operational standards that enable reliable security incident detection and response across the Webex cloud environment. Your day-to-day responsibilities include building correlation searches, notable events, risk-based alerts, and ensuring data quality through field normalization and parsing consistency. You will collaborate with SOC teams to enhance alert fidelity and reduce false positives while working closely with platform engineering teams to define logging requirements and support detection coverage against MITRE ATT&CK and compliance frameworks. This role requires hands-on experience with Splunk Enterprise Security at scale, advanced SPL development skills, and familiarity with Git-based workflows for Splunk apps. Ideal candidates possess a deep understanding of cloud security logging, incident detection, and SOC operations, along with knowledge of relevant control frameworks such as NIST SP 800-53 and ISO/IEC 27001.

Skills

Splunk SPL Git MITRE ATT&CK NIST SP 800-53 ISO/IEC 27001 COBIT CI/CD Python PostgreSQL AWS Kubernetes

What you'll do

Build and maintain Splunk Enterprise Security correlation searches for Webex cloud environment.
Develop validation dashboards to ensure proper ingestion of security telemetry data.
Validate data onboarding quality across Webex cloud services for accuracy and compliance.
Improve alert fidelity by reducing false positives in SOC/SIEM use cases.
Define and enhance security logging requirements with platform engineering teams.

What we're looking for

Hands-on experience with Splunk Enterprise and Splunk Enterprise Security at scale.
Advanced SPL development skills including macros, lookups, stats/tstats, data models, and dashboard queries.
Experience developing and maintaining Splunk knowledge objects in a managed app or source-controlled environment.
Understanding of Splunk CIM, field extractions, props/transforms, event types, tags, and source type design.
Familiarity with cloud security logging, incident detection, threat detection logic, and SOC operations.
Knowledge of MITRE ATT&CK and other compliance frameworks like NIST SP 800-53 or ISO/IEC 27001.