Sr. Engineer, Cybersecurity

$134,400 - $181,800/Yr

T-Mobile US - Bellevue, WA

posted 4 months ago

Full-time - Mid Level
Bellevue, WA
Telecommunications

About the position

Be unstoppable with us! T-Mobile is synonymous with innovation—and you could be part of the team that disrupted an entire industry! We reinvented customer service, brought real 5G to the nation, and now we're shaping the future of technology in wireless and beyond. Our work is as exciting as it is rewarding, so consider the career opportunity below as your invitation to grow with us, make big things happen with us, above all, #BEYOU with us. Together, we won't stop! The Cybersecurity Strategy team, in our Cyber Transformation Office, is seeking a Cybersecurity Engineer to join our growing Data Protection team. This role will support the creation of data protection strategies and delivery of data protection technologies in an agile environment at the largest scale. We are looking for an accomplished Senior Cybersecurity Engineer with a strong background in Cloud Platforms such as AWS and Azure, proficiency in CI/CD tools like Gitlab, and expertise in Config Management tools such as Helm and Terraform. The ideal candidate will possess a deep understanding of Kubernetes architecture, container orchestration, deployment, and management in cloud-native environments, experience with monitoring tools including Prometheus, Grafana, and Elk Stack, possess scripting proficiency in Python, Bash, and knowledge of Security Practices like ISTIO, Network Policies, Secrets Management, and cryptographic key management systems. This role demands a comprehensive understanding of full-stack system administration. The successful candidate must be self-motivated, solve problems under pressure, pay attention to detail and have operations experience maintaining robust and highly available systems while ensuring confidentiality, integrity, and availability.

Responsibilities

  • Leads security, compliance, and risk assessments on projects throughout project lifecycle.
  • Improves process efficiency by crafting and implementing creative and sustainable changes to existing deployment methodologies.
  • Leads the identification of security needs & recommends plans/resolutions.
  • Implements, tests & monitors info security improvements.
  • Maintains visibility inside & outside of information security at the People management level.
  • Collaborates with groups such as application support, engineering ops, finance, privacy, risk management, etc.
  • Understands and supports security policy lifecycle throughout, including intake, creation, review, approval, implementation, publishing, communication & maintenance.
  • Implements security projects driven by groups both internal and external to info security.
  • Mentors, peers and junior team members in security technologies, enterprise solution design and facilitation and effective customer interaction.
  • Experience with implementation of various threat modeling approaches pertaining to one or more of the following STRIDE, PASTA, TRIKE, ATTACK TREE, DREAD, KILL CHAIN, CAPEC, Mobile Application threat model, Cyber Threat Tree, and data flow diagram.
  • Subject matter expert in multiple facets of network & information security, including Firewall policy design, SSL Certificate management, vulnerability analysis & mitigation, and other topics as assigned.
  • Advanced understanding of IP/Security solutions & technologies applicable to the Wireless Network Architecture.
  • Experience with the analysis of underlying technologies that form the solution necessary for the application of threat identification, analysis, and thread model design.

Requirements

  • Bachelor's Degree in Computer Science or Information Technology.
  • 4-7 years' experience in info security technology or related field.
  • Experience with incident handling for security breaches.
  • Expert in security subject areas.
  • 2-4 years' technical project management experience.
  • Experience with high level design architecture, security technologies, networking, web services and SOA.
  • Understanding of encryption, obfuscation, tokenization technologies.

Nice-to-haves

  • Medium to advanced knowledge of Thales data security products.
  • Medium to advanced knowledge of Garantir key management products.
  • Knowledge of federal & compliance regulations e.g. SOX, PCI & CPNI.
  • Familiarity with load balancers (ex - A10, F5), firewalls (ex - CheckPoint), Venafi, MDM (ex - Mobile Iron), Cloud (ex - AWS, Azure), Malware Protection (ex -FireEye), Advanced Persistent Threats (ex - Damballa), Privileged Accounts (ex - CyberArk), SIEM (ex - ArcSight), Log & Event (ex - Splunk), Intrusion IDS/IPS (ex - Symantec), Cloud Platform (ex - PCF, Docker), Scanning (ex - Qualys), AppSec (ex - Veracode).
  • Strong understanding of T-Mobile's network elements and how they work together (EIT, Engineering & 3rd Party).
  • Strong presentation skills to large and small audiences.

Benefits

  • Medical, dental and vision insurance.
  • Flexible spending account.
  • 401(k) plan.
  • Employee stock grants.
  • Employee stock purchase plan.
  • Paid time off and up to 12 paid holidays annually.
  • Paid parental and family leave.
  • Family building benefits.
  • Back-up care and enhanced family support.
  • Childcare subsidy.
  • Tuition assistance and college coaching.
  • Short and long term disability coverage.
  • Voluntary AD&D coverage, accident coverage, life insurance, disability insurance, and long-term care insurance.
  • Mobile service & home internet discounts.
  • Pet insurance.
  • Access to commuter and transit programs.

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service