Cybersecurity Engineer - Insider Threat

About The Position

Requirements

• Bachelor's Degree in Computer Science or Information Technology plus 2 years of related work experience OR combination of education and experience deemed equivalent
• 2-4 years of experience in info security technology or related field
• 2-4 years of experience implementing and managing cybersecurity measures in a large-scale environment
• 2-4 years of experience with security technologies such as firewalls, intrusion detection systems, and encryption
• 2-4 years of technical project management within cybersecurity frameworks.
• Regulatory Compliance - Deep understanding of cybersecurity laws and regulations to ensure the organization meets all compliance requirements.
• Collaboration - Ability to work effectively with cross-functional teams to enhance cybersecurity measures and response strategies.
• Problem Solving - Strong analytical skills to solve complex cybersecurity issues and enhance system security.

Nice To Haves

• Experience with incident handling for insider threat related incidents
• Risk Management - Expertise in identifying, evaluating, and mitigating risks in cybersecurity to protect organizational data and infrastructure.
• Systems Knowledge – Experience with Microsoft security tools, Zscaler, Splunk
• Technical Writing - Ability to document cybersecurity processes, incidents, and protocols clearly and effectively for various audiences.
• Moderate to advance knowledge of Scripting tools (Python/Perl/Shell/HTML/PHP)
• Knowledge of federal & compliance regulations e.g. SOX, PCI & CPNI
• Solid understanding of T-Mobile’s network elements and how they work together (EIT, Engineering & 3rd Party)
• In-depth knowledge of security standard methodologies in large-scale environments
• Experience with implementation of various threat modeling approaches pertaining to one or more of the following STRIDE, PASTA, TRIKE, ATTACK TREE, DREAD, KILL CHAIN, CAPEC, Mobile Application threat model, Cyber Threat Tree, and data flow diagram
• Certified Information Systems Security Professional (CISSP)
• CISSP and/or CCSK and/or CCSP and/or CISA/CISM certification a plus
• At least 18 years of age
• Legally authorized to work in the United States

Responsibilities

• Analyze and investigate alerts through the alert lifecycle
• Improve process efficiency by creating and implementing creative and sustainable changes to existing investigation methodologies
• Identify and implement recommendations for security and data security improvements
• Implement, test & monitor info security improvements
• Maintain transparency inside & outside of information security at the People management level.
• Communicate with groups such as application support, engineering ops, finance, privacy, risk management, etc.
• Lead information security policy lifecycle throughout, including intake, creation, review, approval, implementation, publishing, communication & maintenance
• Implement security projects driven by groups both internal and external to info security
• Analysis of underlying technologies that form the solution vital for the application of threat identification, analysis, and thread model design
• Threat model to depict trust boundary, threat agent(s), threat vector(s), and safeguard(s) necessary to protect person, asset, data, and T-Mobile brand

Benefits

• employees receive a competitive base salary and compensation package
• annual stock grant
• employee stock purchase plan
• 401(k)
• access to free, year-round money coaches
• medical, dental and vision insurance
• a flexible spending account
• paid time off and up to 12 paid holidays
• paid parental and family leave
• family building benefits
• back-up care
• enhanced family support
• childcare subsidy
• tuition assistance
• college coaching
• short- and long-term disability
• voluntary AD&D coverage
• voluntary accident coverage
• voluntary life insurance
• voluntary disability insurance
• voluntary long-term care insurance
• mobile service & home internet discounts
• pet insurance
• access to commuter and transit programs