This position requires office presence of a minimum of 5 days per week and is only located in the location(s) posted. No relocation is offered.

Join AT&T and reimagine the communications and technologies that connect the world. Our Chief Security Office ensures that our assets are safeguarded through truthful transparency, enforce accountability and master cybersecurity to stay ahead of threats. Bring your bold ideas and fearless risk-taking to redefine connectivity and transform how the world shares stories and experiences that matter. When you step into a career with AT&T, you won’t just imagine the future-you’ll create it.

Position will be responsible for defining, operationalizing, and continuously improving enterprise cybersecurity metrics and Key Control Indicators (KCIs) that measure security control coverage and effectiveness across the organization. This role designs, develops and operates a scalable, centralized cybersecurity metrics capability, including data pipelines, dashboards, and analytics, and translates complex security telemetry into clear, decision‑ready insights that enable leaders and control owners to strengthen security posture and improve operational efficiency. This is a senior individual‑contributor role requiring deep technical expertise, strong security domain knowledge, and the ability to influence outcomes across cybersecurity, risk, and executive stakeholders.

Key Responsibilities:

• Own enterprise cybersecurity metrics & KCIs
• Define, implement, and evolve Key Control Indicators (KCIs) focused on control coverage, efficacy, and risk reduction
• Ensure metrics are actionable, standardized, and aligned to enterprise risk priorities
• Lead requirements & stakeholder engagement
• Partner with control owners, cybersecurity operations, and risk teams to gather requirements and translate business questions into measurable indicators
• Establish clear metric definitions, assumptions, and narratives to support consistent interpretation
• Design and operate the metrics platform
• Design and maintain interactive security dashboards and scorecards using Power BI and/or Tableau. Build, test, and maintain ETL/data pipelines to ingest security data from disparate sources into a centralized repository, while ensuring data quality, reliability, scalability, and performance across the metrics ecosystem
• Data engineering & analytics excellence
• Develop and optimize complex SQL queries to design and maintain data models for complex datasets, including normalization and aggregation strategies. Manage database performance to support operational and executive reporting needs
• Translate data into risk insights
• Convert security metrics into risk posture narratives and decision‑ready summaries to enable stakeholders to quickly identify gaps, prioritize remediation, and track improvements over time

Required Skills:

• Degree in Computer Science, Information Technology or related field
• 7+ years' experience in technology, financial services or other regulated industries
• 5 years' experience in development of IT risk frameworks and enterprise IT issue management
• Strong expertise in SQL, ETL tools, and BI visualization (Tableau, Power BI)
• Security metrics and measurement expertise to design actionable security metrics with a focus on control effectiveness and risk reduction, deep understanding of KCI's
• Security knowledge and understanding of security operations, controls and risk
• Data engineering and modeling experience in designing data models for complex data sets with a strong competency in normalizing and aggregating data to shape the model
• Programming proficiency in scripting languages such as Python or PowerShell
• Business communications and experience translating KCI's into risk posture narratives with decision-ready summaries
• Familiarity with applying Artificial Intelligence (AI) or Machine Learning (ML) techniques in cybersecurity contexts (e.g., anomaly detection, threat hunting, behavioral analytics, or risk scoring)

Education/Experience:

Bachelor’s degree (BS/BA) desired in Computer Science or Cybersecurity. 7+ years of related experience. Certification is required in some areas.

Supervisor:

No

Our Principal Cybersecurity earns between $155,400-$233,200 USD Annual, not to mention all the other amazing rewards that working at AT&T offers. Individual starting salary within this range may depend on geography, experience, expertise, and education/training.

Joining our team comes with amazing perks and benefits:

• Medical/Dental/Vision coverage
• 401(k) plan
• Tuition reimbursement program
• Paid Time Off and Holidays (based on date of hire, at least 23 days of vacation each year and 9 company-designated holidays)
• Paid Parental Leave
• Paid Caregiver Leave
• Additional sick leave beyond what state and local law require may be available but is unprotected
• Adoption Reimbursement
• Disability Benefits (short term and long term)
• Life and Accidental Death Insurance
• Supplemental benefit programs: critical illness/accident hospital indemnity/group legal
• Employee Assistance Programs (EAP)
• Extensive employee wellness programs
• Employee discounts up to 50% off on eligible AT&T mobility plans and accessories,
• AT&T internet (and fiber where available) and AT&T phone.

– Full-time office role-

Ready to join our team? Apply today.

Weekly Hours:

40

Time Type:

Regular

Location:

• USA:NC:Charlotte / Ibm Dr
• Adm:8505 Ibm Dr

Salary Range:

$155,400.00 - $233,200.00

It is the policy of AT&T to provide equal employment opportunity (EEO) to all persons regardless of age, color, national origin, citizenship status, physical or mental disability, race, religion, creed, gender, sex, sexual orientation, gender identity and/or expression, genetic information, marital status, status with regard to public assistance, veteran status, or any other characteristic protected by federal, state or local law. In addition, AT&T will provide reasonable accommodations for qualified individuals with disabilities. AT&T is a fair chance employer and does not initiate a background check until an offer is made.