Principal Cybersecurity

Job Description:

This position requires office presence of a minimum of 5 days per week and is only located in the location(s) posted. No relocation is offered.

Join AT&T and reimagine the communications and technologies that connect the world. Our Chief Security Office ensures that our assets are safeguarded through truthful transparency, enforce accountability and master cybersecurity to stay ahead of threats. Bring your bold ideas and fearless risk-taking to redefine connectivity and transform how the world shares stories and experiences that matter. When you step into a career with AT&T, you won’t just imagine the future-you’ll create it.

Join our dynamic Cyber Operations Red Team as a Principal Red Team operator. In this role, you will lead and participate in sophisticated Red Team exercises aimed at uncovering vulnerabilities across our networks, systems, applications, and processes. This Red Team operator position will require you to not only provide support on red team exercises but also take on significant portions of the work/project independently. Your role within the Cyber Operations Red Team will be focused on building, contributing to and improving a robust Red Teaming program. This will require you to collaborate with management to set strategic goals for yourself and the program. You will need to possess in-depth knowledge of security gaps and vulnerabilities and use this knowledge to align team goals with overall organizational goals to reduce our security exposure. Your testing will go beyond the vulnerabilities identified by standard tools; you are expected to be creative and innovative in your approach and in the development of new or modified tools and techniques. You will work collaboratively with other Red Team members and Security Analysts to identify security issues, characterize the cyber-attack vectors, discover any related vulnerabilities, and provide recommendations for remediation of those issues. You will continually learn of new vulnerabilities and exploit techniques and will evolve your tools and methodology to adapt to changing situations.

This position will also require you to continually advance your technical skills to keep yourself positioned as a subject matter expert in many areas of threat hunting and red teaming. This work will require deep level knowledge in the area of exploits and vulnerabilities, scripting, and a strong understanding of networking and network Protocols. You are expected to learn advanced pen testing techniques using “off the shelf” and custom created security tools. The candidate will propose algorithms that solve threat-based use cases defined by their threat hunting and red teaming. You will be responsible for reporting findings in written and verbal form and will be used to inform management, notify affected customers, advise network operations, and advise network engineering on security issues as well as recommended remediation and solutions.

The Red Team Operator will:

• Perform formal and informal targeted “Hunts” to identify vulnerabilities in cloud-hosted and web-based applications, API interfaces, databases, big data environments, networks, computer systems, mobile applications, Software Defined Networks and IoT (Internet of Things) devices and systems.
• Actively building, participating and leading Red Team exercises
• Design and create new/custom Red team tools and tests
• Employ tactics to uncover security holes (poor user security practices, weak methods and procedures, etc.)
• Determine methods that attackers could use to exploit weaknesses and logic flaws to mimic these techniques in targeted red team operations
• Research, document and discuss security findings with management, security teams and IT teams
• Provide feedback and verification as an organization fixes security issues
• Identify, review and recommend improvements for security services, system administration practices, and development/system integration methodology to improve the company’s cybersecurity posture

Qualifications

Required Skills & Experience:

• 7+ years of experience in penetration testing and red team operations
• Deep understanding of Transmission Control Protocol / Internet Protocol (TCP/IP) protocols, devices, security mechanisms and how they operate.
• Strong understanding of network security threats including APT, botnets, Distributed Denial of Service (DDoS) attacks, worms, and network exploits.
• Experience with network probing/testing/analysis tools (Nessus, nmap, burp, wireshark, etc.)
• Deep technical knowledge of Windows, UNIX and Linux operating systems as both an expert user and system administrator
• Programming skills that will be used to construct, modify, and execute testing tools including shell (ksh, bash), [g]awk, Python, PERL, regex, Java, C, C++, C#, Powershell, curl, Web application development (PHP, ASP.NET, etc.)
• Comprehensive knowledge of software security testing principles, practices, and tools, experience of vulnerability assessments in a complex environment.
• Experience with Malware (including reverse engineering) and with internal and external attacks.
• Experience or familiarity with vulnerability analysis, computer forensics tools, cryptography principles
• Excellent teamwork skills for collaboration on analysis techniques, implementation, and reporting.  Must be able to work both independently as well as effectively work in teams of individuals with a variety of skills and backgrounds.
• Excellent written and verbal communication skills and have demonstrated ability to present material to senior officials.
• Highly self-motivated requiring little direction.
• Demonstrates creative/out-of-the-box thinking and good problem-solving skills.
• Demonstrates strong ethical behavior.

Desired Skills & Experience:

• Strong knowledge of an enterprise architecture
• Ability to obtain a strong and ongoing understanding of the technical details involved in current APT threats and exploits involving various operating systems, applications and networking protocols.
• Knowledge of tactics, techniques, and procedures associated with malicious insider activity, organized crime/fraud groups and both state and non-state sponsored threat actors.
• Understanding of cloud-based architectures and highly distributed big data architectures
• Understanding of mobile android and iOS environments and app development
• Experience with application security testing tools, such as the Metasploit framework and Burp Suite
• One or more of these certifications
  • CEH: Certified Ethical Hacker
  • CPT: Certified Penetration Tester
  • CEPT: Certified Expert Penetration Tester
  • GPEN: GIAC Certified Penetration Tester
  • OSCP: Offensive Security Certified Professional

• BS/MS degree in Computer Science, Cyber Security, Engineering, or related technical field

The description provided above is not intended to be an exhaustive list of all job duties, responsibilities, and requirements. Duties, responsibilities, and requirements may change over time and according to business needs. 

Education:

Preferred Bachelors degree in Information Systems, Engineering, Mathematics or Cyber Security or equivalent experience.

Experience:

Typically requires 8-10 years of experience. Technical Career Pathway (TCP) role.

Supervisory:

No.

Our Principal Cybersecurity earns between $158,200.00-$237,400.00 USD Annual, not to mention all the other amazing rewards that working at AT&T offers. Individual starting salary within this range may depend on geography, experience, expertise, and education/training.

Joining our team comes with amazing perks and benefits:  

• Medical/Dental/Vision coverage
• 401(k) plan
• Tuition reimbursement program
• Paid Time Off and Holidays (based on date of hire, at least 23 days of vacation each year and 9 company-designated holidays)
• Paid Parental Leave
• Paid Caregiver Leave
• Additional sick leave beyond what state and local law require may be available but is unprotected.
• Adoption Reimbursement
• Disability Benefits (short term and long term)
• Life and Accidental Death Insurance
• Supplemental benefit programs: critical illness/accident hospital indemnity/group legal
• Employee Assistance Programs (EAP)
• Extensive employee wellness programs
• Employee discounts up to 50% off on eligible AT&T mobility plans and accessories, AT&T internet (and fiber where available) and AT&T phone.

#LI-Onsite – Full-time office role-

 AT&T is leading the way to the future – for customers, businesses, and the industry. We're developing new technologies to make it easier for our customers to stay connected to their world. Together, we’ve built a premier integrated communications and entertainment company and an amazing place to work and grow. Team up with industry innovators every time you walk into work, creating the world you always imagined. Ready to #transformdigital with us?

Apply now!

Weekly Hours:

40

Time Type:

Regular

Location:

USA:NJ:Middletown / S Laurel Ave - Bldg A:200 S Laurel Ave Bldg A

Salary Range:

$158,200.00 - $237,400.00

It is the policy of AT&T to provide equal employment opportunity (EEO) to all persons regardless of age, color, national origin, citizenship status, physical or mental disability, race, religion, creed, gender, sex, sexual orientation, gender identity and/or expression, genetic information, marital status, status with regard to public assistance, veteran status, or any other characteristic protected by federal, state or local law. In addition, AT&T will provide reasonable accommodations for qualified individuals with disabilities.