13 days old

SR TECHNICAL SPECIALIST, APPLICATION DEV - DevOps Engineer (Security Monitoring)

Hyderabad, TS 500001
Apply Now
Apply on the Company Site
**About the Company:**


At AT&T, were connecting the world through the latest tech, top-of-the-line communications and the best in entertainment. Our groundbreaking digital solutions provide intuitive and integrated experiences for millions of customers across online, retail and care channels. Join our mission to deliver compelling communication and entertainment experiences to customers around the world as we continue to evolve as a technology-powered, human-centered organization. As part of our team, youll transform the way we deliver a seamless customer experience with digital at the center of all you do. In our world, digital is much larger than just an eCommerce channel, we are transforming all channels to digitally perform as one team to create a better customer experience. As we move through 2021, the digital transformation will revolutionize the digital space and you can build a career that will propel your future.


**About the Team:**


The mission of our Digital Operations team is to operate a fault resilient, customer-centered, proactive DevOps team. The team is responsible for supporting systems that deliver AT&Ts customer experience, across multiple internet-facing eCommerce applications, databases, platforms and technology stacks. Our customer-journey centric Ops team is made up of Ops Engineers as well as Site Reliability Engineers (SREs) who are all focused on ensuring a highly available, resilient, performant and secure customer experience.


**Job Summary:**


Were looking for an energetic self-starter Security Monitoring and Alerting Specialist with deep understanding of security first principles and security best practices (PCI, OWASP, WASC, STRIDE) and working knowledge of HTTP protocol. Our goal is to expand on the functions of our Security Operation team with resources with familiarity with investigative methodologies and technologies such as log analysis, network monitoring, network/host forensics tools. Ideally this candidate has experience in large scale incident management and Security Orchestration, Automation, and Response (SOAR).


**Roles and Responsibilities:**


+ Log Aggregation Analysis to identify new attack/Fraud techniques from bad actors and identify any signs of compromise

+ Monitor Akamai Logs/ APIs and Traffic to identify new security rules

+ Identify automation opportunities to mitigate prod risk and fraud

+ Orchestrate SRE Security Monitoring and Alerting required to perform

+ Monitors SIEM and analyzes security events to determine appropriate actions

+ Communicates with management on incident updates.

+ Monitors emails containing links/attachments associated with potential phishing attempts to determine appropriate actions

+ Identify and tune false positives associated with current security events

+ Document analytical steps and findings associated with security event investigations

+ Develop and update incident response playbook/runbook procedures and processes for preventative and reactive controls

+ Identify monitoring/alerting opportunities that can be leveraged with existing tools or propose new tools to fill gaps

+ Assess, triage and prioritize security detections from logs and monitoring alerts for suspicious or anomalous activity

+ Conduct and lead incident response activities (triage, communications, containment, root cause analysis, remediation)

+ Analyze HTTP request/response data and collaborate knowledge with technology teams to find root cause

+ Comprehensive documentation to track incident response actions

+ Assist technology teams in remediation activities and validation of fixes

+ Develop custom Web Application Firewall rules for addressing high priority incidents

+ Prepare briefings and reports for leadership, team members and security partners

+ Develop strong working relationships with key partners in other business units and technology teams

+ Keep up to date on newly published vulnerabilities and attacker Tactics, Techniques and Procedures (TTPs)

+ Use KPIs to drive changes in processes for incident response improvement

+ Work with leadership in aligning and executing tactical roadmap.


**Shift timing (if any):**


+ Shift falls typically between 6 am to 10 PM India standard time. Occasionally may have to work long hours in situations when it is needed.


**Primary / Mandatory skills:**


+ **Overall Experience:** **6 - 10 Years**

+ Log Aggregation Analysis to identify new attack/Fraud techniques from bad actors and identify any signs of compromise: **3 - Intermediate (practical application)**

+ Monitor Akamai Logs/ APIs and Traffic to identify new security rules: **3 - Intermediate (practical application)**

+ Identify automation opportunities to mitigate prod risk and fraud: **3 - Intermediate (practical application)**

+ Orchestrate System Security Patching: **3 - Intermediate (practical application)**

+ Monitor Akamai Logs/ APIs and Traffic to identify new security rules: **3 - Intermediate (practical application)**

+ Akamai Security Center, Splunk, Dynatrace, Quantum Metrics, EFK, BurpSuite, Nessus: **3 - Intermediate (practical application)**

+ Excellent written and verbal English communication skills to work in a Global team


**Secondary / Desired skills:**


+ Contribution to open source projects


**Additional information (if any):** Willing to work in Shift Duties, Willingness to learn is very important as AT&T offers excellent environment to learn Digital Transformation skills such as cloud, Big data, AI, Full stack etc.


**Certifications (if any specific):**


+ Any Certification related to Primary / Mandatory Skills

+ Certification in OSCP

+ Ethical Hacker Cert (CEH)


**Experience:**


+ Log Aggregation Analysis to identify new attack/Fraud techniques from bad actors and identify any signs of compromise

+ Monitor Akamai Logs/ APIs and Traffic to identify new security rules

+ Akamai Security Center, Splunk, Dynatrace, Quantum Metrics, EFK, BurpSuite, Nessus, any other security monitoring or incident response tooling.

+ Orchestrate System Security Patching-Experience providing data/information to business leaders

+ Experience working in a large scale technically diverse organization


LOOKING FOR EARLY JOINERS


**Education Qualification:** Bachelors/ Masters degree in Computer Science or related field


AT&T is leading the way to the future for customers, businesses and the industry. We're developing new technologies to make it easier for our customers to stay connected to their world. Together, weve built a premier integrated communications and entertainment company and an amazing place to work and grow. Team up with industry innovators every time you walk into work, creating the world you always imagined. Ready to #transformdigital with us? Apply now!
We expect employees to be honest, trustworthy, and operate with integrity. Discrimination and all unlawful harassment (including sexual harassment) in employment is not tolerated. We encourage success based on our individual merits and abilities without regard to race, color, religion, national origin, gender, sexual orientation, gender identity, age, disability, marital status, citizenship status, military status, protected veteran status or employment status.
Posted: 2021-06-04 Expires: 2021-07-04
Sponsored by:
ADP Logo

Before you go...

Our free job seeker tools include alerts for new jobs, saving your favorites, optimized job matching, and more! Just enter your email below.

Share this job:

SR TECHNICAL SPECIALIST, APPLICATION DEV - DevOps Engineer (Security Monitoring)

AT&T
Hyderabad, TS 500001

Join us to start saving your Favorite Jobs!

Sign In Create Account
Powered ByCareerCast