SR TECHNICAL SPECIALIST, APPLICATION DEV - DevOps Engineer (Security Monitoring) at AT&T in Hyderabad
Skip to Main Content
Drive innovation that's felt around the world. Image: woman smiling.

SR TECHNICAL SPECIALIST, APPLICATION DEV - DevOps Engineer (Security Monitoring)

Hyderabad, India

Apply

About the Company:

At AT&T, we’re connecting the world through the latest tech, top-of-the-line communications and the best in entertainment. Our groundbreaking digital solutions provide intuitive and integrated experiences for millions of customers across online, retail and care channels. Join our mission to deliver compelling communication and entertainment experiences to customers around the world as we continue to evolve as a technology-powered, human-centered organization. As part of our team, you’ll transform the way we deliver a seamless customer experience with digital at the center of all you do. In our world, digital is much larger than just an eCommerce channel, we are transforming all channels to digitally perform as one team to create a better customer experience. As we move through 2021, the digital transformation will revolutionize the digital space and you can build a career that will propel your future.

About the Team:

The mission of our Digital Operations team is to operate a fault resilient, customer-centered, proactive DevOps team. The team is responsible for supporting systems that deliver AT&T’s customer experience, across multiple internet-facing eCommerce applications, databases, platforms and technology stacks. Our customer-journey centric Ops team is made up of Ops Engineers as well as Site Reliability Engineers (SREs) who are all focused on ensuring a highly available, resilient, performant and secure customer experience.

Job Summary:

We’re looking for an energetic self-starter Security Monitoring and Alerting Specialist with deep understanding of security first principles and security best practices (PCI, OWASP, WASC, STRIDE) and working knowledge of HTTP protocol. Our goal is to expand on the functions of our Security Operation team with resources with familiarity with investigative methodologies and technologies such as log analysis, network monitoring, network/host forensics tools. Ideally this candidate has experience in large scale incident management and Security Orchestration, Automation, and Response (SOAR).

Roles and Responsibilities:

  • Log Aggregation Analysis to identify new attack/Fraud techniques from bad actors and identify any signs of compromise
  • Monitor Akamai Logs/ APIs and Traffic to identify new security rules
  • Identify automation opportunities to mitigate prod risk and fraud
  • Orchestrate SRE Security Monitoring and Alerting required to perform
  • Monitors SIEM and analyzes security events to determine appropriate actions
  • Communicates with management on incident updates.
  • Monitors emails containing links/attachments associated with potential phishing attempts to determine appropriate actions
  • Identify and tune false positives associated with current security events
  • Document analytical steps and findings associated with security event investigations
  • Develop and update incident response playbook/runbook procedures and processes for preventative and reactive controls
  • Identify monitoring/alerting opportunities that can be leveraged with existing tools or propose new tools to fill gaps
  • Assess, triage and prioritize security detections from logs and monitoring alerts for suspicious or anomalous activity
  • Conduct and lead incident response activities (triage, communications, containment, root cause analysis, remediation)
  • Analyze HTTP request/response data and collaborate knowledge with technology teams to find root cause
  • Comprehensive documentation to track incident response actions
  • Assist technology teams in remediation activities and validation of fixes
  • Develop custom Web Application Firewall rules for addressing high priority incidents
  • Prepare briefings and reports for leadership, team members and security partners
  • Develop strong working relationships with key partners in other business units and technology teams
  • Keep up to date on newly published vulnerabilities and attacker Tactics, Techniques and Procedures (TTPs)
  • Use KPIs to drive changes in processes for incident response improvement
  • Work with leadership in aligning and executing tactical roadmap.

Shift timing (if any):

  • Shift falls typically between 6 am to 10 PM India standard time. Occasionally may have to work long hours in situations when it is needed.

Primary / Mandatory skills:

  • Overall Experience:6 - 10 Years
  • Log Aggregation Analysis to identify new attack/Fraud techniques from bad actors and identify any signs of compromise: 3 - Intermediate (practical application)
  • Monitor Akamai Logs/ APIs and Traffic to identify new security rules: 3 - Intermediate (practical application)
  • Identify automation opportunities to mitigate prod risk and fraud: 3 - Intermediate (practical application)
  • Orchestrate System Security Patching: 3 - Intermediate (practical application)
  • Monitor Akamai Logs/ APIs and Traffic to identify new security rules: 3 - Intermediate (practical application)
  • Akamai Security Center, Splunk, Dynatrace, Quantum Metrics, EFK, BurpSuite, Nessus: 3 - Intermediate (practical application)
  • Excellent written and verbal English communication skills to work in a Global team

Secondary / Desired skills:

    • Contribution to open source projects

Additional information (if any): Willing to work in Shift Duties, Willingness to learn is very important as AT&T offers excellent environment to learn Digital Transformation skills such as cloud, Big data, AI, Full stack etc.

Certifications (if any specific):

    • Any Certification related to Primary / Mandatory Skills
    • Certification in OSCP
    • Ethical Hacker Cert (CEH)

Experience:

  • Log Aggregation Analysis to identify new attack/Fraud techniques from bad actors and identify any signs of compromise
  • Monitor Akamai Logs/ APIs and Traffic to identify new security rules
  • Akamai Security Center, Splunk, Dynatrace, Quantum Metrics, EFK, BurpSuite, Nessus, any other security monitoring or incident response tooling.
  • Orchestrate System Security Patching-Experience providing data/information to business leaders
  • Experience working in a large scale technically diverse organization

LOOKING FOR EARLY JOINERS


Education Qualification: Bachelor’s/ Masters degree in Computer Science or related field

AT&T is leading the way to the future – for customers, businesses and the industry. We're developing new technologies to make it easier for our customers to stay connected to their world. Together, we’ve built a premier integrated communications and entertainment company and an amazing place to work and grow.  Team up with industry innovators every time you walk into work, creating the world you always imagined. Ready to #transformdigital with us? Apply now!


Job ID 2119946I Date posted 04/07/2021

Interesting to work with AT&T which always expected their employees to groom.

Pros

You will always get the credit for your work and also will be appreciated. Even in this much of big team you will always be recognisable.

Cons

Deadlines they are giving is very short period. So, always need to extend our times in the office and sometimes need to work on holidays.

Current Employee - QA Tester
  • One Star Rating
  • Two Star Rating
  • Three Star Rating
  • Four Star Rating
Glassdoor

LifeAtATT

This is the life – the #LifeAtATT, that is. We’re creating what’s next and having a blast doing it. You’re looking for proof? Well, see for yourself.

Back to top