Help us defend the world on the digital frontier! AT&T CyberSecurity is growing and looking to add motivated, experienced Cyber Operators. Our Critical Skills Operators have a mind for security, deep analytics, and bias toward action. If you’re looking for a career with a great team, let’s talk!
You will work within the Managed Threat Detection & Response Threat Team. This is a level 2 position that provides subject matter expert guidance to the SOAC team and customers, threat content creation, threat hunting, and incident handling based on a thorough set of case best practices. You will be responsible for engaging the customer and supporting the team to help us deliver seamless security.
AlienVault has recently joined forces to create the new AT&T CyberSecurity. As a member of AT&T CyberSecurity, you will be entering an exciting growth stage company as we strive to provide Phenomenal Threat Information, Detection, and Security for customers worldwide!
What we are looking to add to our team: ● Voracious learner and strong bias towards applying learning to action mindset ● Experience identifying and responding to potential threats and risks in a 24/7/365 SOC environment. This includes:
1) monitoring multiple platforms and processing alarms based on standard methods and procedures while upholding the time-sensitive service level agreements of the projects 2) managing the initial phase of customer escalations and investigations, and being the communications glue between our team and the customers 3)conducting log queries to assist customer requests and tiered support
● Deep curiosity and ability to analyze & monitor current SIEM rules. You possess the knowledge to identify and communicate opportunities to enhance rules, reduce false positives, and escalate to support tiers if tuning is needed ● Preferred experience with the following technologies: USM, elastic search, and SNORT ● Familiarity with one or more programming/scripting languages to include: Python, PowerShell, and BASH ● Detect incidents through proactive “hunting” across security-relevant data sets ● Thoroughly document incident response analysis activities ● Develop new, repeatable methods for finding malicious activity across MTDR customers ● Provide recommendations to enhance detection and protection capabilities ● Regularly present technical topics to technical and non-technical audiences ● Write high-quality incident reports for executives ● Develop and follow detailed operational processes and procedures to appropriately analyze, escalate, and assist in the remediation of information security incidents ● Prioritize multiple high-priority tasks and formulate responses/recommendations to customers and team members in a fast-paced environment ● Operate independently in a geographically dispersed team, while maintaining situational awareness and keeping the team up to date ● Continually develop new technical skills and push overall team capabilities forward ● Engage with and mentor other team members ● Travel up to 10% domestically, plus up to 5% internationally as needed ● Perform other duties, as assigned
We want to know you better if: ● 4-5 years’ experience and proven track record as a SOC, Network Analyst (w/security experience), or Incident Responder ● Strong team player and proven track record of making it happen ● US Citizen ● HSPD-12 Suitability Screening ● Associates or Bachelor of Science degree in the field of Computer science, Computer engineering, information technology, or Cybersecurity. ● Hold any GIAC Certifications Additional Certifications Preferred: ● Cisco CCNA Cyber Ops ● CompTIA Security + ● CompTIA Cybersecurity Analyst+ ● AWS Certified Security – Specialty ● Microsoft Azure Security Technologies Certified
About Us: We are the new AT&T Cybersecurity! Our Edge-to-Edge technologies provide phenomenal threat intelligence, collaborative defense, security without the seams, and solutions that fit our customer’s business. Our unique, collaborative approach integrates best-of-breed technologies with unrivaled network visibility and actionable threat intelligence from AT&T Alien Labs researchers, Security Operations Center analysts, and machine learning – helping to enable our customers around the globe to anticipate and act on threats to protect their business.
The Perks: ● Be part of a dynamic growing company that offers a meaningful and fun work environment ● Comprehensive Total Rewards Package (Salary + Bonus incentives) ● Comprehensive PPO/HMO Medical/Dental/Vision ● Paid: PTO, Sick Leave, Maternity/Paternity Leave, Service Day ● Adoption & Surrogacy programs ● 401k + 100% matching up to 6% ● Educational opportunities & Tuition Reimbursement ● AT&T service discounts ● AT&T service referral programs ● Numerous industry awards and is recognized as a visionary in the industry ● Strong year-over-year growth and a rapidly growing customer base
At AT&T CyberSecurity we celebrate and support the differences that make you, you. We’re proud to be an equal opportunity workplace and employer. We truly believe that diversity makes us better!