Information Security Engineer, Staff (Westfields) at AT&T Careers - AT&T Careers
Skip to Main Content

Connect our nation to powerful possibilities.

Westfield Network Program

Ready to join a dedicated team of experts supporting a program which provides a broad range of enterprise network services? We’re connecting cleared professionals to challenging opportunities and we want your expertise as a part of our future.

Information Security Engineer, Staff (Westfields)

Chantilly, Virginia

Apply
Job Description: Seeking experienced security incident response operations analysts to manage confidentiality, integrity, and availability of internal and customer-facing networks and protection of vital information from cyber adversaries. This position will involve cybersecurity incident response threat validation and reporting, incident and threat coordination and communication, participation in the development of cyber analysis growth and improvement opportunities and advisory boards, extensive writing and briefing opportunities, and developing reports and risk assessments for several government programs.

  • The ideal candidate must be a self-starter, customer-focused, team player, and be able to coordinate and collaborate on multiple issues simultaneously with many stakeholders. 
  • Candidate must have relevant networking experience (e.g. TCP/IP stack, DNS, BGP, metadata, IDS/IPS) and be able to serve as a Subject Matter Expert in security event identification, known threat validation and analysis, and network vulnerability analysis and reporting.
  • Candidates must have expertise in security information and event management tools, collecting and analyzing host-based (Windows and Linux) and network-based data, using Computer Network Defense or forensic tools, gathering and interpreting information, performing Internet research, identifying mitigation strategies, and effectively communicating results.
  • Should have demonstrated analytic ability to discover unknown, suspicious or exploitation activity and analyze exploitation opportunities and expertise to evaluate and recommend information security enhancements, product upgrades, and tools to ensure minimal exposures.
  • Excellent communications skills, that include the ability to provide formal documentation of analysis and/or research results to include briefings, reports, writing, training of lower tiers, and editing at a technical/professional level, are required.
  • Candidates should possess a bachelor’s degree, as a minimum, in a related field such as math, science, computing, or engineering.
  • A minimum of 5 years of relevant cybersecurity experience is required.
  • Must be flexible with work hours and willing to work shifts when required to meet mission needs.


Prerequisites: / Qualifications: 
The Information Security Engineer Staff can be an entry level or Junior job with 0-5 or more years of Information Security Engineering/Cyber Network Defense (CND)/security incident handling expertise within a security operations center.  For 8570 compliance, must have or be able to obtain a Security+ CE, CAP, GISF, or GSLC within 6 months.

Candidates should be methodical and prolific writers with acute attention to detail. Understanding of government Tier 2 security operations center roles and responsibilities and CND playbooks or incident response plans related to security operations are desired. Candidate should have relevant networking experience (e.g. TCP/IP stack, DNS, BGP, metadata, IDS/IPS) and be able to coordinate with other security teams in areas such as security event identification, known threat validation and analysis, and network vulnerability analysis and reporting. Security+, GCIA, CEH, CIH, or CISSP certification is desired. Security operations experience with Splunk Enterprise Security in the role of incident responder is desired. Incident handling with security operations center expertise supporting customer-facing elements and internal security information management systems. Prior experience with open source vulnerability tools such as nmap, autoscan, Nessus, Wireshark, snort, etc. is desired. Understanding of government Tier 2 security operations center roles and responsibilities, CND playbooks and incident response plans, and business continuity plans related to security operations are desired.

Required Tools and Skills: Splunk, Splunk Enterprise Security, Incident Response, Windows, Linux, Networking.   

Required Clearance: U. S. Citizen.  TSSCI with Polygraph required. Must have an active or reinstatable TSSCI with Polygraph.



Job ID 1917892 Date posted 04/11/2019

AT&T a good place to be

Pros

I believe in AT&T and know they are at the edge of technology. The company believes in their people and offers all kinds of training to enable us to take on new jobs and to stay at the front of technology. The software defined network which we are building is the newest technology and AT&T has been involved since early 2000s. You have a great deal of autonomy at AT&T as long as you get the job done. You have the ability to do different jobs and to be challenged at all times.

Cons

I really have little negative to say about AT&T I have worked here for 35 years on March 23rd of 2016.

Current Employee - PROFESSIONAL-NETWORK DESIGN ENGINEER+
  • One Star Rating
  • Two Star Rating
  • Three Star Rating
  • Four Star Rating
Glassdoor

LifeAtATT

This is the life – the #LifeAtATT, that is. We’re creating what’s next and having a blast doing it. You’re looking for proof? Well, see for yourself.

Back to top