Job Description:

About the Company:

Join AT&T and reimagine the communications and technologies that connect the world. Our Chief Security Office ensures that our assets are safeguarded through truthful transparency, enforce accountability and master cybersecurity to stay ahead of threats. Bring your bold ideas and fearless risk-taking to redefine connectivity and transform how the world shares stories and experiences that matter. When you step into a career with AT&T, you won’t just imagine the future-you’ll create it.

About the Job:

The RATE (Risk Assessment Testing and Enforcement) team is part of Chief Security Office (CSO) and responsible for evaluating the products and solutions AT&T uses for possible vulnerabilities and other issues (e.g., EOSL) on an ongoing basis and ensure compliance with the AT&T policy requirements. The team works closely with the other CSO teams, ATS (AT&T Technology Services) stakeholders, Technology Strategies & Standards team, to ensure solutions and products are deployed only when they are secure, authorized and appropriately supported thereby adhering to Secure by design principles.

Experience Level: 13+ years.

Location: Hyderabad / Bengaluru

Responsibilities Include:

• Executing and leading Application Security/Product security assessments, identifying issues that needs appropriate risk treatment, and reporting them to the senior ATS stakeholders.
• Partnering with RATE (Risk Assessment Testing and Enforcement) leadership to help them recommend and enforce approved Technology Standards for use across the enterprise.
• Suggest ways to enhance the review process for better effectiveness and efficiency.
• Supporting the development / enhancement of processes / tooling that helps better identify / record / address the information security risks .
• Suggest ways to enhance the review process for better effectiveness and efficiency.
• Ability to interpret and act on assigned tasks
• Ability to review the activity/tasks completed by other assessors for quality

Required Skills:

• 13+ years minimum experience in Cyber Security, Cyber Risk management / risk consulting, application/product security, software security and vulnerabilities.
• Good understanding of various third-party risk management frameworks and standards.
• Knowledge of OWASP TOP 10 and Network Security
• Experience in IT General Controls (ITGC) and IT Application Controls (ITAC) testing and evaluation
• Familiarity with cloud security controls and best practices
• Experience and understanding of AI/ML working principles, including control testing and related risks
• Experience in leading project automation activities
• Good exposure to regulatory requirements in other industries.
• Proven program management and project automation skills.
• Understanding of Cyber Security Risk Management processes
• Familiarity with GDPR, ISO 27001, SOC 2, and related standards/frameworks and compliance requirements
• Certified Ethical Hacker (CEH) certification or equivalent skills
• Knowledge of vulnerabilities, threat identification, and remediation; ability to understand and analyze penetration test (Pentest) reports
• Working knowledge of PCI-DSS compliance and control requirements

Desirable Skills:

• Bachelor's or master's degree in computer science, Mathematics, Information Systems, Engineering, Commerce or Cyber Security.
• Prior experience with Telecom sector.
• ISACA, ISC2 or other relevant certifications.

Additional Information: Need to be flexible to provide coverage in US morning hours.

#Cybersecurity

Weekly Hours:

40

Time Type:

Regular

Location:

• IND:KA:Bengaluru / Innovator Building, Itpb, Whitefield Rd
• Adm: Intl Tech Park, Innovator Bldg

It is the policy of AT&T to provide equal employment opportunity (EEO) to all persons regardless of age, color, national origin, citizenship status, physical or mental disability, race, religion, creed, gender, sex, sexual orientation, gender identity and/or expression, genetic information, marital status, status with regard to public assistance, veteran status, or any other characteristic protected by federal, state or local law. In addition, AT&T will provide reasonable accommodations for qualified individuals with disabilities. AT&T is a fair chance employer and does not initiate a background check until an offer is made.