Principal Engineer, Cybersecurity Job at T-MOBILE USA, Inc. in Overland Park
T-MOBILE USA, Inc., Overland Park, Kansas, United States
Overview
At T-Mobile, we invest in YOU! Our Total Rewards Package ensures that employees receive a competitive base salary and compensation package. Employees have access to stock grants, employee stock purchase plan, 401(k), and resources such as money coaches. This position supports the security of software, systems and infrastructure by maintaining high security standards and guiding security improvements across teams.
The Cybersecurity Principal Engineer will perform technical security assessments, code reviews and vulnerability testing to highlight risk and remediate findings, while helping T-Mobile teams and partners improve security. This role collaborates with other T-Mobile engineers to design proactive methods to enhance our security posture and serves as a subject matter expert driving security vision and results across mobile, IoT, enterprise apps, cloud, big data, Identity, core and carrier network technologies as needed.
Job Responsibilities
- Optimize cross-functional partnerships to address customer requirements and lead large-scale analysis spanning multiple departments. Use internal and external data resources to make strategic decisions and build long-term relationships with key partners.
- Lead information security reviews of new technologies, designs and remediation planning.
- Collaborate with Engineering & Operations to address security vulnerabilities found via PSIRTs, scans or breaches.
- Identify and implement process or technology improvements in legacy applications or infrastructure and drive remediation.
- Identify security needs, recommend plans and resolutions; implement, test and monitor information security improvements.
- Maintain visibility with executives and stakeholders; interface with groups such as application support, engineering ops, finance, privacy and risk management.
- Analyze underlying technologies to support threat identification, analysis and threat modeling (trust boundary, threat agents, threats, safeguards).
- Develop and execute action plans to address security gaps, leveraging expertise as needed.
- Lead security projects driven by internal and external groups; mentor peers and junior team members in security technologies and enterprise solution design.
- Apply threat modeling approaches (e.g., STRIDE, PASTA, TRIKE, ATTACK TREE, DREAD, KILL CHAIN, CAPEC, Mobile threat models, Cyber Threat Tree, data flow diagrams).
- Demonstrate advanced understanding of IP/security solutions applicable to Wireless Network Architecture.
- Perform other duties/projects as assigned by management.
Qualifications
Education:
- Bachelor's Degree in Computer Science or Information Technology (required). Relevant experience may be considered in lieu of degree.
Experience:
- 7-10 years of security-related software or business process design with increasing responsibility (Required).
- 4-7 years in project/team leadership, formal SDLC implementation, and cross-functional solution design facilitation.
- 4-7 years of Technical Project Management and previous leadership experience.
- Subject matter expert in multiple security areas; experience with high-level design, security technologies, networking, web services and SOA.
- Expertise in network & information security, including firewall policy design, SSL certificate management, vulnerability analysis & mitigation.
Knowledge, Skills, and Abilities:
- Strong knowledge of current trends in information security and the ability to work independently with evolving technologies.
- Excellent verbal and written communication; able to present advanced concepts to leadership and cross-functional groups.
- Professional conduct with tact and integrity; productive collaboration with diverse teams.
- Self-motivated with the ability to work under tight timelines; strong problem solving and troubleshooting skills.
- Ability to plan, organize and prioritize tasks; capable of independent work as well as team delegation and progress tracking.
- Wide knowledge of security best practices in large-scale environments; ability to author white papers and engage in industry forums.
- Strong presentation skills for varied audiences.
- Experience with load balancers, firewalls, privileged account management, SIEMs, cloud platforms, malware protection, intrusion detection, DevOps tools, and security testing tools.
- Advanced understanding of T-Mobile network elements and how they interact.
- Proficiency in scripting (Python/Perl/Shell/HTML/PHP).
- Knowledge of regulatory standards (e.g., SOX, PCI, CPNI).
License/Certification (Preferred):
- CISSP and/or CCSK and/or CCSP and/or CISA/CISM certification a plus.
Additional Information
We value innovation, agile methodologies, and transparency. This role includes travel as required and salary details are market- and location-dependent. The position is subject to company policies and applicable regulations, including EEO statements comparable to standard practice.
We are an Equal Opportunity Employer. If you are an individual with a disability and need reasonable accommodation at any point in the application or interview process, please contact ApplicantAccommodation@t-mobile.com or 1-844-873-9500.