Sr Engineer, Cybersecurity

At T-Mobile, we invest in YOU  Our Total Rewards Package ensures that employees get the same big love we give our customers.  All team members receive a competitive base salary and compensation package - this is Total Rewards. Employees enjoy multiple wealth-building opportunities through our annual stock grant, employee stock purchase plan, 401(k), and access to free, year-round money coaches. That's how we're UNSTOPPABLE for our employees

Job Responsibilities:

• Develops, and implements advanced security strategies, tools, and technologies to protect against cyber threats and vulnerabilities

• Identifies proactively security risks and deploys effective mitigation measures to safeguard the company's systems and data

• This role will collaborate closely with cross-functional teams across Cybersecurity, Networking, Architecture, and Application Engineering to deliver secure, scalable, and resilient operational capabilities throughout the environment

• Builds, new detection capabilities based on research of new attack techniques, develops content to improve detective capabilities in Security Information and Event Management (SIEM) tool and maintains, tunes, and sunsets existing detection capabilities.
• Works with system owners, SIEM team, and CSOC to onboard new data sources, investigate incidents for Cyber Incident Response Team (CIRT) and participates in Cyber Incident Response Team (CIRT) rotation that may involve non-traditional working hours.
• Responds to network security incidents to promptly mitigate damage or restore service and champion the process, recommending tool, software development, or infrastructure changes to improve or enhance security.

Qualifications: (Required)

• Bachelor's Degree plus 5 years of related work experience OR Advanced degree with 3 years of related experience (relevant experience in lieu of degree might be considered).

• Acceptable areas of study include Computer Science or Information Technology.

Preferred Experience:

• 4-7 years' experience with security-related software and/or business process design

• 4-7 years' experience in technical project management and leading cross-functional solution design teams

• 4-7 years' expertise in network  information security, including Firewall policy design, SSL Certificate management, and vulnerability analysis  mitigation

• Zero Trust technologies including Zscaler, Illumio, Island Secure Browser, Akamai WAF/Bot Manager, and modern endpoint security controls.

• Two to four years experience configuring and operating WAF (Akamai, Imperva, Cloudflare) load balancers (ex – A10, F5), firewalls (ex – CheckPoint), Familiarity (hands on experience preferred) Venafi, MDM (ex - Mobile Iron), Cloud (ex - AWS, Azure), Malware Protection (ex -FireEye), Advanced Persistent Threats (ex - Damballa), Privileged Accounts (ex – CyberArk), SIEM (ex – Sentinel), Log & Event (ex – Splunk), Intrusion IDS/IPS (ex – Symantec) , Cloud Platform (ex – PCF, Docker), Scanning (ex – Qualys), AppSec (ex - Veracode)

Knowledge, Skills and Abilities:

• Cybersecurity (required)

Advanced understanding of security architecture, security technologies, systems design, integration, and networking.

• Problem Solving (required)

Innovative problem-solving skills with the proven ability to exercise flexibility and judgment.

• Communication (required)

Excellent executive communication skills (oral and written) including presentation skills and demonstrated ability to present at all organizational levels.

• Building Relationships (preferred)

Proven ability to build relationships, engage and influence others, work with a diverse internal and international user community, as well as strategic partners.

• Negotiation (preferred)

Strong influence and negotiation skills; ability to achieve consensus and build effective working relationships in a decentralized environment.

License/Certification:

• Certified Information Systems Security Professional (CISSP)

An advanced-level certification for IT pros serious about careers in information security. Offered by (ISC)², CISSP is designed to prove expertise in designing, implementing, and managing a best-in-class cybersecurity program.

• Certified Information Security Manager (CISM)

Offered by ISACA, this certification is for management-focused IT professionals who are responsible for developing, managing, and overseeing information security systems in enterprise-level applications, or for developing best organizational security practices.

• Certified in Risk & Informational Systems Control (CRISC)

Provided by ISACA, CRISC is aimed at IT professionals, project managers, and others whose job it is to identify and manage risks to IT and the business.

The pay range above is the general base pay range for a successful candidate in the role. The successful candidate's actual pay will be based on various factors, such as work location, qualifications, and experience, so the actual starting pay will vary within this range.

At T-Mobile, our benefits exemplify the spirit of One Team, Together A big part of how we care for one another is working to ensure our benefits evolve to meet the needs of our team members. Full and part-time employees have access to the same benefits when eligible. We cover all of the bases, offering medical, dental and vision insurance, a flexible spending