Senior Engineer, Cybersecurity Threat Hunting

$134,400 - $181,800/Yr

T-Mobile US - Frisco, TX

posted 3 months ago

Full-time - Mid Level
Frisco, TX
Telecommunications

About the position

The Sr Cybersecurity Engineer, Threat Hunting at T-Mobile is a pivotal role focused on identifying previously unknown cybersecurity threats and incidents through hypothesis-based hunting. This position requires a proactive approach to cybersecurity, working closely with various teams within the Cybersecurity operations, including incident response, detection engineering, vulnerability management, bug bounty, and threat intelligence. The ideal candidate will possess a solid understanding of system security design and network security standard processes, along with strong analytical and organizational skills. Effective communication and the ability to work both independently and collaboratively are essential for success in this role. In this position, the engineer will be responsible for identifying cybersecurity incidents and threats, assisting with incident response as needed, and developing content to enhance the detection capabilities within the Security Information and Event Management (SIEM) tool. The role also involves analyzing disparate data sources for security incidents and championing process improvements by recommending changes to tools, software development, or infrastructure to enhance security measures. The engineer will lead small to medium-sized projects and develop metrics as requested, while also participating in an on-call rotation that may require non-traditional working hours. A key aspect of this role is to improve process efficiency by creating and implementing innovative and sustainable changes to existing deployment methodologies.

Responsibilities

  • Identify previously unknown Cybersecurity incidents and threats by hypothesis-based hunting
  • Assist with Incident Response as necessary
  • Develop content to improve detective capabilities in Security Information and Event Management (SIEM) tool
  • Analyze disparate data sources for security incidents
  • Champion process improvements by recommending tool, software development, or infrastructure changes to enhance security
  • Lead small to medium sized projects as directed
  • Develop and deliver metrics as requested
  • Participate in on-call rotation that may involve non-traditional working hours
  • Improve process efficiency by creating and implementing creative and sustainable changes to existing deployment methodologies.

Requirements

  • Bachelor's Degree in Computer Science or Information Technology or equivalent work experience
  • 4-7 years experience with threat hunting, incident response, or other relatable cybersecurity operations functions
  • In-depth knowledge of security technologies such as telecommunication and mobile network technologies, specifically VoIP, SIP, IOS, Android, mobile device hardware, and 4G/5G security
  • Experience with Intrusion Detection systems (e.g., Checkpoint, McAfee, ISS, Snort)
  • Knowledge of Security Information and Event Management (SIEM)
  • Familiarity with network forensics techniques on Windows/Linux
  • Experience with vulnerability scanning tools (e.g., WebInspect, Nessus)
  • In-depth knowledge of networking and OS technologies including diagnostic tools, operating systems (Windows & UNIX), and networking components
  • Strong verbal and written communication skills
  • High-level network problem-solving ability
  • Ability to plan, organize and prioritize tasks to complete independently and within established time frames
  • Knowledge and experience with current cyber threats and landscape to Enterprise environments
  • In-depth knowledge of security standard processes in large-scale environments
  • Medium to advanced knowledge of programming tools (Python/Java/Perl/Shell/HTML/PHP)
  • Knowledge of federal & compliance regulations (e.g., SOX, PCI, CPNI)

Nice-to-haves

  • Licenses and Certifications Preferred: GCIH, GCFA, GCIA, CMON, GCDACertified Information Systems Security Professional (CISSP)
  • CISSP and/or CCSK and/or CCSP and/or CISA/CISM certification a plus

Benefits

  • Medical, dental and vision insurance
  • Flexible spending account
  • 401(k)
  • Employee stock grants
  • Employee stock purchase plan
  • Paid time off and up to 12 paid holidays
  • Paid parental and family leave
  • Family building benefits
  • Back-up care
  • Enhanced family support
  • Childcare subsidy
  • Tuition assistance
  • College coaching
  • Short and long term disability
  • Voluntary AD&D coverage
  • Voluntary accident coverage
  • Voluntary life insurance
  • Voluntary disability insurance
  • Voluntary long-term care insurance
  • Mobile service & home internet discounts
  • Pet insurance
  • Access to commuter and transit programs

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service