This position requires office presence of a minimum of 5 days per week and is only located in the location(s) posted. No relocation is offered.

Join AT&T and help shape the future of communications and technology that connect the world. We value innovators who seek to explore the unknown and challenge the status quo. Bring your bold ideas and fearless spirit to redefine connectivity and transform how people share stories and experiences. At AT&T, you won’t just imagine the future—you’ll build it.

We are seeking a Vulnerability Scanning Engineer with a strong focus on infrastructure vulnerability scanning using Tenable Vulnerability Management. This role is responsible for managing and executing authenticated and non-authenticated vulnerability scans across enterprise infrastructure, ensuring accurate coverage, high-quality results, and operational excellence in support of vulnerability management and remediation teams.

Responsibilities:

• Manage day-to-day operations of infrastructure vulnerability scanning using Tenable Vulnerability Management (e.g., Tenable.io/Tenable.sc), including scan scheduling, execution, and monitoring.

• Configure, run, and maintain authenticated scans (credentialed checks) for Windows, Linux/Unix, and network devices, including credential management and troubleshooting failed authentications.

• Perform Linux server system administration in support of the infrastructure vulnerability scanning platform (e.g., scanner hosts), including OS hardening, patching, performance monitoring, log review, certificate management, and troubleshooting.

• Execute and tune non-authenticated scans for external and internal perspectives where applicable, ensuring safe scanning practices and minimal operational impact.

• Maintain scan coverage and accuracy through target management, asset classification, exclusions, and scanner placement considerations.

• Support vulnerability lifecycle activities by validating findings, reducing false positives, and partnering with infrastructure teams to enable effective remediation.

• Develop and maintain operational runbooks and documentation for scan standards, credential onboarding, and troubleshooting procedures.

• Produce recurring reporting and metrics on scan health, coverage, and results quality; support audit and compliance requests as needed.

• Collaborate with teams responsible for CMDB/asset inventory, identity/privileged access, networking, and patching to improve scan efficacy and remediation outcomes.

Required Skills:

• 5–7 years of cybersecurity experience, with demonstrated experience operating vulnerability scanning programs for infrastructure.

• Hands-on experience with Tenable Vulnerability Management, including scan policy configuration, scanners, targets/assets, and results analysis.

• Strong knowledge of authenticated (credentialed) scanning concepts and common credential types (local/domain accounts, SSH keys, SNMP, etc.).

• Working knowledge of Windows and Linux/Unix administration concepts (services, packages, patching, permissions) to support scan troubleshooting and validation.

• Solid understanding of networking fundamentals (TCP/IP, ports, routing, firewalls, VLANs) and how they affect scan reachability and performance.

• Ability to analyze vulnerability findings, prioritize based on risk/context, and communicate clearly with technical stakeholders.

Desired Skills:

• Experience tuning Tenable scan policies for performance and accuracy (safe checks, scan windows, throttling, exclusions, and plugin families).

• Familiarity with vulnerability management workflows and integrations (e.g., ServiceNow Vulnerability Response and CMDB/asset inventory alignment).

• Knowledge of network administration and routing protocols (e.g., BGP, OSPF, IS-IS).

• Experience with scripting/automation for scan operations and reporting (Python, PowerShell, Bash).

• Understanding of cloud and hybrid environments and related scanning approaches (e.g., IaaS workloads, segmented networks, and scanner placement).

• Relevant certifications (e.g., CompTIA Security+, Tenable certifications, GIAC, or equivalent).

• Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related field is desired (or equivalent practical experience).

• Minimum of 5–7 years of experience in cybersecurity, with emphasis on vulnerability scanning and infrastructure security operations.

• Familiarity with applying Artificial Intelligence (AI) or Machine Learning (ML) techniques in cybersecurity contexts (e.g., anomaly detection, threat hunting, behavioral analytics, or risk scoring).

Supervisor:

No

Ready to join our team? Apply today.