This position requires office presence of a minimum of 5 days per week and is only located in the location(s) posted. No relocation is offered.

Join AT&T and reimagine the communications and technologies that connect the world. Our Chief Security Office ensures that our assets are safeguarded through truthful transparency, enforce accountability and master cybersecurity to stay ahead of threats. Bring your bold ideas and fearless risk-taking to redefine connectivity and transform how the world shares stories and experiences that matter. When you step into a career with AT&T, you won’t just imagine the future-you’ll create it.

We are seeking a Senior Cybersecurity Engineer to secure and modernize our enterprise mobile and endpoint security environment. The initial focus of this role is mobile device security (iOS and Android), including MDM policy deployment, mobile incident response, and persona‑based compliance controls.

Over time, the role will expand to support broader endpoint security platforms such as EDR, DLP, VPN, secure web access, and endpoint visibility platforms. Across both mobile and endpoint domains, the role emphasizes AI‑enabled monitoring, analytics, triage, automation, and reporting to improve security outcomes while reducing operational overhead.

This is a hands‑on engineering role operating at enterprise scale, working closely with Security Operations, Endpoint, IT, and business teams.

Key Responsibilities

Mobile Security Operations (Primary / Initial Focus)

• Monitor, investigate, and respond to mobile device security events and incidents, including policy violations, compliance drift, and emerging threats.
• Deploy, configure, and tune mobile security policies using MDM/UEM platforms (e.g., Intune, Workspace ONE, MobileIron).
• Develop, test, and maintain persona‑based mobile security baselines and compliance rules for office, field, and remote users.
• Analyze mobile telemetry, compliance posture, and alert data to identify risk, drive remediation, and continuously improve control effectiveness.
• Leverage AI‑ and ML‑enabled workflows (including LLM‑assisted analysis) to improve mobile security operations, including:
  • Automating intake, enrichment, and triage of mobile application approval requests by extracting key metadata (e.g., publisher, permissions, SDKs, data types) and mapping findings to defined risk criteria.
  • Generating structured security and business‑justification summaries to accelerate review cycles, improve consistency, and enhance user experience.
• Design and maintain AI‑driven mobile app approval orchestration, using policy‑as‑code and automated checks to:
  • Fast‑track or auto‑approve low‑risk requests
  • Escalate high‑risk or exception cases for deeper review
  • Integrate with MDM platforms, app reputation sources, and ticketing/workflow systems to reduce administrative overhead and approval timelines.
• Apply AI‑assisted prioritization techniques to reduce alert noise, focus on highest‑risk issues, and scale mobile security operations effectively in a high‑volume environment.

Endpoint Security Platforms (Expanded / Long‑Term Scope)

Support and help engineer endpoint security controls for:

• Endpoint Detection & Response (EDR) (e.g., SentinelOne, Microsoft Defender, Cortex XDR)
• Data Loss Prevention (DLP) (e.g., Microsoft Purview/Defender, Forcepoint)
• Remote Access VPN (e.g., Palo Alto GlobalProtect or equivalent)
• Proxy / Secure Web Access controls (endpoint agent and policy enforcement where applicable)
• Endpoint visibility, posture, and response platforms (e.g., Tanium or equivalent endpoint management and telemetry platforms)

Additional responsibilities include:

• Provide Tier‑3 engineering support, including troubleshooting, policy tuning, exclusions, performance analysis, and vendor escalation.
• Standardize endpoint security baselines and deployment patterns to ensure consistent control coverage and user experience.
• Extend and adapt AI‑driven intake, enrichment, and approval workflows established in Mobile Security Operations to endpoint security use cases, including:
  • Automated triage of endpoint security exceptions and access requests
  • Correlation of endpoint posture, telemetry, and behavioral signals to defined risk criteria
  • Generation of structured risk and justification summaries to support faster, more consistent decisions
• Design and maintain policy‑as‑code and AI‑assisted approval orchestration for endpoint controls, enabling:
  • Fast‑track handling of low‑risk exceptions
  • Escalation of high‑risk cases for engineering or security review
  • Integration with EDR, DLP, VPN, proxy, endpoint visibility platforms, and ticketing systems to reduce operational friction and manual effort
• Apply AI‑assisted techniques for alert correlation, risk scoring, trend analysis, and control drift detection to continuously improve endpoint security operations.

AI‑Enabled Security Modernization & Automation (Cross‑Cutting)

• Apply AI and analytics across mobile and endpoint security operations, including:
  • AI‑assisted alert enrichment, correlation, and triage
  • Risk scoring based on device posture, compliance, vulnerabilities, and behavioral signals
  • Trend analysis for control coverage, health, drift, and recurring incidents
  • Automated operational, compliance, and executive‑level reporting
• Develop or support automation using APIs and scripting to:
  • Improve policy deployment and exception handling
  • Accelerate incident response actions
  • Reduce repetitive manual tasks and administrative overhead

Cross‑Functional Collaboration & Operational Excellence

• Partner with Security Operations, Endpoint, IT, and business teams to align security controls with operational needs.
• Translate technical security requirements into clear, actionable guidance for technical and non‑technical stakeholders.
• Maintain runbooks, standards, and operational documentation, leveraging AI‑enabled tools to keep content current and consistent.
• Support continuous improvement through root cause analysis, metrics, and feedback loops.

Experience & Skills

Required

• 3+ years of experience in mobile security, endpoint security, or enterprise endpoint engineering.
• Hands‑on experience with MDM/UEM platforms supporting iOS and Android.
• Experience supporting at least one endpoint security technology (EDR, DLP, VPN, proxy/web, or endpoint visibility platforms).
• Strong understanding of endpoint operating systems (Windows, iOS, Android; macOS/Linux a plus).
• Proven troubleshooting and analytical skills in large enterprise environments.
• Strong written and verbal communication skills.

AI & Automation Experience (Required or Strongly Preferred)

• Experience using AI, analytics, or automation to improve security operations or IT workflows.
• Practical exposure to:
  • Alert triage and signal correlation
  • Risk scoring or posture analysis
  • Trend analysis and operational reporting
  • Documentation or support automation
• Ability to apply AI responsibly and pragmatically to improve security outcomes and reduce operational friction.

Preferred Qualifications

• Experience supporting 10,000+ endpoints or mobile devices.
• Familiarity with compliance or regulatory requirements impacting endpoint and mobile security (e.g., GDPR, HIPAA).
• Scripting or automation experience (e.g., PowerShell, Python, REST APIs).
• Security or platform certifications (e.g., CompTIA Security+, Microsoft Security certifications, vendor‑specific endpoint, mobility, or Tanium certifications).

Supervisor:

No

Our Senior Cybersecurity earns between $128,400-$192,600 USD Annual not to mention all the other amazing rewards that working at AT&T offers. Individual starting salary within this range may depend on geography, experience, expertise, and education/training.  

Joining our team comes with amazing perks and benefits:

• Medical/Dental/Vision coverage  
• 401(k) plan  
• Tuition reimbursement program  
• Paid Time Off and Holidays (based on date of hire, at least 23 days of vacation each year and 9 company-designated holidays)  
• Paid Parental Leave  
• Paid Caregiver Leave  
• Additional sick leave beyond what state and local law require may be available but is unprotected  
• Adoption Reimbursement  
• Disability Benefits (short term and long term)  
• Life and Accidental Death Insurance  
• Supplemental benefit programs: critical illness/accident hospital indemnity/group legal  
• Employee Assistance Programs (EAP)  
• Extensive employee wellness programs  
• Employee discounts up to 50% off on eligible AT&T mobility plans and accessories,
• AT&T internet (and fiber where available) and AT&T phone.

#LI-Onsite – Full-time office role-

Weekly Hours:

Time Type:

Location:

Salary Range:

It is the policy of AT&T to provide equal employment opportunity (EEO) to all persons regardless of age, color, national origin, citizenship status, physical or mental disability, race, religion, creed, gender, sex, sexual orientation, gender identity and/or expression, genetic information, marital status, status with regard to public assistance, veteran status, or any other characteristic protected by federal, state or local law. In addition, AT&T will provide reasonable accommodations for qualified individuals with disabilities. AT&T is a fair chance employer and does not initiate a background check until an offer is made.