AT&T Cybersecurity Consulting is a division of AT&T (a Fortune Global Top 10 company) and is looking for a senior information security practitioner with technical experience for the position of a Senior Consultant located in the North Eastern US to be a part of a dynamic team of experienced security professionals with varied experiences. Candidate must be skilled in secure network architecture design, implementation, device configuration review, secure architecture reviews, and network and/or application penetration testing. Prior experience performing Red/Blue team exercises is preferred and prior experience performing hands-on incident response and forensic investigations is also preferred. AT&T Cybersecurity Consulting clients range from some of the largest companies in the world to small businesses requiring security consulting expertise.. Job Duties:. Key functions of this role will be to work on network security, architecture and security operations trusted advisor engagements for our customers involving segmentation and optimization, detailed assessment and next-generation design recommendations, SOC design & implementation, and vulnerability & threat management. Manual and automated configuration analysis for security weaknesses in firewalls, routers, switches, servers (Windows, Unix/Linux), IDS/IDP, Databases, and other platforms as well as VoIP infrastructures will also be required. In addition, hands on network and/or web application level penetration testing, wireless network penetration testing, and/or social engineering will be preferred. Successful candidates will have demonstrated experience in network security consulting and will have an understanding of network level risk assessments with the ability to write objective, detailed reports explaining security issues. A background in Network Architecture, Engineering, or Computer Science is required. Technical knowledge and experience with security assessment tools such as Tenable Nessus, Nipper, as well as scripting (Python, PHP, & Perl, Powershell, R, Hive, Pig) will be given preference. Successful candidates will also have experience using penetration testing and exploitation frameworks/platforms such as Kali linux, Cobalt Strike, MetaSploit, Veil Framework and others.. Requirements:. Bachelor's degree in Computer Science or related fields, Master's Degree preferred. A minimum of eight years of Information Security consulting with mid-to-advanced level infrastructure security design experience required. Experience with Virtualization and Cloud architectures (AWS, Azure and/or GCP). Working Knowledge of SDN, IAM, NAC and DLP. Experience with the implementation or operation of next-generation firewall technology, such as Palo Alto, Cisco Firepower, and Fortinet Fortigate. Knowledge of Linux, UNIX, Windows (including Active Directory) and other operating systems. Knowledge of popular databases such as Hadoop, MSSQL, Oracle, and MySQL. Ability to write customized scripts using at least two of Perl, PHP, Python, Pig, Hive, R, Powershell. Must be a flexible team player, hard-working, and possess excellent communication and customer-facing skills. Must be self-directed, able to manage solo projects or participate as part of a larger team, and be self-driven to overcome knowledge gaps. Strong report writing skills and ability to explain complex security issues to customers in a formal presentation format required. Must be able to interact confidently with all levels of technical and management client teams. One Security certification such as CISSP, GCIH, CEH, SANS GSEC, etc., is required and willingness to pursue further certification preferred.. Ability to travel 50%-75%, mostly within region, must possess drivers' license. Technical Skills. Strong technical problem / resolution skills required. Knowledge and experience with technical network and host-based security required.. Knowledge and experience with micro-segmentation technologies (VMware NSX, Illumio, Cisco ACI, etc.) preferred. Experience with Cloud architectures in AWS, Azure and/or Google Cloud required.. Very good understanding of security operations design & management in a large customer environment, including threat intelligence programs, threat hunting activities, and incident and threat analysis preferred. Working experience implementing Cisco ISE preferred. Mid-to-advanced level infrastructure or security design capabilities. Mid-to-advanced level knowledge of one or more of the following:. Network segmentation design. Security event monitoring & correlation tools (SA, Envision, Splunk ES, etc.). EDR Solution Suites (Carbon Black, Tanium, etc.). Intelligence gathering principles, policies & procedures. Cyber threat intelligence models (ATT&CK, Kill Chain, Diamond). Methodologies and techniques for identifying prioritizing, and classifying cyber incidents. Network and/or application level penetration testing. DevSecOps best practices and implementation. Additional Requirements. Knowledge and experience with risk and compliance assessments. SCADA / Control systems network experience a plus. Working knowledge of data visualization tools (e.g., Flare, HighCharts, Tableau, etc.) a plus. Strong working knowledge of automation and orchestration platforms, such as Demisto, Phantom, & Ansible a plus. At AT&T, we've made it our mission to connect the world. And as an industry leader in telecommunications, high-speed Internet and pay TV,...
Associated topics: business, business advisory, business analyst, business systems analyst, crm, information technology consultant, market, sales, sap, support analyst

* The salary listed in the header is an estimate based on salary data for similar jobs in the same area. Salary or compensation data found in the job description is accurate.

Launch your career - Upload your resume now!

Upload your resume

Loading some great jobs for you...