Principal Cybersecurity - Proxy Web Filtering and Web Application Firewall

Job Description:

This position requires office presence of a minimum of 5 days per week and is only located in the location(s) posted. No relocation is offered.

Join AT&T and reimagine the communications and technologies that connect the world. Our Chief Security Office ensures that our assets are safeguarded through truthful transparency, enforce accountability and master cybersecurity to stay ahead of threats. Bring your bold ideas and fearless risk-taking to redefine connectivity and transform how the world shares stories and experiences that matter. When you step into a career with AT&T, you won’t just imagine the future-you’ll create it.

Job Description:

• This is an action oriented, operational role. We are seeking a candidate with extensive operational experience in creating and optimizing policy, troubleshooting complex enterprise technology issues, and supporting clients using the following technologies: Forcepoint Web Proxy, Akamai, Barracuda WAF, and F5 ASM.

• Operate and maintain premise and software as a service WAFs and web

• Performing web application onboarding to WAF, configuration, policy and maintenance

• Performing hands-on WAF and proxy deployment, configuration, policy and maintenance

• Integration of platforms with other security solutions and data sources

• Respond to both end user issues and security incidents

• Lead and coordinate troubleshooting efforts in high pressure, outage situations with leadership scrutiny

• Provides thought leadership on operational direction for WAF, proxy, SSE and associated tooling

Key Roles and Responsibilities:

• Operates and maintains Web Application Firewalls and web proxies

• Creates and implements best practices for policies/rules/signatures to mitigate threats

• Integrate Applications/platforms with Identity Providers leveraging current IAM technologies for SSO support

• Develop advanced alerts/reports to meet the requirements of key stakeholders and business units

• Develops automation for security tools management and workflow integration

• Collaborates with key stakeholders within Information Security and Engineering teams to develop specific use cases to address specific business requirements

• Creation and implementation of custom alerting dashboards in SIEM for regular monitoring and investigations as needed

• Works extensively with Business Units/stakeholders across organizations to set up and tune WAF and proxy policies

• Aids in gathering, presenting metrics for measuring key performance and key risk indicators

• Provides ongoing support to existing monitoring capabilities and data collection systems

• Leads troubleshooting efforts in complex issues involving multiple platforms and network flows

• Coordinating with vendors and other technical teams on troubleshooting and escalations

• Proven track record of executing scaled security controls engineering and operations work responsibilities

• Operate within a follow the sun model and participate in an on-call rotation to ensure 24/7 response to issues and incidents.

• Track and analyze performance metrics and KPIs, identifying areas for improvement and implementing solutions to enhance efficiency, security efficacy, and ROI

• Prepare and present regular reports to senior management, highlighting the program's progress, challenges, and achievements.

• Manage and optimize security operations, including monitoring, detection, and response to security incidents. Ensure the continuous improvement of security processes and technologies.

Qualifications

• 8+ years of experience in Cybersecurity engineering with experience configuring, operating, and managing on-premises and cloud-based Web Application Firewall and Proxy.

• Extensive experience providing SME level support in large, highly dynamic enterprise environment.

• Engineering, administrative experience of Akamai, Barracuda, F5, Forcepoint, Linux, Windows systems

• SME level experience with WAF and proxy

• SME level experience with IdP, SSO, SAML, AD, Microsoft Entra

• Solid understanding and practical experience with web applications, web platforms, web application security, application firewalls, frameworks and protocols with respect to application development, deployment, and operation

• Strong understanding of TCP/IP, web protocols, networking, DNS and security concepts

• Expertise with mainstream operating systems, web services, programming languages, network devices and attack vectors

• Advanced expertise reviewing and analyzing log files, data correlation and packet captures

• Script writing and programming using common shell and mainstream languages

• Senior level understanding of PKI Technology

• Working knowledge of open source and commercial application security tools and frameworks

Educational, Certifications and Other:

• Excellent communication skills including metrics/performance documentation/presentation, technical drawing/architecture origination and modification

• Operate well under pressure and urgent circumstances

• Self-reliant and diligent in follow-through for assigned tasks

• Ability to work with a geographically disperse team

• Engaged collaborator, contributor and team player

• CISSP, CISM, SANS GIAC, GWEB or relevant cybersecurity or technical certification

Education:

Preferred Bachelors degree in Information Systems, Engineering, Mathematics or Cyber Security or equivalent experience.

Experience:

Typically requires 8-10 years of experience. Technical Career Pathway (TCP) role.

Supervisory:

No

Our Principal Cybersecurity earns between $158,200-$237,400 USD Annual, not to mention all the other amazing rewards that working at AT&T offers. Individual starting salary within this range may depend on geography, experience, expertise, and education/training.

Joining our team comes with amazing perks and benefits:

• Medical/Dental/Vision coverage

• 401(k) plan

• Tuition reimbursement program

• Paid Time Off and Holidays (based on date of hire, at least 23 days of vacation each year and 9 company-designated holidays)

• Paid Parental Leave

• Paid Caregiver Leave

• Additional sick leave beyond what state and local law require may be available but is unprotected.

• Adoption Reimbursement

• Disability Benefits (short term and long term)

• Life and Accidental Death Insurance

• Supplemental benefit programs: critical illness/accident hospital indemnity/group legal

• Employee Assistance Programs (EAP)

• Extensive employee wellness programs

• Employee discounts up to 50% off on eligible AT&T mobility plans and accessories, AT&T internet (and fiber where available) and AT&T phone.

#LI-Onsite – Full-time office role-

Weekly Hours:

40

Time Type:

Regular

Location:

Charlotte, North Carolina

Salary Range:

$141,300.00 - $211,900.00

It is the policy of AT&T to provide equal employment opportunity (EEO) to all persons regardless of age, color, national origin, citizenship status, physical or mental disability, race, religion, creed, gender, sex, sexual orientation, gender identity and/or expression, genetic information, marital status, status with regard to public assistance, veteran status, or any other characteristic protected by federal, state or local law. In addition, AT&T will provide reasonable accommodations for qualified individuals with disabilities. AT&T is a fair chance employer and does not initiate a background check until an offer is made.

AT&T will consider for employment qualified applicants in a manner consistent with the requirements of federal, state and local laws

We expect employees to be honest, trustworthy, and operate with integrity. Discrimination and all unlawful harassment (including sexual harassment) in employment is not tolerated. We encourage success based on our individual merits and abilities without regard to race, color, religion, national origin, gender, sexual orientation, gender identity, age, disability, marital status, citizenship status, military status, protected veteran status or employment status