• Design and implement secure cloud architectures across cloud platforms (e.g., AWS, GCP) • Enable and lead teams to innovate and develop strong security programs and overall strategies within the domains of Cloud Security, Identity Access Management, Security Operations, and Product Security. • Provide technical leadership of Security products from conception to operation, ensuring they are built to the highest quality standards. • Understand and maintain knowledge of emerging security technologies, advances in agentic AI, and their applications to consumer products • Collaborate closely with other teams to ensure that security is a core consideration with all decisions. • Nurture an engineering team focused on impact, fostering a culture of collaboration, trust, ownership, and open communication. • Create a high-performance team through delivery of clear performance expectations and continuous feedback, while setting a strong bar for engineering standards and high quality decision making.

• Perform vulnerability assessments on OT assets including PLCs, HMIs, SCADA systems, historians, and industrial networks • Support asset inventory and vulnerability tracking for OT environments • Analyse vulnerability scan results and advisories (ICS-CERT, vendors) to determine risk and impact • Assist in risk-based prioritization and remediation of identified vulnerabilities as per production constraints • Understanding of security-related operational processes in the OT-ICS environments

• Monitor OT networks using specialized OT SOC and network monitoring tools • Analyse alerts from OT security monitoring solutions (e.g., Nozomi, Claroty, Tenable.ot, Defender for IoT, etc.) • Identify suspicious activities, anomalies, and indicators of compromise (IoCs) affecting ICS environments • Perform Level 2 alert triage and investigation for OT incidents • Support for OT cybersecurity incident response activities • Understanding of security-related operational processes in the OT-ICS environments • Understanding of technologies (typical assets, communication protocols, technical architectures) utilized by OT-ICS systems and networks • Knowledge of cyber / information security concepts, risk and controls concepts • Understanding of aspects of functional safety (SIS) • Knowledge of TCP/IP, concepts of OSI layer and protocols, networking and security concepts • Knowledge of the technical security solutions utilized within OT-ICS systems and networks • Knowledge of OS (Windows / Linux) security, Database security • Prior experience working alongside delivery leads and architects to Identify and manage risks is a plus

Role Description This is a fully remote role based in the United States. As a member of Talos, you will support cutting edge detection and mitigation technologies. You will work towards keeping yourself abreast of the latest industry threat creation and defense techniques, and you will develop proof-of-concept solutions, provide domain expertise, and guide implementation to facilitate successful security posture in Cisco’s products. If you enjoy vulnerability research, crash analysis, reverse engineering, and researching new techniques and writing tools to automate these tasks, this job is for you! Your Impact - Security research including development of tools for vulnerability analysis and mitigation. - Development of static and run-time analysis tools to figure out root cause and input conditions related to a vulnerability. - Vulnerability triage and proof of concept exploit development to support the creation of detection content. - Write detailed technical reports, summaries, and testing methodologies. - Research emerging technologies, protocols, and testing methodologies. - Develop proof of concept exploits for testing vulnerability mitigations. - Perform patch analysis to find and trigger vulnerabilities. - Reverse engineer binary applications, protocols, and formats. - Analyze vulnerabilities and emerging security threats and technologies. - Provide critical security focused expertise to engineering organizations. Qualifications - 3+ years of experience in vulnerability research or a closely related area such as exploit or mitigation development on Linux Systems. - 3+ years’ experience with C/C++, and a scripting language (e.g., Python), and assembly (e.g., x86/x64, ARM, etc.). Requirements - Bachelor’s degree or equivalent in Computer Science, Electrical Engineering, Cyber Security, or other tech-related degree. - Experience with Linux internals. - Experience with binary auditing and reverse engineering, and with related tools such as IDA Pro, Binary Ninja, Ghidra, etc. and with plugin development. - Experience with common vulnerabilities and methods of exploitation, such as memory corruption, web application exploitation, file format vulnerabilities, protocol-based weaknesses, etc. - Knowledge of common file formats, network protocol structures, and enterprise networking architecture. - Ability to work independently with minimum supervision and to tackle additional tasks as the need arises. Benefits - Medical, dental and vision insurance. - 401(k) plan with a Cisco matching contribution. - Paid parental leave. - Short and long-term disability coverage. - Basic life insurance. - 10 paid holidays per full calendar year, plus 1 floating holiday for non-exempt employees. - 1 paid day off for employee’s birthday, paid year-end holiday shutdown, and 4 paid days off for personal wellness determined by Cisco. - Non-exempt employees receive 16 days of paid vacation time per full calendar year. - Exempt employees participate in Cisco’s flexible vacation time off program. - 80 hours of sick time off provided on hire date and each January 1st thereafter. - Optional 10 paid days per full calendar year to volunteer.