Cybersecurity Consultant 3 (Gardiner)

  • Gardiner, ME

Employment Type

: Full-Time


: Information Technology

Loading some great jobs for you...

AT&T Cybersecurity Consulting is a division of AT&T (a Fortune Global Top 10 company) and is looking for a senior information security practitioner with technical experience for the position of a Senior Consultant located in the North Eastern US to be a part of a dynamic team of experienced security professionals with varied experiences. Candidate must be skilled in secure network architecture design, implementation, device configuration review, secure architecture reviews, and network and/or application penetration testing. Prior experience performing Red/Blue team exercises is preferred and prior experience performing hands-on incident response and forensic investigations is also preferred. AT&T Cybersecurity Consulting clients range from some of the largest companies in the world to small businesses requiring security consulting expertise.

Job Duties:
Key functions of this role will be to work on network security, architecture and security operations trusted advisor engagements for our customers involving segmentation and optimization, detailed assessment and next-generation design recommendations, SOC design & implementation, and vulnerability & threat management. Manual and automated configuration analysis for security weaknesses in firewalls, routers, switches, servers (Windows, Unix/Linux), IDS/IDP, Databases, and other platforms as well as VoIP infrastructures will also be required. In addition, hands on network and/or web application level penetration testing, wireless network penetration testing, and/or social engineering will be preferred. Successful candidates will have demonstrated experience in network security consulting and will have an understanding of network level risk assessments with the ability to write objective, detailed reports explaining security issues. A background in Network Architecture, Engineering, or Computer Science is required. Technical knowledge and experience with security assessment tools such as Tenable Nessus, Nipper, as well as scripting (Python, PHP, & Perl, Powershell, R, Hive, Pig) will be given preference. Successful candidates will also have experience using penetration testing and exploitation frameworks/platforms such as Kali linux, Cobalt Strike, MetaSploit, Veil Framework and others.

Bachelor's degree in Computer Science or related fields, Master's Degree preferred
A minimum of eight years of Information Security consulting with mid-to-advanced level infrastructure security design experience required
Experience with Virtualization and Cloud architectures (AWS, Azure and/or GCP)

Working Knowledge of SDN, IAM, NAC and DLP
Experience with the implementation or operation of next-generation firewall technology, such as Palo Alto, Cisco Firepower, and Fortinet Fortigate
Knowledge of Linux, UNIX, Windows (including Active Directory) and other operating systems
Knowledge of popular databases such as Hadoop, MSSQL, Oracle, and MySQL
Ability to write customized scripts using at least two of Perl, PHP, Python, Pig, Hive, R, Powershell
Must be a flexible team player, hard-working, and possess excellent communication and customer-facing skills
Must be self-directed, able to manage solo projects or participate as part of a larger team, and be self-driven to overcome knowledge gaps
Strong report writing skills and ability to explain complex security issues to customers in a formal presentation format required
Must be able to interact confidently with all levels of technical and management client teams
One Security certification such as CISSP, GCIH, CEH, SANS GSEC, etc., is required and willingness to pursue further certification preferred.
Ability to travel 50%-75%, mostly within region, must possess drivers' license

Technical Skills
Strong technical problem / resolution skills required
Knowledge and experience with technical network and host-based security required.
Knowledge and experience with micro-segmentation technologies (VMware NSX, Illumio, Cisco ACI, etc.) preferred
Experience with Cloud architectures in AWS, Azure and/or Google Cloud required.
Very good understanding of security operations design & management in a large customer environment, including threat intelligence programs, threat hunting activities, and incident and threat analysis preferred
Working experience implementing Cisco ISE preferred
Mid-to-advanced level infrastructure or security design capabilities
Mid-to-advanced level knowledge of one or more of the following:
-Network segmentation design
-Security event monitoring & correlation tools (SA, Envision, Splunk ES, etc.)
-EDR Solution Suites (Carbon Black, Tanium, etc.)
-Intelligence gathering principles, policies & procedures
-Cyber threat intelligence models (ATT&CK, Kill Chain, Diamond)
-Methodologies and techniques for identifying prioritizing, and classifying cyber incidents
-Network and/or application level penetration testing
-DevSecOps best practices and implementation

Additional Requirements
Knowledge and experience with risk and compliance assessments
SCADA / Control systems network experience a plus
Working knowledge of data visualization tools (e.g., Flare, HighCharts, Tableau, etc.) a plus
Strong working knowledge of automation and orchestration platforms, such as Demisto, Phantom, & Ansible a plus

Associated topics: business, business analysis, business analyst, business systems, client, consult, consultant, market, sap, support analyst

Launch your career - Upload your resume now!

Upload your resume

Loading some great jobs for you...