
AT&T Company Location New York City, NY, US
Overall Purpose
The Principal – Cybersecurity Application/Platform Security position will reside in the AT&T Chief Security Office and will be responsible for conducting threat modelling, security architecture review, secure code review, anti-malvertising and security assessments across all Xandr platforms. This role will also support vulnerability management including Bug bounty program and threat mitigation activities. Responsible for cyber security areas across products, services, platforms, and/or applications while providing protection for AT&T, our customers and our vendors/partners. Works with developers, architects, privacy & legal and senior leaders on various projects relating to the protection of devices, customers, assets, data, information technology, and networks. Supports innovation, strategic planning, technical proof of concepts, application testing, lab work, and various other technical program management related tasks associated with the cyber security programs.
See Highest Paying Cyber Security Jobs
Key Roles And Responsibilities
Includes ideation, testing, proof of concept and support for various cyber related projects. Analysis, of complex security issues and the development and engineering activities to help mitigate risk. Analyzes various software technology solutions recommending purchases and identifying modifications to fit AT&T’s cyber security needs and that of our managed services teams. Develops policies and procedures to minimize intrusions, malware events and vulnerability issues for internal and external customers. Applies measures to block malicious code and applications. Includes forward looking research, planning and strategy to strengthen our stance against future cyber security threats, and enhance our mitigation techniques and technology solutions. Areas of work include, but are not limited to: Cyber Incident Response, cyber product testing, cyber risk & strategic analysis, cyber research, cyber awareness & training, cyber vulnerability detection & assessment, cyber intelligence & investigation, cyber networks & systems engineering, cyber security application testing, cyber digital forensics & forensics analysis, cyber software assurance, cyber policy & requirements & standards.
Qualifications
Preferred Bachelor’s degree in information systems, Engineering, Mathematics or Cyber Security or equivalent experience. Typically requires 8 – 10 years of experience.
Software development background of 7+ yrs. and 5+ yrs. of cybersecurity along with experience in Java, Python, PHP, JavaScript, Go required. Deep technical knowledge in containers and container security, Ci/CD. Must have excellent communication skills to work with developer’s various technical leadership stakeholders and influence change. Experience with threat modelling, SAST, DAST, developing software in a cloud environment, secure coding practices and code review required.
See 5 Reasons Why Cyber Security Certification Is Worth It
Desired Skills
Application Penetration testing, Application Vulnerability remediation, Web Application Firewall, Splunk, Oauth2, SSO/SAML, Secrets management, Automation. Supervisory: No.
Job Category: Technology
Industry: Wireless Information Technology & Services Telecommunications
Employment Type: Full-time
Job Functions: Education Training