Principal Engineers, Cybersecurity

T-Mobile USA, Inc. seeks Principal Engineers, Cybersecurity in Bellevue, WA to provide a security engagement for all projects and products within the company and at all levels. Act as a trusted technical security advisor to all levels of the organization for a variety of Cyber Security projects that arise from current business and technological developments, ensuring the successful delivery of projects or services to enterprise customers. Act as an advocate for protecting T-Mobile assets and driving security from both a tactical and strategic perspective. Act as a subject matter expert and leader in a technical field, working to drive vision and results to enhance the overall Cyber Security health of T-Mobile. Develop programs that assess risks and provide innovative countermeasure solutions that appropriately balance Cyber Security and business objectives. Monitor for security attacks and maintain knowledge of threats, risks, and vulnerabilities, instituting appropriate Cyber Security controls to mitigate risks. Develop comprehensive and broadly complex threat models for any asset or program. Stay abreast of current architecture concepts, including topology, protocols, components, and principles. Evaluate and assess compliance to regulations, laws, and policies using industry standard methodologies like NIST, PCI, CPNI, and SOX in an enterprise environment. Automate basic scripting and reporting tasks via secure coding standards and create automation tools using scripting languages including Java, Python, PHP. Evaluate, recommend, and implement commercial hardware and software security products to augment and enhance the company enterprise security program. Responsible for new technology and support delivery from ideation through deployment. Make recommendations to management on corrective actions and effectively adapt solutions to ensure proper security implementation in product launches and installation. Support mitigation of security vulnerabilities based on OWASP Top10 and implement security in all SDLC phases. Coordinate and review security testing procedures with third parties and vendors. Lead remediation efforts within various T-Mobile teams and vendors. Collaborate in the development of the strategy, roadmap, and requirements for enterprise information protection to align with technology, product, and overall business strategy. Telecommuting is permitted, but applicants must live within a reasonable commuting distance. No additional national or international travel is anticipated. Experience and education requirements: PRIMARY REQUIREMENTS: Master’s degree in Telecommunications Engineering Technology, Computer Science, or related, and 5 years of relevant work experience. ALTERNATIVE REQUIREMENTS: Bachelor’s degree in Telecommunications Engineering Technology, Computer Science, or related, and 7 years of relevant work experience. In addition, the following skills are required: (1) Utilizing wireless telecommunication technologies including CDMA, GSM/GPRS/EDGE, LTE, and 5G to provide comprehensive cybersecurity assessments and recommendations; (2) Working with Android and IOS telecom and device security technologies, mobile devices, IoT security, Cloud Security, Application Security testing SAST/DAST, and OWASP Top 10; (3) Utilizing security systems and security technologies including application security scanners, Wireshark, Kali Linux, Certificate Management, Remote Connection, Network Protection, Data Loss Prevention, File Integrity Monitoring, Security Auditing and Logging, Vulnerability Management, and Operating systems (Windows, MAC, or Linux); (4) Utilizing virtualization technologies including virtual compute (Vmware or Openstack) and containerization (Kubernetes, Docker, or Clear); (5) Applying security governance, risk, and compliance policies to security assessments to prioritize security recommendations that maximize the security posture of the systems/platforms; and (6) Utilizing engineering and cybersecurity practices to ensure system and platforms are deployed in a secure manner, including threat modeling, changing default passwords, keeping management ports closed to public IP space, using security agents, and conducting hardening of various configurations such as SSH or SELinux. Washington Pay Range: $200,528.64 - $224,900.00/year. The pay range above is the general base pay range for a successful candidate in the state listed. The successful candidate’s actual pay will be based on various factors, such as work location, qualifications, and experience. At T-Mobile, employees in regular, non-temporary roles are eligible for an annual bonus or periodic sales incentive or bonus, based on their role. Most Corporate employees are eligible for a year-end bonus based on company and/or individual performance and which is set at a percentage of the employee’s eligible earnings in the prior year. Certain positions in Customer Care are eligible for monthly bonuses based on individual and/or team performance, while Retail and Business Sales roles are eligible for monthly or quarterly sales incentives. And since we are ALL owners, EVERY employee at T-Mobile is eligible for an Annual Stock Grant. For information about T-Mobile’s amazing benefits, check out https://careers.t-mobile.com/culture-and-benefits/. To apply, interested candidates should email their résumés to Lindsay Baitz at Lindsay.Baitz1@T-Mobile.com and reference REQ309145.EOE