Principal Cybersecurity - Web Application Firewall, Proxy Web Filtering, and Secure Service Edge

Job Description:

This position requires office presence of a minimum of 5 days per week and is only located in the location(s) posted. No relocation is offered.

Join AT&T and reimagine the communications and technologies that connect the world. Our Chief Security Office ensures that our assets are safeguarded through truthful transparency, enforce accountability and master cybersecurity to stay ahead of threats. Bring your bold ideas and fearless risk-taking to redefine connectivity and transform how the world shares stories and experiences that matter. When you step into a career with AT&T, you won’t just imagine the future-you’ll create it.

Job Description:

• This is an action oriented operational role. We are seeking an experienced candidate with extensive operational experience creating and optimizing policy, troubleshooting complex enterprise technology issues, and supporting clients using the following technologies: Akamai, Barracuda, F5, Forcepoint
• Operate and maintain premise and software as a service WAFs, proxies, and Secure Service Edge (Secure Web Gateway (SWG), Cloud Access Security Broker (CASB), Zero Trust Network Access (ZTNA), and Firewall-as-a-Service (FWaaS)
• Performing web application onboarding to WAF, configuration, policy and maintenance
• Performing hands-on WAF and proxy deployment, configuration, policy and maintenance
• Integration of platforms with other security solutions and data sources
• Respond to both end user issues and security incidents
• Provides thought leadership on operational direction for WAF, proxy, SSE and associated tooling

Key Roles and Responsibilities:

• Operates and maintains Web Application Firewalls, Secure Web Gateways (Proxy), and Secure Service Edge including CASB integrations with SaaS application environments
• Creates and implements best practices for policies/rules/signatures to mitigate threats
• Integrate Applications/platforms with Identity Providers leveraging current IAM technologies for SSO support
• Develop advanced alerts/reports to meet the requirements of key stakeholders and business units
• Develops automation for security tools management and workflow integration 
• Collaborates with key stakeholders within Information Security and Engineering teams to develop specific use cases to address specific business requirements 
• Creation and implementation of custom alerting dashboards in SIEM for regular monitoring and investigations as needed
• Works extensively with Business Units/stakeholders across organizations to set up and tune WAF and proxy policies
• Aids in gathering, presenting metrics for measuring key performance and key risk indicators
• Provides ongoing support to existing monitoring capabilities and data collection systems 
• Leads troubleshooting efforts in complex issues involving multiple platforms and network flows 
• Coordinating with vendors and other technical teams on troubleshooting and escalations
• Proven track record of executing scaled security controls engineering and operations work responsibilities
• Operate within a follow the sun model and participate in an on-call rotation to ensure 24/7 response to issues and incidents.
• Track and analyze performance metrics and KPIs, identifying areas for improvement and implementing solutions to enhance efficiency, security efficacy, and ROI
• Prepare and present regular reports to senior management, highlighting the program's progress, challenges, and achievements.
• Manage and optimize security operations, including monitoring, detection, and response to security incidents. Ensure the continuous improvement of security processes and technologies.

Qualifications 

• 10+ years of experience in Cybersecurity engineering with experience configuring, operating, and managing on-premises and cloud-based Web Application Firewall, Proxy, SSE, Secure Web Gateways and CASB.
• Extensive experience providing SME level support in large, highly dynamic enterprise environment. 
• Engineering, administrative experience of Akamai, Barracuda, F5, Forcepoint, Linux, Windows systems 
• SME level experience with WAF and proxy 
• SME level experience with IdP, SSO, SAML, AD, Microsoft Entra 
• Solid understanding and practical experience with web applications, web platforms, web application security, application firewalls, frameworks and protocols with respect to application development, deployment, and operation 
• Strong understanding of TCP/IP, web protocols, networking, DNS and security concepts 
• Expertise with mainstream operating systems, web services, programming languages, network devices and attack vectors 
• Advanced expertise reviewing and analyzing log files, data correlation and packet captures 
• Script writing and programming using common shell and mainstream languages 
• Senior level understanding of PKI Technology
• Working knowledge of open source and commercial application security tools and frameworks

Educational, Certifications and Other:

• Excellent communication skills including metrics/performance documentation/presentation, technical drawing/architecture origination and modification
• Operate well under pressure and urgent circumstances
• Self-reliant and diligent in follow-through for assigned tasks
• Ability to work with a geographically disperse team
• Engaged collaborator, contributor and team player
• CISSP, CISM, SANS GIAC, GWEB or relevant cybersecurity or technical certification
• Bachelor’s degree or equivalent experience in engineering, computer science, information security/systems

Supervisory:

No.

Our Principal Cybersecurity earns between $141,300.00-$211,900.00 USD Annual, not to mention all the other amazing rewards that working at AT&T offers. Individual starting salary within this range may depend on geography, experience, expertise, and education/training.

Joining our team comes with amazing perks and benefits:  

• Medical/Dental/Vision coverage
• 401(k) plan
• Tuition reimbursement program
• Paid Time Off and Holidays (based on date of hire, at least 23 days of vacation each year and 9 company-designated holidays)
• Paid Parental Leave
• Paid Caregiver Leave
• Additional sick leave beyond what state and local law require may be available but is unprotected.
• Adoption Reimbursement
• Disability Benefits (short term and long term)
• Life and Accidental Death Insurance
• Supplemental benefit programs: critical illness/accident hospital indemnity/group legal
• Employee Assistance Programs (EAP)
• Extensive employee wellness programs
• Employee discounts up to 50% off on eligible AT&T mobility plans and accessories, AT&T internet (and fiber where available) and AT&T phone.

#LI-Onsite – Full-time office role-

 AT&T is leading the way to the future – for customers, businesses, and the industry. We're developing new technologies to make it easier for our customers to stay connected to their world. Together, we’ve built a premier integrated communications and entertainment company and an amazing place to work and grow. Team up with industry innovators every time you walk into work, creating the world you always imagined. Ready to #transformdigital with us?

Apply now!

Weekly Hours:

40

Time Type:

Regular

Location:

USA:GA:Alpharetta / 500 North Point Pkwy - Adm (Owned):500 North Point Pkwy

Salary Range:

$141,300.00 - $237,400.00

It is the policy of AT&T to provide equal employment opportunity (EEO) to all persons regardless of age, color, national origin, citizenship status, physical or mental disability, race, religion, creed, gender, sex, sexual orientation, gender identity and/or expression, genetic information, marital status, status with regard to public assistance, veteran status, or any other characteristic protected by federal, state or local law. In addition, AT&T will provide reasonable accommodations for qualified individuals with disabilities. AT&T is a fair chance employer and does not initiate a background check until an offer is made.