Job Description:

Join AT&T and reimagine the communications and technologies that connect the world. Our Chief Security Office ensures that our assets are safeguarded through truthful transparency, enforce accountability and master cybersecurity to stay ahead of threats. Bring your bold ideas and fearless risk-taking to redefine connectivity and transform how the world shares stories and experiences that matter. When you step into a career with AT&T, you won’t just imagine the future-you’ll create it.

About the Job:

As an experienced professional, you will work as a member of the Cyber Security Hunt Team to engage in targeted security testing to uncover vulnerabilities in networks, systems and applications.  The testing will go beyond the vulnerabilities identified by standard tools; the candidate is expected to be creative and innovative in their approach and in the development of new or modified tools and techniques. The work will also have strong concentrations doing Red Team activities and actively participating in Red Team exercises. The candidate will work in a collaborative manner with other Hunt team members and Security Analysts to identify security issues, characterize the cyber-attack vectors, discover any related vulnerabilities, and provide recommendations for remediation of those issues.  The candidate will be required to continually learn of new vulnerabilities and exploit techniques and will evolve their tools and methodology to adapt to changing situations. The selected candidate will be responsible for reporting findings in written and verbal form. Results of analysis will be used to inform management, notify affected customers, advise network operations, and other business units on security issues as well as recommended remediation and solutions.

The Hunt Team Analyst will:

• Perform formal and informal targeted “Hunts” to identify vulnerabilities in cloud-hosted and web-based applications, API interfaces, databases, big data environments, networks, computer systems, mobile applications, Software Defined Networks and IoT (Internet of Things) devices and systems.

• Actively help to build and participate in Red Team exercises

• Design and create new/custom hunting tools and tests to support structured hunts and Red team work

• Employ tactics to uncover security holes (poor user security practices, weak methods and procedures, etc.)

• Determine methods that attackers could use to exploit weaknesses and logic flaws and identify counter-measures to thwart attacks

• Research, document and discuss security findings with management, security teams and IT teams

• Provide feedback and verification as an organization fixes security issues

Qualifications:

• BS/MS degree in Computer Science, Cyber Security, Engineering, or related technical field preferred and 3-5 years of related experience.

• Deep understanding of Transmission Control Protocol / Internet Protocol (TCP/IP) protocols, devices, security mechanisms and how they operate.

•  Must be familiar with a wide variety of network and security data and tools such as packet decodes, system and application exploits.

• Strong understanding of network security threats including APT, botnets, Distributed Denial of Service (DDoS) attacks, worms, and network exploits.

• Experience with network probing/testing/analysis tools (Nessus, nmap, burp, wireshark, etc.)

• Deep technical knowledge of Windows, UNIX and Linux operating systems as both an expert user and system administrator

• Programming skills that will be used to construct, modify, and execute testing tools including shell (ksh, bash), [g]awk, Python, PERL, regex, .NET Programming, Java, C, C++, C#, PowerShell, curl, Web application development (PHP, ASP.NET, etc.)

• Comprehensive knowledge of software security testing principles, practices, and tools, experience of vulnerability assessments in a complex environment.

• Experience or familiarity with vulnerability analysis, computer forensics tools, cryptography principles

• Excellent teamwork skills for collaboration on analysis techniques, implementation, and reporting.  Must be able to work both independently as well as effectively work in teams of individuals with a variety of skills and backgrounds.

• Excellent written and verbal communication skills and have demonstrated ability to present material to senior officials.

• Requires Daily Office Presence (3-5 days a week) at one of the listed locations. No relocation assistance is provided.

Desired Skills & Experience:

• Strong knowledge of an enterprise architecture

• Ability to obtain a strong and ongoing understanding of the technical details involved in current APT threats and exploits involving various operating systems, applications and networking protocols.

• Knowledge of tactics, techniques, and procedures associated with malicious insider activity, organized crime/fraud groups and both state and non-state sponsored threat actors.

• Understanding of cloud-based architectures and highly distributed big data architectures

• Experience with application security testing tools, such as the Metasploit framework and Burp Suite

• One or more of these certifications

  • CEH: Certified Ethical Hacker

  • CPT: Certified Penetration Tester

  • CEPT: Certified Expert Penetration Tester

  • GPEN: GIAC Certified Penetration Tester

  • OSCP: Offensive Security Certified Professional

Our Senior Cybersecurity earns between $ 116,700.00 - $196,100.00 USD Annual, Not to mention all the other amazing rewards that working at AT&T offers. Individual starting salary within this range may depend on geography, experience, expertise, and education/training.

Joining our team comes with amazing perks and benefits:

• Medical/Dental/Vision coverage

• 401(k) plan

• Tuition reimbursement program

• Paid Time Off and Holidays (based on date of hire, at least 23 days of vacation each year and 9 company-designated holidays)

• Paid Parental Leave

• Paid Caregiver Leave

• Additional sick leave beyond what state and local law require may be available but is unprotected

• Adoption Reimbursement

• Disability Benefits (short term and long term)

• Life and Accidental Death Insurance

• Supplemental benefit programs: critical illness/accident hospital indemnity/group legal

• Employee Assistance Programs (EAP)

• Extensive employee wellness programs

• Employee discounts up to 50% off on eligible AT&T mobility plans and accessories, AT&T internet (and fiber where available) and AT&T phone

AT&T is leading the way to the future – for customers, businesses and the industry. We're developing new technologies to make it easier for our customers to stay connected to their world. Together, we’ve built a premier integrated communications and entertainment company and an amazing place to work and grow. Team up with industry innovators every time you walk into work, creating the world you always imagined. Ready to #transformdigital with us? Apply now!

Weekly Hours:

Time Type:

Location:

Salary Range:

It is the policy of AT&T to provide equal employment opportunity (EEO) to all persons regardless of age, color, national origin, citizenship status, physical or mental disability, race, religion, creed, gender, sex, sexual orientation, gender identity and/or expression, genetic information, marital status, status with regard to public assistance, veteran status, or any other characteristic protected by federal, state or local law. In addition, AT&T will provide reasonable accommodations for qualified individuals with disabilities.