Security Engineer

About the Role We are seeking an experienced Security Engineer to design, implement, and maintain a secure, reliable CI/CD pipeline maximising GitHub actions, workflows, and automation. This role is essential in enabling software development teams to deliver secure, high-quality applications quickly and efficiently. You will combine expertise in software security with DevOps and AI integration skills, ensuring that security and automation are embedded throughout the software delivery lifecycle. Key Responsibilities Design & Enhance CI/CD Pipelines Build and maintain GitHub actions and workflows for automated builds, tests, deployments, and AI-assisted processes. Introduce new features and optimizations to improve pipeline performance, scalability, and developer experience. Integrate AI into DevSecOps Leverage AI tools for automated code reviews, vulnerability prioritization, and intelligent remediation suggestions. Embed Security in the SDLC Integrate security scanning tools (SAST, DAST, dependency checks, container security) into CI/CD workflows. Implement policies for secure code signing, artifact integrity, and vulnerability management. Governance & Compliance Ensure pipelines adhere to security standards and regulatory requirements. Maintain audit trails and reporting for compliance and risk assessments. Collaboration & Enablement Partner with development teams to deliver pipeline enhancements and new features. Act as a domain expert for GitHub Actions, AI workflows, and DevSecOps standard methodologies. Continuous Improvement Monitor pipeline health and security posture, proactively addressing issues. Research and implement emerging technologies, including AI-driven automation, to strengthen security and efficiency. Required Skills & Qualifications BS in Computer Science Demonstrated ability in software development Technical Expertise Strong experience with GitHub Actions, workflows, and CI/CD automation. Proficiency in scripting languages (e.g., Python, Bash, or PowerShell). Familiarity with containerization (Docker) and orchestration (Kubernetes). Security Knowledge Understanding of secure software development practices, OWASP Top 10, and threat modeling. Experience with security tools (e.g., SonarQube, Trivy, Snyk, Dependabot, etc.). AI & Automation Experience integrating AI-based tools into CI/CD pipelines for code analysis, anomaly detection, or workflow optimization. Knowledge of machine learning concepts and AI-driven automation in DevOps environments. DevOps & Cloud Experience with cloud platforms (AWS, Azure, or GCP) and infrastructure-as-code (Terraform, Ansible). Soft Skills Strong problem-solving abilities and attention to detail. Excellent interpersonal skills for cross-team collaboration. Preferred Qualifications Certifications such as CISSP, CSSLP, or AWS/Azure Security Specialty. Experience with GitHub features (e.g., reusable workflows, environments, secrets management). Background in AI-driven security automation. Why Cisco? At Cisco, we’re revolutionizing how data and infrastructure connect and protect organizations in the AI era – and beyond. We’ve been innovating fearlessly for 40 years to create solutions that power how humans and technology work together across the physical and digital worlds. These solutions provide customers with unparalleled security, visibility, and insights across the entire digital footprint. Fueled by the depth and breadth of our technology, we experiment and create meaningful solutions. Add to that our worldwide network of doers and experts, and you’ll see that the opportunities to grow and build are limitless. We work as a team, collaborating with empathy to make really big things happen on a global scale. Because our solutions are everywhere, our impact is everywhere. We are Cisco, and our power starts with you.