Skip to content

AT&T International Careers My Job Application

Join a network that helps you succeed

At AT&T, our talents work together to make a difference. Think you’d like to help us connect more people than ever before? Check out our latest opportunities below, or browse for other recent postings.

India

Senior Information Security Analyst

Location:

Bangalore, India

Ref #:

1848866

Date published:

18-Mar-2019
Apply now
About the Job:

AT&T is building a brand new team to support the AT&T Xandr advertising & analytics business. Leveraging the spirit of innovation that began with Alexander Graham Bell more than 140 years ago and has continued on as a part of AT&T’s legacy, Xandr is uniquely positioned to move the advertising industry forward. The foundation of that will be world class technology, and we want you to be part of our journey by joining our new technical center of excellence.

This position is part of the Xandr Cyber Security team. This operations-focused role is integral to the ongoing security and continuity of the Xandr infrastructure. We are seeking for Information Security Analyst who can secure enterprise information by designing, implementing, and enforcing security controls, safeguards, policies and procedures. Drive the implementation and ongoing operations and maintenance of core security services for the Xandr infrastructure including vulnerability scanners (internal and external), code quality, code analysis, secrets management, ongoing compliance validation, penetration test validation and remediation, and front-line coverage for the reporting of security concerns.

Analyze results, deploy remediation for security audits and penetration testing, working with internal TechOps stakeholders including SysOps, CSI, DB Ops, and Cybersecurity.
Implement plans to resolve issues.

Works closely with numerous organizations across the company at various levels including Legal, Finance, Network Engineering & Operations, System Operations, and Engineering.

Roles and Responsibilities:

- Establish system controls by developing framework for controls and levels of access, recommending improvements

- Drive development and implementation of policy, processes, and procedures in support of GRC, InfoSec, and DR/BC

- Coordinate internal and external audits

- Oversee Production Operations incident response planning and security breach investigations

- Monitor and report on implementation and compliance of policy, process, and procedures refining as required and escalating non-compliance issues as needed

- Develop requirements for security testing and auditing to include penetration testing and manage the entire process from vendor selection to testing to results analysis and remediation planning and actual remediation

- Identify risks and develop and propose strategies to mitigate them before crisis develops

- Consider and address regulatory compliance proactively and organically as part of workflows and processes where practical

- Demonstrate personal integrity and responsibility

- Other duties as assigned

Key Competencies and Skills:

- Experience with various regulatory requirements such as PCI, ISO27001

- At least 7 years progressively more responsible experience in the IT field

- Two or more years of hands on Unix/Linux system administration

- Solid knowledge of IDS/IPS and vulnerability management solutions

- Knowledge of current security threats and vulnerabilities

- Knowledge of authentication, authorization, and access control methods

- Knowledge of SANS and COBIT framework

- Excellent troubleshooting skills

- Excellent written and oral communication skills

- Good organizational skills

- High professional standards and desire to continue to develop skills and growth professionally

- Strong commitment and drive to deliver high quality service to all customers, regardless of whether they are internal or external

- Demonstrated ability to rapidly respond to changing needs of the business

- Good understanding of appropriate financial control structures and corporate governance for businesses of various sizes ranging from small startups to publicly traded and how to implement policy, structure, and governance as appropriate

Education and Qualifications:

Bachelor Degree in Business/CS/MIS AND equivalent 3-5 years for experience in Information security OR at least 7 years progressively more responsible experience in the IT field

Additional Information:

The role involves shift-based work and candidates should expect that work hours may vary depending on business needs.