Lead Cybersecurity – Malware Information Sharing Platform (MISP) – Software Developer

Job Description:

Lead Cybersecurity – Malware Information Sharing Platform (MISP) – Software Developer

About the Company:

At AT&T, we’re connecting the world through the latest tech, top-of-the-line communications and the best in entertainment. Our groundbreaking digital solutions provide intuitive and integrated experiences for millions of customers across online, retail and care channels. Join our mission to deliver compelling communication experiences to customers around the world as we continue to evolve as a technology-powered, human-centered organization. As part of our team, you’ll transform the way we deliver a seamless customer experience with digital at the center of all you do. In our world, digital is much larger than just an eCommerce channel, we are transforming all channels to digitally perform as one team to create a better customer experience. As we move into 2025, the digital transformation will revolutionize the digital space and you can build a career that will propel your future.

About the Job:

Our Cybersecurity Threats Analyst Platforms and Tools team delivers forward-leaning security solutions that assist in preventing, detecting and responding to internal and external threats.

We are seeking for an experienced technologist in this role will be responsible for the engineering of the Threat Information Sharing System (TISS), including platform development & integration Team within AT&T Chief Security Office that focuses on the acquisition, normalization, transformation, integration, dissemination, and operationalization of Cyber Threat Intelligence (CTI). This professional must have a broader understanding of Cyber Security.

The expert in this role will design, develop, install, test and maintain code supporting data integrations from a variety of formats including files, database extracts and external APIs into data stores (including MySQL, NoSQL, Elastic Stack, GRAKN, Neo4j)

The candidate in this role should have an expertise in using ETL tools, techniques and programming languages like Python, PHP, R, shell (bash), C, JavaScript, regex, Cipher, and MySQL.

The candidate should have an expert level understanding of software development, security controls, enterprise technologies (including operating systems, networking, databases, web applications, cloud, big data, mobility, firewalls, content filters, intrusion prevent, web application gateways, and end point security solutions) and threat intelligence systems).

This professional must be highly organized and able to manage various stakeholder requests as they arise with strong multitasking skills and technical acumen. In addition, the professional must also be able to assist mentor team members in the designated areas of responsibility.

Experience Level: 12+ years

Location: Hyderabad /  Bengaluru

Responsibilities Include:

The overall objectives and responsibilities for this position are to:

• Develop code, scripts, tools, and utilities to address threat intelligence platform needs in a timely manner
• Read, extract, transform, stage and load data to selected tools and frameworks
• Design and develop data applications using selected tools and frameworks
• Utilize data analytic frameworks and technologies, write code, complete software development and documentation, and perform integration testing. 
• Deploy and manage Linux based applications over TISS private cloud infrastructure.
• Automate daily tasks by utilizing scripting languages like Linux bash/shell and Python. 
• Perform tasks such as writing scripts, web scraping, calling APIs, write SQL queries, etc.
• Create and execute automated plans/strategies and collaborate with engineers/architects, to validate test environments, code fixes, and designs. 

• Interact with Cybersecurity Subject Matter Experts (SMEs), analysts, and data scientists to understand how data needs to be converted, loaded and presented. 
• Investigate problems and resolve as required, including working with various internal Teams, Open-Source Communities, and Vendors

Required skills:

• Expert level experience with Python Programming (V3)
• Expert level understanding of PHP code and configuration
• Expert level experience working with Docker images and Docker Swarm
• Significant experience working with threat intelligence platforms (MISP highly preferred)
• Advanced knowledge of shell commands and scripting
• Advanced knowledge of Linux administration (Red Hat strongly preferred)
• Experience working with Data Modeling/Transformation tools
• Significant experience working with MySQL databases
• Experience working with Client-Server APIs
• Experience working with GitHub repositories
• Strong knowledge of Networking and Security Infrastructure
• Experience working in an environment where coordination with multiple teams is essential to success
• Ability to prioritize individual/group work in a high-activity and time-bound environment
• Flexible to provide coverage in US morning hours on a need-basis, and as required
• Strong written, verbal and presentation skills

Additional skills:

• Apache Web Server
• CakeResque
• Jupyter Lab/Hub
• Maltego
• OpenCTI
• ThreatQ
• NoSQL (e.g., Elastic Stack, GRAKN, MongoDB, Neo4j, StarDog)
• Working with Open-Source Projects
• GitHub
• Git and Make
• Jfrog Artifactory
• Excellent written and verbal communications skills.
• Excellent Team building and collaboration skills.
• Analytical skills for working with large volumes of data including data reduction and aggregation.
• Programming skills in a UNIX processing environment. Such as data manipulation techniques using shell (ksh, bash), [g]awk, Python, C, regex, Snort, and MySQL

Desired Skills:

• BA/BS degree in Software Development, Engineering, Data Science, cybersecurity, or a related technical field. MA/MS Degree preferred

Weekly Hours:

40

Time Type:

Regular

Location:

IND:KA:Bangalore / Epip Area, Hoodi Village, Whitefield Rd - Eqp: Plot 111/112, Epip Area, Hoodi Village, Whitefield Road

It is the policy of AT&T to provide equal employment opportunity (EEO) to all persons regardless of age, color, national origin, citizenship status, physical or mental disability, race, religion, creed, gender, sex, sexual orientation, gender identity and/or expression, genetic information, marital status, status with regard to public assistance, veteran status, or any other characteristic protected by federal, state or local law. In addition, AT&T will provide reasonable accommodations for qualified individuals with disabilities.