Apply on Employer Site

T-Mobile · 2 days ago

Principal Engineer, Cyber Threat Intelligence | Deception |

Bellevue, WA

Full-time

Onsite

Senior Level, Lead/Staff

$128K/yr - $231K/yr

7+ years exp

T-Mobile is a leading telecommunications company investing in its employees through a comprehensive rewards package. The Principal Cybersecurity Engineer will drive security initiatives within the Cyber Threat Intelligence team, leading technical assessments, engaging with threat actors, and fortifying the security posture across various domains.

InternetMobileTelecommunicationsWireless

No H1B

U.S. Citizen Only

Responsibilities

The Principal Cybersecurity Engineer excels in optimizing multi-functional partnerships to meet customer requirements effectively, demonstrating leadership in organizing large-scale analysis efforts across departments. Using internal and external data resources, they make strategic business decisions and collaborate closely with key partners, fostering long-term relationships

In leading information security reviews, this role works closely with Engineering & Operations Teams to address security vulnerabilities identified through PSIRTs, scans, or breaches. They proactively find opportunities for process or technology improvements within existing legacy applications or infrastructure, driving remediation efforts

Investigating security needs and recommending resolutions, the Principal Cybersecurity Engineer implements, tests, and monitors security improvements, ensuring robust defenses. They maintain visibility at the Executive level, working with various groups such as application support, engineering ops, finance, and risk management

Drawing upon significant experience in analyzing underlying technologies for threat identification and analysis, they proactively identify development areas and stay abreast of current trends to address major security issues. Playing a leadership role in implementing action plans, they lead security projects driven by both internal and external partners

Additionally, they mentor peers and junior team members, imparting expertise in security technologies, enterprise solution design, and effective customer interaction. With a deep understanding of various threat modeling approaches, they are an authority in network & information security, including Firewall policy design, SSL Certificate management, and vulnerability analysis & mitigation, ensuring an advanced understanding of IP/Security solutions applicable to the Wireless Network Architecture

Qualification

Cybersecurity expertiseVulnerability testingDigital forensicsCloud securityNetwork securityRisk managementAnalytical skillsTechnical writingLeadershipCollaborationAgile methodologiesRegulatory complianceTechnology managementStrategic thinkingProblem solving

Required

Bachelor's Degree Computer Science or Information Technology or equivalent work experience

7-10 years conducting security assessments and vulnerability testing to identify and mitigate risks in digital environments

7-10 years developing and implementing cybersecurity measures across various technologies including mobile and IoT devices, cloud services, and network technologies

7-10 years leading and collaborating with engineering teams to enhance security postures and strategic cybersecurity initiatives

Be authority in multiple security subject areas

Experience with high level design architecture, security technologies, networking, web services and SOA

Domain expert in all facets of network & information security, including firewall policy design, SSL Certificate management, vulnerability analysis & mitigation, and other topics as assigned

Significant knowledge of current technological trends and developments in the area of info security

Ability to create technical specification and requirements and work independently and with no direction/supervision. Able to quickly adapt to new or evolving technologies related to new product & services requiring validation or research

Understanding load balancers (ex – A10, F5), firewalls (ex – CheckPoint), Venafi, MDM (ex - Mobile Iron), Cloud (ex - AWS, Azure), Malware Protection (ex -FireEye), Advanced Persistent Threats (ex - Damballa), Privileged Accounts (ex – CyberArk), SIEM (ex – ArcSight), Log & Event (ex – Splunk), Intrusion IDS/IPS (ex – Symantec), Cloud Platform (ex – PCF, Docker), Scanning (ex – Qualys), AppSec (ex - Veracode)

Advance knowledge of Scripting tools (Python/Perl/Shell/HTML/PHP)

Risk Management: Expertise in identifying, assessing, and mitigating cybersecurity risks in various digital environments

Technical Writing: Ability to document security protocols and findings comprehensively for technical and non-technical collaborators

Problem Solving: Proficiency in fixing and resolving complex security issues effectively

Collaboration: Strong capability to work collaboratively with multi-functional teams to implement security measures

Strategic Thinking: Ability to develop and implement long-term security strategies that align with business objectives

Agile Methodologies: Experience in applying agile practices to manage and improve cybersecurity processes

Leadership: Strong leadership skills to guide and mentor teams in achieving robust cybersecurity defenses

Regulatory Compliance: Deep understanding of cybersecurity regulations and standards to ensure compliance across all operations

Technology Management: Proficiency in managing a diverse range of technologies, including mobile, IoT, cloud services, and network technologies

Analytical Skills: Strong analytical skills to evaluate security systems and recommend enhancements

At least 18 years of age

Legally authorized to work in the United States

This role requires U.S. citizenship

Preferred

Proficient in conducting digital forensics investigations, including acquiring, analyzing, and preserving digital evidence from various sources (e.g., computers, mobile devices, network logs)

Experience with security tools such as SIEM, IDS/IPS, DLP, endpoint protection, and vulnerability scanners

Solid understanding of cloud security principles and standard processes (e.g., AWS, Azure, GCP)

Familiarity with a range of digital forensics tools and software (e.g., EnCase, FTK, Volatility, Wireshark) for data acquisition, analysis, and reporting

Proficient in analyzing the cyber threat landscape to identify emerging threats, tactics, techniques, and procedures (TTPs) used by threat actors

Certified Information Systems Security Professional (CISSP) CISSP and/or CCSK and/or CCSP and/or CISA/CISM certification a plus (Preferred)

Certified Information Security Manager (CISM) (Preferred)

Certified Information Systems Auditor (CISA) (Preferred)

Benefits

Medical, dental and vision insurance

Flexible spending account

401(k)

Employee stock grants

Employee stock purchase plan

Paid time off

Up to 12 paid holidays - which total about 4 weeks for new full-time employees and about 2.5 weeks for new part-time employees annually

Paid parental and family leave

Family building benefits

Back-up care

Enhanced family support

Childcare subsidy

Tuition assistance

College coaching

Short- and long-term disability

Voluntary AD&D coverage

Voluntary accident coverage

Voluntary life insurance

Voluntary disability insurance

Voluntary long-term care insurance

Mobile service & home internet discounts

Pet insurance

Access to commuter and transit programs

Company

T-Mobile

Glassdoor3.7

T-Mobile is a telecommunications company that provides wireless communication services, including mobile phone and internet services. It is a sub-organization of Deutsche Telekom.

Founded in 1994

Bellevue, Washington, USA

10001+ employees