Job Description:

This position requires office presence of a minimum of 5 days per week and is only located in the location(s) posted. No relocation is offered.

Join AT&T and reimagine the communications and technologies that connect the world. Our Chief Security Office ensures that our assets are safeguarded through truthful transparency, enforce accountability and master cybersecurity to stay ahead of threats. Bring your bold ideas and fearless risk-taking to redefine connectivity and transform how the world shares stories and experiences that matter. When you step into a career with AT&T, you won’t just imagine the future-you’ll create it.

Join our dynamic Cyber Operations Red Team as a Principal Red Team operator. In this role, you will lead and participate in sophisticated Red Team exercises aimed at uncovering vulnerabilities across our networks, systems, applications, and processes. This Red Team operator position will require you to not only provide support on red team exercises but also take on significant portions of the work/project independently.

Your role within the Cyber Operations Red Team will be focused on building, contributing to and improving a robust Red Teaming program. This will require you to collaborate with management to set strategic goals for yourself and the program. You will need to possess in-depth knowledge of security gaps and vulnerabilities and use this knowledge to align team goals with overall organizational goals to reduce our security exposure. Your testing will go beyond the vulnerabilities identified by standard tools; you are expected to be creative and innovative in your approach and in the development of new or modified tools and techniques. You will work collaboratively with other Red Team members and Security Analysts to identify security issues, characterize the cyber-attack vectors, discover any related vulnerabilities, and provide recommendations for remediation of those issues. You will continually learn of new vulnerabilities and exploit techniques and will evolve your tools and methodology to adapt to changing situations.

This position will also require you to continually advance your technical skills to keep yourself positioned as a subject matter expert in many areas of threat hunting and red teaming. This work will require deep level knowledge in the area of exploits and vulnerabilities, scripting, and a strong understanding of networking and network Protocols. You are expected to learn advanced pen testing techniques using “off the shelf” and custom created security tools. The candidate will propose algorithms that solve threat-based use cases defined by their threat hunting and red teaming. You will be responsible for reporting findings in written and verbal form and will be used to inform management, notify affected customers, advise network operations, and advise network engineering on security issues as well as recommended remediation and solutions.

The Red Team Operator will:

Perform formal and informal targeted “Hunts” to identify vulnerabilities in cloud-hosted and web-based applications, API interfaces, databases, big data environments, networks, computer systems, mobile applications, Software Defined Networks and IoT (Internet of Things) devices and systems.Actively building, participating and leading Red Team exercisesDesign and create new/custom Red team tools and testsEmploy tactics to uncover security holes (poor user security practices, weak methods and procedures, etc.)Determine methods that attackers could use to exploit weaknesses and logic flaws to mimic these techniques in targeted red team operationsResearch, document and discuss security findings with management, security teams and IT teamsProvide feedback and verification as an organization fixes security issuesIdentify, review and recommend improvements for security services, system administration practices, and development/system integration methodology to improve the company’s cybersecurity posture

Required Skills & Experience:

7+ years of experience in penetration testing and red team operationsDeep understanding of Transmission Control Protocol / Internet Protocol (TCP/IP) protocols, devices, security mechanisms and how they operate.Strong understanding of network security threats including APT, botnets, Distributed Denial of Service (DDoS) attacks, worms, and network exploits.Experience with network probing/testing/analysis tools (Nessus, nmap, burp, wireshark, etc.)Deep technical knowledge of Windows, UNIX and Linux operating systems as both an expert user and system administratorProgramming skills that will be used to construct, modify, and execute testing tools including shell (ksh, bash), [g]awk, Python, PERL, regex, Java, C, C++, C#, Powershell, curl, Web application development (PHP, ASP.NET, etc.)Comprehensive knowledge of software security testing principles, practices, and tools, experience of vulnerability assessments in a complex environment.Experience with Malware (including reverse engineering) and with internal and external attacks.Experience or familiarity with vulnerability analysis, computer forensics tools, cryptography principlesExcellent teamwork skills for collaboration on analysis techniques, implementation, and reporting.  Must be able to work both independently as well as effectively work in teams of individuals with a variety of skills and backgrounds.Excellent written and verbal communication skills and have demonstrated ability to present material to senior officials.Highly self-motivated requiring little direction.Demonstrates creative/out-of-the-box thinking and good problem-solving skills.Demonstrates strong ethical behavior.

Desired Skills & Experience:

Strong knowledge of an enterprise architectureAbility to obtain a strong and ongoing understanding of the technical details involved in current APT threats and exploits involving various operating systems, applications and networking protocols.Knowledge of tactics, techniques, and procedures associated with malicious insider activity, organized crime/fraud groups and both state and non-state sponsored threat actors.Understanding of cloud-based architectures and highly distributed big data architecturesUnderstanding of mobile android and iOS environments and app developmentExperience with application security testing tools, such as the Metasploit framework and Burp SuiteOne or more of these certificationsCEH: Certified Ethical HackerCPT: Certified Penetration TesterCEPT: Certified Expert Penetration TesterGPEN: GIAC Certified Penetration TesterOSCP: Offensive Security Certified ProfessionalBS/MS degree in Computer Science, Cyber Security, Engineering, or related technical field

The description provided above is not intended to be an exhaustive list of all job duties, responsibilities, and requirements. Duties, responsibilities, and requirements may change over time and according to business needs. 

Education:

Preferred Bachelors degree in Information Systems, Engineering, Mathematics or Cyber Security or equivalent experience.

Experience:

Typically requires 8-10 years of experience. Technical Career Pathway (TCP) role.

Supervisory:

No.

Our Principal Cybersecurity earns between $158,200.00-$237,400.00 USD Annual, not to mention all the other amazing rewards that working at AT&T offers. Individual starting salary within this range may depend on geography, experience, expertise, and education/training.

Joining our team comes with amazing perks and benefits:

Medical/Dental/Vision coverage401(k) planTuition reimbursement programPaid Time Off and Holidays (based on date of hire, at least 23 days of vacation each year and 9 company-designated holidays)Paid Parental LeavePaid Caregiver LeaveAdditional sick leave beyond what state and local law require may be available but is unprotected.Adoption ReimbursementDisability Benefits (short term and long term)Life and Accidental Death InsuranceSupplemental benefit programs: critical illness/accident hospital indemnity/group legalEmployee Assistance Programs (EAP)Extensive employee wellness programsEmployee discounts up to 50% off on eligible AT&T mobility plans and accessories, AT&T internet (and fiber where available) and AT&T phone.

#LI-Onsite – Full-time office role-

 AT&T is leading the way to the future – for customers, businesses, and the industry. We're developing new technologies to make it easier for our customers to stay connected to their world. Together, we’ve built a premier integrated communications and entertainment company and an amazing place to work and grow. Team up with industry innovators every time you walk into work, creating the world you always imagined. Ready to #transformdigital with us?

Apply now!

Weekly Hours:

40

Time Type:

Regular

Location:

USA:NJ:Bedminster / Us Hwy 206 - Adm:1405 Us Hwy 206

Salary Range:

$141,300.00 - $237,400.00

It is the policy of AT&T to provide equal employment opportunity (EEO) to all persons regardless of age, color, national origin, citizenship status, physical or mental disability, race, religion, creed, gender, sex, sexual orientation, gender identity and/or expression, genetic information, marital status, status with regard to public assistance, veteran status, or any other characteristic protected by federal, state or local law. In addition, AT&T will provide reasonable accommodations for qualified individuals with disabilities.

Job ID R-59018-1 Date posted 03/11/2025