Information Security Engineer - IAM SOX Compliance Lead

at  Cisco Systems

WHO WE ARE

Today’s demanding business environment is more than that – it’s a period of disruption between the pandemic, global business change, and internal process complexity. For us to focus on simplicity and the best customer experience, we need great talent and the right abilities to be successful. This is now a mantra for our Cisco leadership team and for us.
Enterprise IT Security team is changing the way we run Cisco’s operations by improving the power of technology, the best of business processes. Together, we will Reimagine the Cisco experience. We are partners with CISO organization on vision, strategy and execution that continues to improve our security posture and reduce agreed risk.
Please join us and make this journey together!

BASIC QUALIFICATIONS

• Bachelor’s degree or equivalent work experience.
• 3-7+ years of experience as a Compliance Analyst, Audit role, or demonstrably similar role.
• Hands on experience with compliance & SOX evidence collection and audit documentation
• Hands on experience reporting on KPI/SLA relating to certification & compliance.

PREFERRED QUALIFICATIONS

• Python, R, or Tableau experience.
• Experience using RPA to automate repetitive tasks.
• Understanding of good UX (not UI) or “user friendliness” relating to process
• Strong plus: CISSP, CompTia Security+, or similar certification
• Serve as a liaison between IAM program and SOx, Finance, and Application Team stakeholders.
• Review IT Security compliance business process and lead improvement strategies.
• Conducting meetings and presentations to share ideas and findings.
• Implement and update procedures.
• Effectively manage competing resources and priorities
• Demonstrable advanced knowledge of Excel including configuring pivot tables, data tables, and dynamic arrays (Xlookup, Xmatch).
• Strong SQL query skills.
• Identity IAM experience with technologies (core): SailPoint IdentityIQ, SailPoint IdentityNow (Atlas), CyberArk, Okta, Active Directory. Nice to have: AWS, GCP
• Atlassian tools: Jira Cloud & Jira Align
• Proficiency with standard office tools: SharePoint, Office Applications

Lead Compliance Analyst to be SME for Identity and Access Management facilitating fulfillment of SOX controls for applications in SOx scope within the IT Security Operations portfolio.

Act as Sox Control Owner in performing Control maintenance, testing, and evidence gathering. Build and maintain work instructions for artifact creation. Partner with application teams to perform cooperative testing of end-to-end user access controls. Partner with internal audit stakeholders to root cause, document, and remediate audit findings.

• Working with and analyzing large data sets related to user access and application entitlements.
• Querying relational databases, (SQL, MySQL, Etc.)
• Crafting artifacts for SOX audit.
• Experience with RPA related to repetitive tasks such as taking screenshots, updating annotations, artifact creation would be a plus.