This position can be based in Snoqualmie, WA, Bellevue, WA, Overland Park, KS, or Frisco, TX.
The Cybersecurity Engineer will be part of the Enterprise IP and Security (EIS) Operations Org Detection Solutions/Content Team - focused on the proactive development of Security Information and Event Management (SIEM) use-cases/queries - to identify enterprise cyber threats that generate alerts to our Cyber SOC. Candidate will support the team in the development of these SIEM queries. Works closely with other T-Mobile Teams and customers including: Cyber SOC, Cyber IR, Cyber Services. Candidate will work with cross-functional teams to successfully deliver on goals for the Detection Solutions/Content Team.
Enterprise Skills You'll Use Every Day: Requires competency in customer focus, change and innovation, strategic thinking, relationship building and influencing.
What you'll do in your role.
Participates on cyber security review of new technologies, designs, and remediation planning efforts.
Collaborates and participates on identification of security needs and recommends plans/resolutions.
Implements, tests and monitors cyber security improvements.
Maintains visibility inside and outside of cyber security at an Engineering professional level.
Interfaces with groups such as application support, engineering ops, finance, privacy, risk management, etc.
Helps execute security projects driven by groups both internal and external to cyber security.
Familiarity with the analysis of underlying technologies that form the solution necessary for the application of threat identification, analysis, and thread model design. The threat model depicts trust boundary, threat agent(s), threat vector(s), and safeguard(s) necessary to protect person, asset, data, and T-Mobile brand.
The experience you'll bring.
Desired:
Experience working with a Security Information and Event Management (SIEM) Platform - to identify, analyze, build, test and deploy cyber security enterprise use-cases/queries/content.
Experience working with customers on SIEM use-case/query requests: net-new, tuning, and emergency query requests.
Experience working with Splunk Technologies (searching, monitoring, analyzing data - and building cyber queries / use-cases for Cyber SOC threat identification and alerting).
Working knowledge of the MITRE ATT&CK (Adversarial Tactics, Techniques, and Common Knowledge) framework.
Presentation skills to small audiences.
Understanding of T-Mobile's network elements and how they work together (ETS, Engineering and 3rd Party).
Knowledge of Scripting tools (Python/Perl/Shell/HTML/PHP).
CISSP and/or CCSK and/or CCSP and/or CISA/CISM certification a plus.
Bachelors Degree in Computer Science or Information Technology, or equivalent experience.
2-4 years' experience in info security technology, cybersecurity or related field.
Strong written, verbal, and interpersonal communication skills; ability to communicate internally, upward, and cross functionally.
Ability to interface with cross-functional team members to gain support required to accomplish assignments; able to build coalitions.
Always act with tact and integrity, and interface with a variety of individuals in a positive and productive manner.
Self-motivated, able to work under tight timelines, and multitask.
Strong problem solving / troubleshooting skills.
Knowledge of current technological trends and developments in the area of cyber security.
At least 18 years of age.
Legally authorized to work in the United States.
High School Diploma or GED.
T-Mobile requires all employees in this position to be fully vaccinated for COVID-19 prior to starting work, unless precluded from doing so by applicable law. The CDC currently defines -fully vaccinated- as two weeks after the second dose for Pfizer and Moderna, and two weeks after the single dose of Johnson & Johnson. T-Mobile will require proof of vaccination prior to successful applicant's first day of work, and will consider requests for exemption from this requirement during the offer phase (1) as a reasonable accommodation for medical reasons or sincerely held religious beliefs where the accommodation would not cause T-Mobile undue hardship or pose a direct threat to the health and safety of others, or (2) for other reasons under applicable law.
Position details
Req ID: 178451BR
Department: Engineering
Travel Required: No
