Principal Engineer, Cyber Threat Intelligence | Deception |

About The Position

Requirements

• Bachelor's Degree Computer Science or Information Technology or equivalent work experience
• 7-10 years conducting security assessments and vulnerability testing to identify and mitigate risks in digital environments
• 7-10 years developing and implementing cybersecurity measures across various technologies including mobile and IoT devices, cloud services, and network technologies
• 7-10 years leading and collaborating with engineering teams to enhance security postures and strategic cybersecurity initiatives
• Be authority in multiple security subject areas
• Experience with high level design architecture, security technologies, networking, web services and SOA.
• Domain expert in all facets of network & information security, including firewall policy design, SSL Certificate management, vulnerability analysis & mitigation, and other topics as assigned
• Significant knowledge of current technological trends and developments in the area of info security
• Ability to create technical specification and requirements and work independently and with no direction/supervision.
• Able to quickly adapt to new or evolving technologies related to new product & services requiring validation or research.
• Understanding load balancers (ex – A10, F5), firewalls (ex – CheckPoint), Venafi, MDM (ex - Mobile Iron), Cloud (ex - AWS, Azure), Malware Protection (ex -FireEye), Advanced Persistent Threats (ex - Damballa), Privileged Accounts (ex – CyberArk), SIEM (ex – ArcSight), Log & Event (ex – Splunk), Intrusion IDS/IPS (ex – Symantec), Cloud Platform (ex – PCF, Docker), Scanning (ex – Qualys), AppSec (ex - Veracode)
• Advance knowledge of Scripting tools (Python/Perl/Shell/HTML/PHP)
• Risk Management: Expertise in identifying, assessing, and mitigating cybersecurity risks in various digital environments.
• Technical Writing: Ability to document security protocols and findings comprehensively for technical and non-technical collaborators.
• Problem Solving: Proficiency in fixing and resolving complex security issues effectively.
• Collaboration: Strong capability to work collaboratively with multi-functional teams to implement security measures.
• Strategic Thinking: Ability to develop and implement long-term security strategies that align with business objectives.
• Agile Methodologies: Experience in applying agile practices to manage and improve cybersecurity processes.
• Leadership: Strong leadership skills to guide and mentor teams in achieving robust cybersecurity defenses.
• Regulatory Compliance: Deep understanding of cybersecurity regulations and standards to ensure compliance across all operations.
• Technology Management: Proficiency in managing a diverse range of technologies, including mobile, IoT, cloud services, and network technologies.
• Analytical Skills: Strong analytical skills to evaluate security systems and recommend enhancements.
• At least 18 years of age
• Legally authorized to work in the United States
• T-Mobile requires U.S. citizenship for certain roles within the organization. This role requires U.S. citizenship. Individuals hired into this role will be required to submit documentation proving U.S. citizenship within the first 7 days of hire - failure to do so will result in termination.

Nice To Haves

• Proficient in conducting digital forensics investigations, including acquiring, analyzing, and preserving digital evidence from various sources (e.g., computers, mobile devices, network logs).
• Experience with security tools such as SIEM, IDS/IPS, DLP, endpoint protection, and vulnerability scanners.
• Solid understanding of cloud security principles and standard processes (e.g., AWS, Azure, GCP).
• Familiarity with a range of digital forensics tools and software (e.g., EnCase, FTK, Volatility, Wireshark) for data acquisition, analysis, and reporting.
• Proficient in analyzing the cyber threat landscape to identify emerging threats, tactics, techniques, and procedures (TTPs) used by threat actors.
• CISSP and/or CCSK and/or CCSP and/or CISA/CISM certification a plus (Preferred)
• Certified Information Systems Security Professional (CISSP)
• Certified Information Security Manager (CISM) (Preferred)
• Certified Information Systems Auditor (CISA) (Preferred)

Responsibilities

• The Principal Cybersecurity Engineer excels in optimizing multi-functional partnerships to meet customer requirements effectively, demonstrating leadership in organizing large-scale analysis efforts across departments.
• Using internal and external data resources, they make strategic business decisions and collaborate closely with key partners, fostering long-term relationships.
• In leading information security reviews, this role works closely with Engineering & Operations Teams to address security vulnerabilities identified through PSIRTs, scans, or breaches.
• They proactively find opportunities for process or technology improvements within existing legacy applications or infrastructure, driving remediation efforts.
• Investigating security needs and recommending resolutions, the Principal Cybersecurity Engineer implements, tests, and monitors security improvements, ensuring robust defenses.
• They maintain visibility at the Executive level, working with various groups such as application support, engineering ops, finance, and risk management.
• Drawing upon significant experience in analyzing underlying technologies for threat identification and analysis, they proactively identify development areas and stay abreast of current trends to address major security issues.
• Playing a leadership role in implementing action plans, they lead security projects driven by both internal and external partners.
• Additionally, they mentor peers and junior team members, imparting expertise in security technologies, enterprise solution design, and effective customer interaction.
• With a deep understanding of various threat modeling approaches, they are an authority in network & information security, including Firewall policy design, SSL Certificate management, and vulnerability analysis & mitigation, ensuring an advanced understanding of IP/Security solutions applicable to the Wireless Network Architecture.

Benefits

• Employees enjoy multiple wealth-building opportunities through our annual stock grant, employee stock purchase plan, 401(k), and access to free, year-round money coaches.
• employees in regular, non-temporary roles are eligible for an annual bonus or periodic sales incentive or bonus, based on their role.
• Most Corporate employees are eligible for a year-end bonus based on company and/or individual performance and which is set at a percentage of the employee’s eligible earnings in the prior year.
• medical, dental and vision insurance, a flexible spending account, 401(k), employee stock grants, employee stock purchase plan, paid time off and up to 12 paid holidays - which total about 4 weeks for new full-time employees and about 2.5 weeks for new part-time employees annually - paid parental and family leave, family building benefits, back-up care, enhanced family support, childcare subsidy, tuition assistance, college coaching, short- and long-term disability, voluntary AD&D coverage, voluntary accident coverage, voluntary life insurance, voluntary disability insurance, and voluntary long-term care insurance.
• eligible employees can also receive mobile service & home internet discounts, pet insurance, and access to commuter and transit programs!