Overall Purpose: This career step requires expert level experience. Responsible for cyber security areas across products, services, infrastructure, networks, and/or applications while providing protection for AT&T, our customers and our vendors/partners. Works with senior team members on various projects relating to the protection of devices, customers, assets, data, information technology, and networks. Supports innovation, strategic planning, technical proof of concepts, testing, lab work, and various other technical program management related tasks associated with the cyber security programs.
Key Roles and Responsibilities: Includes ideation, testing, proof of concept and support for various cyber related projects. Analysis, of complex security issues and the development and engineering activities to help mitigate risk. Analyzes various hardware and/or software solutions recommending purchases and identifying modifications to fit AT&T's cyber security needs and that of our managed services teams. Develops policies and procedures to minimize network intrusion, malware events and vulnerability issues for internal and external customers. Applies measures to block malicious code and applications. Includes forward looking research, planning and strategy to strengthen our stance against future cyber security threats, and enhance our mitigation techniques and technology solutions. Areas of work include, but are not limited to: Cyber Incident Response, cyber product testing, cyber risk & strategic analysis, cyber research, cyber awareness & training, cyber vulnerability detection & assessment, cyber intelligence & investigation, cyber networks & systems engineering, cyber security application testing, cyber digital forensics & forensics analysis, cyber software assurance, cyber business operations & support, cyber application development & testing, cyber operational support, cyber IoT planning & testing, cyber policy & requirements & standards.
This role will be responsible for development of cybersecurity architecture and ensuring technology initiatives are implemented to meet Xandr security standards and framework. The position will provide a deep understanding of Xandr networks and architecture, deep understanding of security architecture concepts, and advise both the team and key stakeholders on the best path to securing new and existing network infrastructure. The position is responsible to help protect network boundaries, and network devices against attacks and provide security services to protect highly sensitive data and customer information. The role is expected to lead the program and drive strategies and roadmaps to secure Xandr hybrid infrastructure while collaborating with Xandr technology teams.
This team member will serve as a technical architecture expert and advisor- capable of designing and embedding network security controls into new and existing architectures. Xandr is a dynamic environment that works in a startup mode and the candidate is expected to have both technical and non-technical responsibilities including developing solutions, socializing and influencing change including cultural change in the organization including drive requirements for the program and research & develop new custom capabilities as needed. This role is expected to formalize & drive policies and standards, and work with stakeholders to secure all Xandr ad-tech platforms and internal corporate environments.
The position must understand the business requirements and challenges faced by the Xandr engineering and product team and have the knowledge and skill to adjust security technologies or develop new technologies to mitigate risks. The position must work with various technical team, as a cybersecurity SME, as well as with business & technology leadership (from SVP to Architects) to socialize & educate, implement, maintain and enhance the security posture of the infrastructure. The position is also expected to work with legal, HR and data privacy team to ensure the business meet the regulatory and compliance requirements. The candidate filling this position will serve as the primary CSO Network Security Architect for the team and will therefore be responsible for interfacing Xandr/WM/ACC technology stakeholders and CSO leadership.
Lead the roadmap, design and define the security architecture for hybrid network (on-premises and public cloud) leveraging industry best practices and steer architecture blueprints to standardized security design patterns– 25 % cloud)
Develop and influence network security solutions that balance business requirements, threat mitigation, and compliance requirements in an effort to provide effective, efficient, and appropriate risk mitigation – 20 %
Lead & perform network security assessments to ensure platforms & environments are secure and compliant to developed standards and controls – 20%.
Research & Develop technical content & capabilities, such as white papers, reference architectures and new security solutions that can be used by our customers to assist them in securing the environment – 20%.
Maintain accurate and relevant information security documentation including the development of secure infrastructure designs, procedures and standards, modifications/enhancements of the security posture, Threat Modeling – 15 %
Accreditation, Certification, or Licenses:
BS/MS degree in Computer, Engineering, or related technical field. Must have CISSP certification, and vendor certifications
Training and Special Skills:
Deep understanding of Transmission Control Protocol / Internet Protocol (TCP/IP) protocols, devices, security mechanisms and how they operate. - Strong understanding of network security architecture and engineering, threats including APT, botnets, Distributed Denial of Service (DDoS) attacks, worms, and exploits. Practical experience in Cyber Security architectures and principles - general understanding of Machine Learning and advanced analytic techniques - Strong understanding of real time and streaming data architectures - Training in Cloud Computing and container architectures and security especially in a Hybrid mult-cloud environment.- Experience with Malware (including reverse engineering) and with internal and external attacks.-Excellent team work skills for collaboration on analysis techniques, implementation, and reporting. Must be able to work independently w/o much supervision and ability collaborate & communicate cybersecurity effectively with senior engineering leaders. Strong experience with Data protection & encryption, Network Security, intrusion detection & mitigation and virtualization. The candidate must have prior experience in designing, engineering and managing highly scalable and complex global network infrastructure.
Job Contribution: Expert level technical professional. Advisor on technical knowledge and ATT technologies.
Education: Preferred Bachelor’s degree in Information Systems, Engineering, Mathematics or Cyber Security or equivalent experience.
Experience: Typically requires 8-10 years’ experience. Technical Career Pathway (TCP) role.
Job ID 2132409 Date posted 07/19/2021