Principal Cybersecurity Cloud Infrastructure Engineer Security Control Validation

Job description

**Job Description:**

**This position requires office presence of a minimum of 5 days per week and is only located in the location(s) posted.

No relocation is offered.**

Join AT&T and reimagine the communications and technologies that connect the world.

Our Chief Security Office ensures that our assets are safeguarded through truthful transparency, enforce accountability and master cybersecurity to stay ahead of threats.

Bring your bold ideas and fearless risk-taking to redefine connectivity and transform how the world shares stories and experiences that matter.

When you step into a career with AT&T, you won’t just imagine the future-you’ll create it.

This is an action-oriented, operational role.

We are seeking a candidate with deep cloud engineering experience, particularly in designing and optimizing image building pipelines within Azure and AWS, managing artifact repositories with JFrog, automating infrastructure orchestration using Terraform, and operating security controls across cloud environments.

**Key Roles and Responsibilities:**

+ Design, implement, and maintain automated image building pipelines in Azure and AWS, ensuring optimal efficiency, security, and compliance with organizational standards.
+ Manage and optimize the usage of JFrog Artifactory for artifact storage, versioning, and distribution within CI/CD workflows.
+ Develop and maintain Infrastructure-as-Code (IaC) solutions for cloud resource orchestration using Terraform, including the creation, deployment, and lifecycle management of cloud resources.
+ Integrate and operate cloud-native and third-party security controls for vulnerability scanning, image hardening, access controls, and compliance monitoring in both Azure and AWS environments.
+ Onboard new applications and workloads to secure cloud platforms, establishing automated checks and controls throughout the image pipeline.
+ Conduct hands-on deployment, configuration, policy creation, and continuous improvement for cloud security tools and controls.
+ Integrate cloud security controls and monitoring with other security solutions and centralized logging/data sources for comprehensive visibility and response capability.
+ Manage lifecycle activities for cloud infrastructure, including the upgrade and replacement of images, modules, and security components.
+ Respond to operational incidents, user requests, and cloud security events, ensuring rapid resolution and minimal impact to service availability.
+ Lead and coordinate troubleshooting efforts in high-pressure situations, collaborating with leadership and cross-functional teams to restore and secure cloud services.

**Qualifications:**

+ 5+ years of hands-on experience as a security-focused cloud engineer, with proven expertise configuring, operating, and managing security controls for both on-premises and cloud-native environments.
+ Demonstrated ability to serve as a subject matter expert (SME) in cybersecurity within large, rapidly evolving enterprise cloud infrastructures.
+ In-depth engineering and operational knowledge of essential security technologies, such as endpoint detection and response (EDR), data loss prevention (DLP), firewalls, web application firewalls (WAF), proxy solutions.
+ Advanced experience with identity and access management in the cloud, including integration with providers such as SSO, SAML, Active Directory, and Microsoft Entra, ensuring robust authentication and authorization.
+ Thorough understanding of cloud security architecture for web applications and platforms, including application firewalls, secure frameworks, and protocols relevant to secure deployment and operation.
+ Comprehensive knowledge of TCP/IP, web protocols, DNS, and networking from a security perspective, with the ability to identify, mitigate, and respond to related threats.
+ Expertise in mainstream operating systems (particularly Linux), web services, programming languages, network devices, and current attack vectors, emphasizing security best practices at every stage.
+ Proficient in analyzing logs, correlating security data, and conducting packet captures to investigate and respond to security incidents in cloud environments.
+ Strong scripting and automation skills using shell and mainstream programming languages to enforce security policies and automate threat detection or response.
+ Senior-level understanding and application of PKI technologies as part of secure cloud deployments.
+ Working knowledge of both open-source and commercial application security tools and frameworks to ensure continuous monitoring and compliance in cloud infrastructure.
+ Experience with security validation tools like SafeBreach or in vulnerability management is a plus

**Education, Certifications, and Other:**

+ Excellent communication skills to clearly document, present, and architect cloud security solutions, including technical diagrams and performance metrics.
+ Proven ability to operate effectively under high-pressure, time-sensitive circumstances, particularly in the context of incident response or crisis management.
+ Self-driven and reliable, with a demonstrated commitment to follow-through and continuous security improvement.
+ Capable of collaborating with geographically dispersed security and engineering teams as an engaged contributor and team player.
+ Relevant security certifications such as CISSP, CISM, SANS GIAC, GWEB, or equivalent, underscoring commitment to industry standards and ongoing professional development.

**Education/Experience:**

Bachelor’s degree (BS/BA) desired in Computer Science or Cybersecurity.

7+ years of related experience.

Certification is required in some areas.

**Supervisor:**

No

Our Principal Cybersecurity earns between $141,300-$211,900 USD Annual Not to mention all the other amazing rewards that working at AT&T offers.

Individual starting salary within this range may depend on geography, experience, expertise, and education/training.



**Joining our team comes with amazing perks and benefits:**

+ Medical/Dental/Vision coverage 
+ 401(k) plan 
+ Tuition reimbursement program 
+ Paid Time Off and Holidays (based on date of hire, at least 23 days of vacation each year and 9 company-designated holidays) 
+ Paid Parental Leave 
+ Paid Caregiver Leave 
+ Additional sick leave beyond what state and local law require may be available but is unprotected 
+ Adoption Reimbursement 
+ Disability Benefits (short term and long term) 
+ Life and Accidental Death Insurance 
+ Supplemental benefit programs: critical illness/accident hospital indemnity/group legal 
+ Employee Assistance Programs (EAP) 
+ Extensive employee wellness programs 
+ Employee discounts up to 50% off on eligible AT&T mobility plans and accessories,
+ AT&T internet (and fiber where available) and AT&T phone.

#LI-Onsite – Full-time office role-

Ready to join our team?

Apply today

**Weekly Hours:**

40

**Time Type:**

Regular

**Location:**

USA:NC:Charlotte / Research Dr - Dat:9139 Research Dr

**Salary Range:**

$141,300.00 - $211,900.00

It is the policy of AT&T to provide equal employment opportunity (EEO) to all persons regardless of age, color, national origin, citizenship status, physical or mental disability, race, religion, creed, gender, sex, sexual orientation, gender identity and/or expression, genetic information, marital status, status with regard to public assistance, veteran status, or any other characteristic protected by federal, state or local law.

In addition, AT&T will provide reasonable accommodations for qualified individuals with disabilities.

AT&T is a fair chance employer and does not initiate a background check until an offer is made.
AT&T will consider for employment qualified applicants in a manner consistent with the requirements of federal, state and local laws
We expect employees to be honest, trustworthy, and operate with integrity.

Discrimination and all unlawful harassment (including sexual harassment) in employment is not tolerated.

We encourage success based on our individual merits and abilities without regard to race, color, religion, national origin, gender, sexual orientation, gender identity, age, disability, marital status, citizenship status, military status, protected veteran status or employment status

Required Skill Profession

Other General