T-Mobile's Cyber Security Engineer (CSE) enables business through holistic design and delivery of trusted security solutions. The CSE is both a trusted advisor and advocate for protecting T-Mobile assets. This is done through an active security policy, a simple engagement model, and people empowered to make a difference. Are you ready to join the Uncarrier as we redefine the rules of wireless?
Expert in engineering business enabling security solutions focused on applying security controls holistically and from a risk-centric approach.
Deep hands on experience in at least two security related domains such as cloud security, encryption, identity and access management, application security (with programming experience, etc.)
Experience identifying and delivering security control requirements across multiple environments and technologies.
Solid understanding of server, virtual server, microservice, and serverless technologies and the application of security controls within each respective area.
Experienced at assessing risk and threat vectors in heterogeneous environments and defining/recommending appropriate security controls.
Trusted technical security advisor to all levels of the organization for a variety of information security projects that arise from current business and technological developments
Strong ability to assess risks and provide innovative countermeasures and solutions that appropriately balance security and business objectives
Experience controlling the threat surface area, identifying attack vectors, vulnerabilities and establishing appropriate controls. Demonstrated experience building threat models for the systems in focus.
Evaluation & assessment of compliance to a regulation, law or policy using industry standard methodologies (NIST, PCI, CPNI, SOX, etc.) in an enterprise environment
7+ years of IT infrastructure proficiency and experience, including one or more years of experience in: Encryption, Tokenization, Forensics/eDiscovery, Penetration Testing, Firewalls (static, WAF), Proxies, Gateways, Routers, VPN, Application Security SAST/DAST, cloud (XaaS), database, big data, telecom, mobile network, etc.
5+ years information security/digital security experience preferred
Proven ability to assess, influence, recommend, deploy and integrate Information Security solutions
Foundational understanding of several enterprise environment technologies, security domains, or telecommunications infrastructure and architecture
Familiarity with current legal and regulatory requirements around information security and privacy, including PCI, SOX, CPNI, etc.
CISSP Certification (active or former) or related experience
Bachelors or Masters degree in Computer Science or similar work experience