Director-Cybersecurity

Job Description

Overall Purpose: This is a supervisory job responsible for directing cyber security areas across products, services, infrastructure, networks, and/or applications while providing protection for AT&T, our customers, and our vendors/partners. Works on various projects relating to the protection of devices, customers, assets, data, information technology, and networks. Supports innovation, strategic planning, technical proof of concepts, testing, lab work, and various other technical program management related tasks associated with the cyber security programs both internal and external. This position typically has Associate Director Cyber Security and other Cyber Security direct reports.

Key Roles and Responsibilities: Directs a group of Cyber Security employees in ideation, testing, proof of concept and support for various cyber related projects. Analysis of complex security issues and the development and engineering activities to help mitigate risk. Analyzes various hardware and/or software solutions recommending purchases and identifying modifications to fit AT&T's cyber security needs and that of our managed services teams. Develops policies and procedures to minimize network intrusion, malware events and vulnerability issues for internal and external customers. Applies measures to block malicious code and applications. Includes forward looking research, planning, and strategy to strengthen our stance against future cyber security threats and enhance our mitigation techniques and technology solutions. Areas of work in this include, but are not limited to: Cyber Incident Response, cyber product testing, cyber risk & strategic analysis, cyber research, cyber awareness & training, cyber vulnerability detection & assessment, cyber intelligence & investigation, cyber networks & systems engineering, cyber security application testing, cyber digital forensics & forensics analysis, cyber software assurance, cyber business operations & support, cyber application development & testing, cyber operational support, cyber IoT planning & testing, cyber policy & requirements & standards.

The mobile network is rapidly evolving to 5G, edge computing, software defined architectures and open standards. This role must investigate new and emerging technologies, identify risk factors and design effective countermeasures to protect network resources from attacks. This should be performed via a combination of participation in outside forums, vendor relationships, competitive analysis, and lab testing. Network designers and operations support personnel are continuously faced with the growing and evolving needs of the business. This role must adapt legacy processes dependent upon human interaction and SME consultation to ensure secure deployment of new network components. These redesigned processes will establish repeatable processes which incorporate risk-based requirements, automated assessments, closed loop remediation and actionable reporting. The team is currently engaged to perform security testing on key deployments into the mobility production network. This foundational work must be supported until these processes can be automated. The role must provide oversight and expertise to assist with prioritizing this work when necessary due to timing or resource constraints. Additionally, the role must assist the team with identifying which parts of these assessments can/should be automated and which steps are extraneous. In support of R&D goals, this team must stay abreast of major industry and technology changes. Therefore, a significant portion of the role involves ensuring team members are adequately versed on external market forces and vendor components. The role should help balance the collection and dissemination of this information across the team to ensure long term engagement and stability for the group.

Required/Desired Skills: Strong understanding of the 3G, 4G and 5G network technologies including radio access networks, enhanced packet core, edge computing and virtual network functions. Experience with major vendor suppliers including delivery of proprietary solutions and new Whitebox equivalents. Exposure to the constantly evolving nature of security threats. Security certifications that require continuing education. Experience designing protections against threat unique to critical infrastructure is ideal. For example, security clearances, familiarity with NIST frameworks or cloud concepts like FEDRAMP certification.

Education: Preferred Masters’ degree in Information Systems, Engineering, Mathematics or Cyber Security related fields; or equivalent experience.

Experience: Typically requires 10 or more years’ experience.

Supervisory: Yes.