Lead Cybersecurity VPN Security Engineer

About the position

Join AT&T and reimagine the communications and technologies that connect the world. Our Chief Security Office ensures that our assets are safeguarded through truthful transparency, enforce accountability and master cybersecurity to stay ahead of threats. Bring your bold ideas and fearless risk-taking to redefine connectivity and transform how the world shares stories and experiences that matter. When you step into a career with AT&T, you won't just imagine the future-you'll create it. As a Lead Cybersecurity VPN Security Engineer, you will be an essential part of the Enterprise Remote Access team. The ideal candidate will have significant experience with a variety of VPN and network access control systems. You will collaborate with internal team members, IT partners, and business leaders to implement and manage systems that ensure secure access to AT&T networks. You will also assist end users in resolving connectivity issues. The role demands a high level of attention to detail and the ability to thrive in a collaborative setting. Additionally, you will support strategic planning, technical proof of concepts, testing, lab work, and other technical tasks related to designing, implementing, and maintaining secure access programs.

Responsibilities

• Assist with the design, deploy, configure, and manage Palo Alto and Cisco VPN devices/firewalls.
• Implement and maintain security policies, access controls, and NAT rules to meet organizational requirements.
• Optimize firewall performance and ensure high availability.
• Monitor network traffic for anomalies using Panorama and other tools to ensure proactive threat detection.
• Work with technical personnel and/or end users to troubleshoot complex network security issues, connectivity problems, and policy conflicts.
• Perform regular configuration audits to ensure compliance with security standards.
• Willingness to be available to provide 24x7 support during outage or degraded service scenarios.
• Work closely with cross-functional teams to design and implement secure network architectures that align with business goals.
• Maintain detailed technical documentation, including network diagrams, change logs, and Standard Operating Procedures (SOPs).
• Develop Splunk dashboards and queries to enhance platform monitoring.
• Develop scripts and use automation tools to streamline firewall management tasks and processes.
• Identify opportunities for process improvements to enhance operational efficiency.

Requirements

• A Bachelor's degree in Information Systems, Engineering, or Cyber Security is preferred.
• Requires 5-8 years of related experience.
• Strong understanding of network security concepts such as firewalls, VPNs, intrusion prevention systems (IPS), and zero-trust architectures.
• Experience configuring advanced features like App-ID, User-ID, Threat Prevention, URL Filtering, WildFire, and SSL decryption.
• Hands-on experience in large-scale enterprise environments with complex network infrastructures.
• Experience working and collaborating in a diverse, multi-cultural, and inclusive environment.
• Familiarity with creating and executing Splunk queries and familiarity with scripting languages (e.g., Perl, Python) or automation tools for managing firewalls at scale preferred.

Benefits

• Medical/Dental/Vision coverage
• 401(k) plan
• Tuition reimbursement program
• Paid Time Off and Holidays (based on date of hire, at least 23 days of vacation each year and 9 company-designated holidays)
• Paid Parental Leave
• Paid Caregiver Leave
• Additional sick leave beyond what state and local law require may be available but is unprotected
• Adoption Reimbursement
• Disability Benefits (short term and long term)
• Life and Accidental Death Insurance
• Supplemental benefit programs: critical illness/accident hospital indemnity/group legal
• Employee Assistance Programs (EAP)
• Extensive employee wellness programs
• Employee discounts up to 50% off on eligible AT&T mobility plans and accessories, AT&T internet (and fiber where available) and AT&T phone