Loading some great jobs for you...
AT&T Cybersecurity Consulting is a division of AT&T (a Fortune Global Top 10 company) and is looking for a senior information security practitioner with technical experience for the position of a Senior Consultant located in the North Eastern US to be a part of a dynamic team of experienced security professionals with varied experiences. Candidate must be skilled in Secure Infrastructure Services, Incident Response and Forensic, such as secure network architecture design, implementation, device configuration review, and secure architecture reviews, security operations design and implementation. Strong understanding and experience in Cloud security solutions, and next gen firewalling vendors such as Palo Alto and Fortinet a must. Prior experience performing hands-on incident response and forensic investigations is also preferred. AT&T Cybersecurity Consulting clients range from some of the largest companies in the world to small businesses requiring security consulting expertise.
Key functions of this role will be to work on network security, architecture and security operations trusted advisor engagements for our customers involving segmentation and optimization, detailed assessment and next-generation design recommendations, SOC design & implementation, and incident response. Manual and automated configuration analysis for security weaknesses in firewalls, routers, switches, servers (Windows, Unix/Linux), IDS/IDP, Databases, and other platforms as well as VoIP infrastructures will also be preferred. In addition, hands experience and solid knowledge of next gen firewall vendors and solutions. Successful candidates will have demonstrated experience in network security consulting and will have an understanding of network level risk assessments with the ability to write objective, detailed reports explaining security issues. A background in Network Architecture, Engineering, or Computer Science is required. Technical knowledge and experience with security assessment tools such as Tenable Nessus, Nipper, as well as scripting (Python, PHP, & Perl, Powershell, R, Hive, Pig) will be given preference. Successful candidates will also have extensive experience using penetration testing and exploitation frameworks/platforms such as Kali linux, Cobalt Strike, MetaSploit, Veil Framework and others.
Bachelors degree in Computer Science or related fields, Masters Degree preferred
A minimum of eight years of Information Security consulting with mid to advanced level infrastructure security design experience required
Very good understanding of security operations & management in a large customer environment, including threat intelligence programs, threat hunting activities, and incident and threat analysis
Knowledge of Virtualization and Cloud security
Working Knowledge of SDN, IAM, NAC and DLP
Knowledge of Linux, UNIX, Windows (including Active Directory) and other operating systems
Knowledge of popular databases such as Hadoop, MSSQL, Oracle, and MySQL
Ability to write customized scripts using at least two of Perl, PHP, Python, Pig, Hive, R, Powershell
Must possess strong working knowledge of automation and orchestration platforms, such as Demisto, Phantom, & Ansible
Must be a flexible team player, hard-working, and possess excellent communication and customer-facing skills
Must be self-directed, able to manage solo projects or participate as part of a larger team
Strong report writing skills and ability to explain complex security issues to customers in a formal presentation format required
Must be able to interact confidently with all levels of technical and management client teams
One Security certification such as CISSP, GCIH, CEH, SANS GSEC, etc., is required and willingness to pursue further certification preferred.
Ability to travel 50%-75%, mostly within region, must possess drivers' license
Strong technical problem / resolution skills required
Knowledge and experience with technical network and host-based security required.
Knowledge and experience with micro-segmentation technologies (VMware NSX, Cisco ACI, etc.), security operations center design & management, and AWS and Azure security design preferred
Knowledge and experience with security operations center design & management
Mid to advanced level infrastructure or security design capabilities
Mid to advanced level knowledge of one or more of the following:
Network segmentation design
SOC Design& Management
Security event monitoring & correlation tools (SA, Envision, Splunk ES, etc.)
EDR Solution Suites (Carbon Black, Tanium, etc.)
Intelligence gathering principles, policies & procedures
Cyber threat intelligence models (ATT&CK, Kill Chain, Diamond)
Methodologies and techniques for identifying prioritizing, and classifying cyber incidents
Network and/or application level penetration testing
DevSecOps best practices and implementation
Ability to investigate a computer security incident, determine containment, and execute on remediation and post-remediation hardening strategies
Knowledge and experience with risk and compliance assessments
SCADA / Control systems network experience a plus
Working knowledge of data visualization tools (e.g., Flare, HighCharts, Tableau, etc.) a plus
Launch your career - Create your profile now!Create your Profile
Loading some great jobs for you...