Join AT&T and reimagine the communications and technologies that connect the world. Our Chief Security Office ensures that our assets are safeguarded through truthful transparency, enforce accountability and master cybersecurity to stay ahead of threats. Bring your bold ideas and fearless risk-taking to redefine connectivity and transform how the world shares stories and experiences that matter. When you step into a career with AT&T, you won't just imagine the future-you'll create it.
The Director Cybersecurity - Vulnerability Management is responsible for directing cyber security areas across products, services, infrastructure, networks, and/or applications while providing protection for AT&T, our customers and our vendors/partners. You will work on various projects relating to the protection of devices, customers, assets, data, information technology, and networks. Supports innovation, strategic planning, technical proof of concepts, testing, lab work, and various other technical program management related tasks associated with the cyber security programs both internal and external. This position has Associate Director Cyber Security and other Cyber Security direct reports.
Key Roles and Responsibilities:
Vulnerability discovery based on network-based scanning or agent-based collection
Driving the Cybersecurity organization to collect accurate and complete inventory of AT&T assets (applications, devices, IP addresses) in the ServiceNow tCMDB.
External attack surface management - which in includes assuring all externally exposed assets are identified and assessed for security risk
BugBounty - collection and reward associated with vulnerabilities or issues reported by external sources
Assessment of identified vulnerabilities for efficacy in the context of the environment, application, and risk
Solution support - to assist applications with remediation or alleviating risk associated with vulnerabilities
Reporting - to help application owners, developers, and leadership understand the security associated with vulnerabilities and the actions they need to take. And,
Leading remediation efforts - assuring application owner teams understand and take action on their responsibilities to minimize the risk due to vulnerabilities.
Utilizing threat intelligence to prioritize remediation efforts
Qualifications:
Preferred Master's Degree in Information Systems, Engineering, Mathematics or Cyber Security related fields.
Requires 10 or more years of related cybersecurity experience.
Due to the nature of work, US citizenship is required for the role.
7+ years of experience in information security, with at least 3 years specifically focused on vulnerability management; including experience with vulnerability assessment tools and methodologies.
Proven track record of leading and managing a high-performing team of security professionals.
Strong leadership skills with the ability to mentor and develop team members.
In-depth knowledge of various operating systems (Windows, Linux, macOS), network protocols, and application security.
Proficiency in using vulnerability scanning tools (e.g., Nessus, Xpanse, etc.) and security information and event management (SIEM) systems.
Strong understanding of risk management principles and practices. Ability to assess and prioritize vulnerabilities based on risk and business impact.
No relocation assistance is provided. Requires on site presence (3-5 days a week) at one of the listed locations.
>
Preferred Skills:
Professional certifications such as CISSP, CISM, CEH, or GIAC.
Experience with Cloud Security: Demonstrated experience in securing cloud environments (e.g., AWS, Azure, Google Cloud) and familiarity with cloud-native security tools and practices.
Strong knowledge of regulatory standards and frameworks such as ISO 27001, NIST, GDPR, and PCI-DSS.
Experience with compliance audits and reporting.
Incident Response Experience: Hands-on experience in incident response, including the ability to lead and coordinate responses to security incidents and vulnerability exploits.
Experience with Application Security: Experience covering application security, including SAST, SCA, DAST, RASP, IAST.
Our Director-Cybersecurity, earns between $171,00.00-$287,000 USD. Not to mention all the other amazing rewards that working at AT&T offers. Individual starting salary within this range may depend on geography, experience, expertise, and education/training.
Joining our team comes with amazing perks and benefits:
Medical/Dental/Vision coverage
401(k) plan
Tuition reimbursement program
Paid Time Off and Holidays (based on date of hire, at least 28 days of vacation each year and 9 company-designated holidays)
Paid Parental Leave
Paid Caregiver Leave
Additional sick leave beyond what state and local law require may be available but is unprotected
Employee discounts up to 50% off on eligible AT&T mobility plans and accessories, AT&T internet (and fiber where available) and AT&T phone
AT&T is leading the way to the future - for customers, businesses and the industry. We're developing new technologies to make it easier for our customers to stay connected to their world. Together, we've built a premier integrated communications and entertainment company and an amazing place to work and grow. Team up with industry innovators every time you walk into work, creating the world you always imagined. Ready to #transformdigital with us?
Apply now
Weekly Hours: 40
Time Type: Regular
Location: Dallas, Texas
Salary Range: $171,000.00 - $287,200.00
It is the policy of AT&T to provide equal employment opportunity (EEO) to all persons regardless of age, color, national origin, citizenship status, physical or mental disability, race, religion, creed, gender, sex, sexual orientation, gender identity and/or expression, genetic information, marital status, status with regard to public assistance, veteran status, or any other characteristic protected by federal, state or local law. In addition, AT&T will provide reasonable accommodations for qualified individuals with disabilities.