AT&T Principal Member of Technical Staff in Middletown, New Jersey
The Advanced Technical Support (ATS) IP Security and Control Plane Services Team provides Tier3 support for technology insertion, network reliability and the prevention and mitigation of attacks for the following technologies and infrastructure: Enterprise, IP TV, VoIP, Cloud Computing, DNS, and Mobility. The specific networks and services are Conexus, Warner Corporate Network, AIM, Cloud Computing, Mobility, Network Based Firewall and DDoS Protection services.
Responsibilities include assist security leadership on major projects, upgrades, migrations, and installations through the delivery of crucial initiatives in collaboration with security design and engineering teams. Administer and maintain various information technology network security control systems such as firewalls, intrusion detection and prevention systems, and vulnerability management. Working with architecture, engineering, and operation teams to document security device configuration and ensure that any system changes required to maintain security are implemented. Ensure that AT&T Security Policy (ASPR) standards are achieved within the scope of responsibility. Troubleshoot and resolve network security issues and maintain awareness of existing and emerging threats, assessing risks, and modifying control structure as required. Assist operations with the implementation of information security technologies. Work with ATS peers to develop automation using Ansible to deploy, modify and upgrade security appliance configurations. Work with vendors and architecture teams to investigate our security infrastructure when newly published security vulnerabilities are released by vendors. Review results of production vulnerability scans and work with architecture teams and vendors to determine mitigation plans. Work with operations to deploy corrective actions as needed.
Perform lab testing on documented procedures and risk assessment prior to production deployment. Utilize tools to monitor the health of the production environment and work with operations front line teams to address escalations for production issues. Drive vendors to define root cause for network failures/undesirable performance by demanding superior quality.
Required Qualifications -
Aproval from the Member of Technical Staff Board is required -
Bachelor or Master of Science Degree in Engineering, Mathematics, Computer Science, Information Security Operations, Networking, Cybersecurity or Technology Equivalent plus minimum of 5 years of relevant experience in Security and Data Networking. Must be available for 7x24x365 On-Call Support.
One or more appropriate security or Network certificationsare desired such as CISSP (ISC)2, CRISC, GSEC or other relevant Network certifications such as CCNA, CCNP, CCIE, JNCIS, JNCIP, or JNCIE.
Experience managing Palo Alto, Juniper and Fortinet Firewalls.
Experience with scripting languages and tools UNIX/LINUX/SHELL/PERL/EXPECT/Python and Ansible playbooks and Puppet. Wireshark or other packet capture software and packet analysis tools.
Experience mitigation security threats and vulnerabilities management and Security Scanning (Tenable or other scan engines/software).
Familiarity with Linux servers, Storage systems & iSCSI over Ethernet, VMware: vCenter appliance, ESXi, Dell Hardware: MXL Force10 switches, M640 servers, iDRAC8/9, ElasticSearch, Logstash, Kibana
Experience troubleshooting issues using Wireshark or other packet capture and analysis tools.
4-6 years of experience in network administration preferred. Functional understanding of overall computing environment (Network, Operating Systems, Client Platforms, Firewall, Cloud). Deep understanding and experience of implementing security into a complex, dynamic technology environment.
Detailed oriented & analytical; organized and meticulous regarding documentation and change management activities. Strong work ethic: ability to work independent of direct supervision. Must be a team player, drawing energy and drive in working with others (collaborative). Strong verbal and written communication. The candidate will work closely with the Labs Organizations (TechArch), Corporate Security (CSO), and Technology Planning and Engineering to define requirements for further evolving and hardening of the perimeter and infrastructure and ensuring successful ongoing deployments of virtualized architectures and maintenance of existing physical security elements. The scope of work will require industry standard best practices such as performing vulnerability assessments, penetration testing and threat modeling.
The Principal Member of Technical Staff position will require strong candidates who must be independent thinkers who will come up with ideas, not just be given ideas. Candidates must be able to work collaboratively within a small research group as well as with other teams such as Product Management, Network Engineers and Service Managers.
We expect employees to be honest, trustworthy, and operate with integrity. Discrimination and all unlawful harassment (including sexual harassment) in employment is not tolerated. We encourage success based on our individual merits and abilities without regard to race, color, religion, national origin, gender, sexual orientation, gender identity, age, disability, marital status, citizenship status, military status, protected veteran status or employment status.
- AT&T Jobs