Principal Cybersecurity Engineer - Database Security, T-Mobile

T-Mobile

Location:

United States, Frisco ▼

Atlanta

Overland Park

Bellevue

Category:

IT - Software Development

Contract Type:

Employment contract

Salary:

127800.00 - 230700.00 USD / Year

Save Job

Apply Position

Job Description:

We are seeking a Principal Cybersecurity Engineer – Database Security to lead our efforts in ensuring that our software, systems, and infrastructure comply with the highest security and compliance standards. You will conduct technical security assessments, code reviews, and vulnerability testing to identify and mitigate risks while assisting T-Mobile teams and partners in bolstering security. Collaboration with T-Mobile Engineers will be key as you design and implement proactive strategies to enhance our security posture across various domains, including mobile devices, IoT, enterprise applications, cloud services, big data, and core network technologies.

Job Responsibility:

Optimize cross-functional partnerships to address customer requirements effectively
Lead large-scale analysis efforts across multiple departments
Utilize internal and external data resources for strategic business decisions and influence stakeholders
Foster long-term relationships with key stakeholders and preemptively address their responses to recommendations
Conduct information security reviews of new technologies and oversee remediation planning
Collaborate with Engineering and Operations Teams to resolve security vulnerabilities identified through PSIRTs, scans, or incidents
Propose process and technology enhancements for legacy applications and infrastructure
Identify security needs, propose solutions, and oversee the implementation and monitoring of security improvements
Maintain visibility within the Executive branch concerning information security and collaborate with various groups (e.g., application support, finance, privacy)
Analyze and design threat models to depict trust boundaries and identify essential safeguards for T-Mobile's assets and brands
Stay abreast of industry developments and trends to create business cases and action plans addressing critical security gaps
Lead cross-functional security projects and mentor peers and junior team members in security technologies and practices
Demonstrate extensive experience with threat modeling using methodologies such as STRIDE, PASTA, TRIKE, and others
Serve as a subject matter expert across multiple facets of network and information security, including firewall policy design and vulnerability management
Complete additional duties and projects as assigned by business management
Collaborate with internal and external teams to deliver exceptional results for T-Mobile
Maintain vendor relationships
Track and report progress using tools like JIRA and Confluence
Provide weekly status updates on projects and goals
Participate in team and company meetings
Provide attestations to Audit and Compliance teams
Engage in on-call rotation
Conduct detailed root cause and post-incident analyses
Document processes, configurations, and lessons learned
Adhere to T-Mobile's Incident and Change Management procedures
Complete training promptly
Identify and evaluate problems, innovate solutions, and automate processes
Develop goals, objectives, and operational metrics to consistently improve service delivery to internal customers
Anticipate, enable, and support technological solutions for customer needs

Requirements:

Bachelor's Degree, Computer Science, or Information Technology
7+ years of cybersecurity experience in a highly technical role
Proficiency in database solutions: Oracle, SQL Server, MySQL, PostgreSQL, etc.
Preferred expertise in designing, implementing, and supporting Imperva DB Security Suite (SecureSphere, Sonar, DRA, Vulnerability Scanning)
Demonstrated experience in Data Security Posture Management (DSPM), User Behavior Analytics (UBA), and Data Protection
Experience in securing AI models and ensuring data security in AI and SaaS environments
4-7 years’ Experience with the following: project/team lead, formal implementation SDLC, facilitation of cross-functional solution design teams
Great to have expertise in designing, implementing, and supporting Posture Management solutions such as Varonis, Obsidian, Microsoft Purview, etc.
Be subject matter expert in multiple security subject areas
Experience with high level design architecture, security technologies, networking, web services and SOA
Leadership experience in guiding cross-functional teams to meet security objectives
US Citizenship and onshore location to support USGCI systems
Willingness to provide 24/7 on-call support
Significant knowledge of current technological trends and developments in the area of info security
Ability to create technical specification and requirements and work independently and with no direction/supervision
Strong verbal and communication skills with diverse cross functional groups
Always act with tact and integrity, and interface with a variety of individuals in a positive and productive manner
Ability to plan, organize and prioritize tasks to complete independently, as well as delegate and track progress within the team
In-depth knowledge of security best practices in large-scale environments
Strong presentation skills to large and small audiences
Understanding load balancers (ex – A10, F5), firewalls (ex – CheckPoint), Venafi, MDM (ex - Mobile Iron), Cloud (ex - AWS, Azure), Malware Protection (ex -FireEye), Advanced Persistent Threats (ex - Damballa), Privileged Accounts (ex – CyberArk), SIEM (ex – ArcSight), Log & Event (ex – Splunk), Intrusion IDS/IPS (ex – Symantec), Cloud Platform (ex – PCF, Docker), Scanning (ex – Qualys), AppSec (ex - Veracode)
Expert understanding of T-Mobile’s network elements and how they work together (EIT, Engineering & 3rd Party)
5+ years of scripting experience (e.g., Bash, PowerShell, Ruby, Python, etc.)
Experience as a Systems Administrator/Engineer in a large-scale enterprise
Strong UNIX troubleshooting skills
Familiarity with PKI and SSL certificate management
Knowledge and proven experience in compliance regulations and auditor attestations (e.g., USGCI, PCI, SOX, etc.)
Incident response experience for security breaches
ITIL change management experience
Application support experience
Experience deploying systems via VMware or Orca
Expertise in report and dashboard creation using tools such as PowerBI, Splunk, etc.
Familiarity with database design and programming, along with cloud-based application security
Familiarity with infrastructure as code technologies (e.g., Puppet, Ansible, Jenkins)
Proven track record in addressing zero-day vulnerabilities and advanced persistent threats (APTs)
Knowledge of secure software development lifecycle (SDLC) practices and tools
Strong analytical and decision-making skills, with a focus on proactive risk mitigation
Understanding of emerging technologies and their security implications, such as quantum computing and blockchain

Nice to have:

CISSP and/or CCSK and/or CCSP and/or CISA/CISM certification
Imperva DAM certifications

What we offer:

Competitive base salary and compensation package
Annual stock grant
Employee stock purchase plan
401(k)
Access to free, year-round money coaches
Medical, dental and vision insurance
Flexible spending account
Employee stock grants
Employee stock purchase plan
Paid time off
Up to 12 paid holidays
Paid parental and family leave
Family building benefits
Back-up care
Enhanced family support
Childcare subsidy
Tuition assistance
College coaching
Short- and long-term disability
Voluntary AD&D coverage
Voluntary accident coverage
Voluntary life insurance
Voluntary disability insurance
Voluntary long-term care insurance
Mobile service & home internet discounts
Pet insurance
Access to commuter and transit programs

Additional Information:

Job Posted:

April 05, 2025

Employment Type:

Fulltime

Work Type:

On-site work

View All Jobs In This Company

Job Link Share:

Principal Cybersecurity Engineer - Database Security