Principal Cybersecurity - Network Threat Analyst

**Job Description:** **This position requires office presence of a minimum of 5 days per week and is only located in the location(s) posted. No relocation is offered.** Join AT&T and reimagine the communications and technologies that connect the world. Our Chief Security Office ensures that our assets are safeguarded through truthful transparency, enforce accountability and master cybersecurity to stay ahead of threats. Bring your bold ideas and fearless risk-taking to redefine connectivity and transform how the world shares stories and experiences that matter. When you step into a career with AT&T, you won't just imagine the future-you'll create it. The **Principal Cybersecurity Network Threat Analyst** investigates and researches cyber threats using network analysis tools and techniques. The Network Threat Analyst derives actionable threat intelligence and provides analytical support to the Chief Security Office Cyber Operations organization. The Network Threat Analyst will: + Perform deep technical analysis of suspicious network activity using internal network collection platforms, including but not limited to flow analysis, packet analysis, review of metadata and intelligence sources. + Use proprietary and open-source intelligence sources to analyze and interpret network telemetry, produce informative products, briefs, reports, and indicators of compromise. + Configure and optimize internal and external threat monitoring systems to increase AT&T's intelligence holdings to maintain a high standard of quality for network cyber indicators. + Document findings and recommend remediation action to a team of highly technical professionals with expertise in cybersecurity, threat intelligence, threat detection, networking, log, malware, and vulnerability analysis. + Identify and implement new analysis techniques, beyond those currently available. + Detect network threats beyond the capabilities of common tools. + Reduce the risk of False Positive or False Negative detections and improve detection logic for advanced and targeted threats that are missed by existing tools and controls. + Implement new automation solutions to improve workflow efficiency. + Create detailed and accurate reports and professional briefings documenting findings to share with a variety of audiences. + Recommend and oversee implementation of technical requirements to ensure platform meets analysis needs. Demonstrated Knowledge or use of: + Common cybersecurity concepts, tools, and frameworks (e.g., NIST, MITRE ATT&CK, SIEM, IDS/IPS, etc.) + Common network threats, attack methods and techniques (DDoS, brute force, spoofing, MITM, etc.) + Common network concepts, technologies, controls, and protocols (e.g. IDS/IPS/Routing/VPN/ICMP/BGP/UDP/TCP/SSL/ etc.) + Cyber-attack stages (e.g. reconnaissance, scanning, enumeration, exploitation, privilege escalation, lateral movement, persistence, etc.) + Network analysis tools/technologies (Wireshark, Netwitness, SNORT, SURICATA, ZEEK, PCAP, NETFLOW, etc.) + Programming or scripting languages (e.g., Python, PowerShell, or equivalent) + Investigative tools and techniques. Demonstrated ability to: + Identify network threats and create detective measures and IOCs. + Identify patterns and trends in data with strong analytical and problem-solving skills. + Identify False Positives and False Negatives. + Use and configure threat intelligence platforms and tools (e.g., MISP, ThreatQ, OpenCTI or equivalent). + Stay current with the latest developments in cybersecurity and threat intelligence. + Work independently and collaboratively in a fast-paced & dynamic environment. + Use Windows and Linux. + Use Open-Source Research Techniques to discover related threats. + Adhere to established rules, regulations, conventions, and information protection requirements with a demonstrated sense of responsibility and ethics. + Apply feedback to future work products. + Effectively communicate to convey complex information in a clear and concise manner in both written and oral formats. **Education/Experience:** Bachelor's degree (BS/BA) desired in Computer Science or Cybersecurity. 7+ years of related experience. Certification is required in some areas. Desired: + Relevant cybersecurity certifications (e.g., CISSP, Security+, CEH, or equivalent) + Ability to qualify for a TS/SCI security clearance. **Supervisor:** No Our Principal Cybersecurity earns between $141,300-$211,900. USD Annual, not to mention all the other amazing rewards that working at AT&T offers. Individual starting salary within this range may depend on geography, experience, expertise, and education/training.  **Joining our team comes with amazing perks and benefits:** + Medical/Dental/Vision coverage  + 401(k) plan  + Tuition reimbursement program  + Paid Time Off and Holidays (based on date of hire, at least 23 days of vacation each year and 9 company-designated holidays)  + Paid Parental Leave  + Paid Caregiver Leave  + Additional sick leave beyond what state and local law require may be available but is unprotected  + Adoption Reimbursement  + Disability Benefits (short term and long term)  + Life and Accidental Death Insurance  + Supplemental benefit programs: critical illness/accident hospital indemnity/group legal  + Employee Assistance Programs (EAP)  + Extensive employee wellness programs  + Employee discounts up to 50% off on eligible AT&T mobility plans and accessories, + AT&T internet (and fiber where available) and AT&T phone. \#LI-Onsite - Full-time office role- Ready to join our team? Apply today. **Weekly Hours:** 40 **Time Type:** Regular **Location:** USA:NC:Charlotte / Research Dr - Dat:9139 Research Dr **Salary Range:** $141,300.00 - $237,400.00 It is the policy of AT&T to provide equal employment opportunity (EEO) to all persons regardless of age, color, national origin, citizenship status, physical or mental disability, race, religion, creed, gender, sex, sexual orientation, gender identity and/or expression, genetic information, marital status, status with regard to public assistance, veteran status, or any other characteristic protected by federal, state or local law. In addition, AT&T will provide reasonable accommodations for qualified individuals with disabilities. AT&T is a fair chance employer and does not initiate a background check until an offer is made. AT&T will consider for employment qualified applicants in a manner consistent with the requirements of federal, state and local laws We expect employees to be honest, trustworthy, and operate with integrity. Discrimination and all unlawful harassment (including sexual harassment) in employment is not tolerated. We encourage success based on our individual merits and abilities without regard to race, color, religion, national origin, gender, sexual orientation, gender identity, age, disability, marital status, citizenship status, military status, protected veteran status or employment status