Specialist Cybersecurity - RATE (Risk Assessment Testing and Enforcement) at AT&T

Bengaluru, Karnataka, India

Apply Now
AT&T Logo
Not SpecifiedCompensation
Mid-level (3 to 4 years), Senior (5 to 8 years)Experience Level
Full TimeJob Type
UnknownVisa
Telecommunications, CybersecurityIndustries

Requirements

  • 6+ years experience in IT General Controls (ITGC) and IT Application Controls (ITAC) testing and evaluation (hands-on experience in control testing)
  • Familiarity with cloud security controls and best practices
  • Experience and understanding of AI/ML working principles, including control testing and related risks
  • Ability to interpret and act on assigned tasks
  • Understanding of Third-Party Risk Management (TPRM) and Vendor Risk Management (VRM) processes, products, and services
  • Familiarity with GDPR, ISO 27001, SOC 2, and related standards/frameworks and compliance requirements
  • Certified Ethical Hacker (CEH) certification or equivalent skills
  • Knowledge of vulnerabilities, threat identification, and remediation; ability to understand and analyze penetration test (Pentest) reports
  • Working knowledge of PCI-DSS compliance and control requirements
  • 6 years minimum experience in third-party risk management or risk consulting, with at least 4 years in assessing/testing third-party applications security
  • Good understanding of various third-party risk management frameworks and standards
  • Good exposure to regulatory requirements in other industries
  • Awareness of known vulnerabilities, security features, and expected controls for leading ERPs (e.g., Oracle EBS, Fusion, Hyperion, SAP) and/or other third-party applications (e.g., Salesforce, Workday)
  • Proven project management skills
  • Bachelor's or master's degree in computer science, Mathematics, Information Systems, Engineering, Commerce, or Cyber Security (desirable)
  • Prior experience with Telecom sector (desirable)
  • ISACA, ISC2, or other relevant certifications (desirable)

Responsibilities

  • Executing product security assessments, identifying issues that need appropriate risk treatment, and reporting them to senior ATS stakeholders
  • Supporting RATE leadership in reporting on trends identified and responses recommended
  • Supporting the development/enhancement of processes/tooling to better identify/record/address risks related to third-party application/product usage
  • Suggesting ways to enhance the review process for better effectiveness and efficiency
  • Executing third-party product security assessments, identifying issues that need appropriate risk treatment, and reporting them to senior ATS stakeholders
  • Partnering with RATE leadership to recommend and enforce approved Technology Standards for use across the enterprise

Skills

Key technologies and capabilities for this role

ITGCITACControl TestingCloud SecurityAI/MLRisk AssessmentVulnerability AssessmentProduct SecuritySecure by DesignIT General ControlsIT Application Controls

Questions & Answers

Common questions about this position

What experience level is required for this Specialist Cybersecurity role?

The position requires 6+ years of experience.

Where is this job located?

The job is located in Hyderabad or Bengaluru.

What key skills and certifications are needed for this position?

Required skills include experience in ITGC and ITAC testing, familiarity with cloud security controls, understanding of AI/ML principles and risks, TPRM/VRM processes, GDPR/ISO 27001/SOC 2 standards, Certified Ethical Hacker (CEH) or equivalent, vulnerability knowledge, pentest report analysis, and PCI-DSS compliance.

What does the RATE team do at AT&T?

The RATE team evaluates products and solutions for vulnerabilities and compliance, executes security assessments, identifies risks, reports to stakeholders, and supports process enhancements to ensure secure deployments adhering to Secure by Design principles.

What makes a strong candidate for this cybersecurity role?

Strong candidates have 6+ years of experience, hands-on control testing skills in ITGC/ITAC, knowledge of cloud/AI/ML risks, TPRM/VRM, compliance frameworks like GDPR and PCI-DSS, and CEH certification with pentest analysis abilities.

AT&T

Telecommunications services including wireless and broadband

Website

About AT&T

AT&T provides telecommunications services, including wireless communications, broadband internet, and digital television, primarily in the United States. Its 5G network offers faster data speeds and more reliable connections, although availability can vary. The company caters to both individual consumers and businesses, offering various subscription plans that include options for unlimited data and bundled services that combine internet, TV, and phone. AT&T generates revenue mainly through subscription fees, device sales, and its streaming service, DIRECTV STREAM, which adds to its diverse offerings. In a competitive market, AT&T distinguishes itself with its extensive service range and strong brand presence.

Dallas, TexasHeadquarters
1876Year Founded
$43.3MTotal Funding
IPOCompany Stage
Consumer Software, EntertainmentIndustries
10,001+Employees

Benefits

Health Insurance
Dental Insurance
Vision Insurance
401(k) Retirement Plan
401(k) Company Match
Paid Vacation
Paid Sick Leave
Paid Holidays
Paid Parental Leave
Adoption Assistance
Disability Insurance
Life Insurance
Employee Assistance Programs
Wellness Program
Employee Discounts

Risks

The customer service guarantee may increase financial liabilities due to compensation for outages.
A recent data breach could damage AT&T's reputation and lead to customer churn.
Resistance to replacing landlines may impact customer retention and satisfaction.

Differentiation

AT&T offers a unique customer service guarantee, setting it apart from competitors.
The company is expanding its fiber network, enhancing broadband offerings in underserved areas.
AT&T's 'Phone-Advanced' device aligns with the trend of replacing traditional landlines.

Upsides

AT&T's fiber network expansion could provide a competitive edge in broadband services.
The new customer service guarantee may attract customers from competitors lacking similar assurances.
Collaboration with The Arc enhances AT&T's brand image through corporate social responsibility.

Related Jobs

San Antonio
Remote iconRemote

Third-Party Cyber Risk Manager

Humana
Salary not specified
  • Employment type iconFull Time
  • Experience level iconMid-level (3 to 4 years)
New York
Remote iconRemote

IT Risk & Compliance Analyst

Angi
Salary not specified
  • Employment type iconFull Time
  • Experience level iconMid-level (3 to 4 years)
Canada
Remote iconRemote

Security Analyst

Qualified.com
$130,000 - $145,000/year
  • Employment type iconFull Time
  • Experience level iconJunior (1 to 2 years)
United States +4 more
Remote iconRemote

Security Engineer, Product Security

Chainlink Labs
Salary not specified
  • Employment type iconFull Time
  • Experience level iconMid-level (3 to 4 years), Senior (5 to 8 years)
San Francisco +1 more
Remote iconRemote

Standards & Enforcement Specialist (formerly Trust & Safety)

Substack
Salary not specified
  • Employment type iconFull Time
  • Experience level iconJunior (1 to 2 years)
United States
Remote iconRemote

Staff Product Manager - Vendor Risk Management

Vanta
$221,000 - $260,000/year
  • Employment type iconFull Time
  • Experience level iconExpert & Leadership (9+ years)
Remote
Remote iconRemote

Senior Compliance Analyst

Earnest
Salary not specified
  • Employment type iconFull Time
  • Experience level iconJunior (1 to 2 years)

Land your dream remote job 3x faster with AI

Try Jobo Free