AT&T Cyber Security Subject Matter Expert (Government) in Columbia, Maryland


With minimal direction, provides expert support and conducts intuitive analysis and research into exceptionally complex problems and processes relating to Cybersecurity and Information Assurance.

  • Serves as technical expert on executive-level project teams providing technical direction, interpretation and alternatives.

  • Thinks independently and demonstrates exceptional written and oral communication skills.

  • Applies extensive technical expertise, and has full knowledge of other related disciplines.

  • Guides the successful completion of major programs and may function in a project leadership role.

  • Develops technical solutions to complex problems that require the regular use of ingenuity and creativity.

  • Work is performed independently without appreciable direction.

  • Exercises considerable latitude in determining technical objectives of assignment. Expertise is in Cybersecurity and Information Technology (Data and Network Systems

Current Security+ CE certification, Bachelors in Cybersecurity or related Information Security Bachelors, or five years practical hands-on experience.

  • Demonstrated expert understanding of the life cycle of network threats, attacks, attack vectors, and methods of exploitation with an understanding of intrusion set tactics, techniques, and procedures (TTPs).

  • In-depth knowledge of architecture, engineering, and operations of at least one enterprise SIEM platform

  • Advanced understanding of TCP/IP, common networking ports and protocols, traffic flow, system administration, OSI model, defense-in-depth, and common security elements

  • Demonstrated hands-on experience analyzing high volumes of logs, network data (e.g. NetFlow, FPC), and other attack artifacts in support of incident investigations.

  • Experience and proficiency with any of the following: Anti-Virus, HIPS, ID/PS, Full Packet Capture, Host-Based Forensics, Network Forensics.

  • Experience with malware analysis concepts and methods. • Familiarity or experience in Lockheed Martin's Intelligence Driven Defense and/or Cyber Kill Chain methodology.

  • Provide information assurance subject matter expertise for Cyberspace Defense concepts, practices, and procedures

  • Work independently to efficiently evaluate and solve complex Cybersecurity problems and report findings to the government.

  • Work with the government to develop and establish an agency-wide threat actor indicator management program to monitor and report on threat actor movements within the DoDIN.

  • Provide leadership and guidance in the development, design, and application of solutions implemented by junior staff members.

  • Coordinate with senior representatives within DISA Center for Operations to establish and define programs, resources and risks, and track malicious activity with known indicators from intelligence partners.

  • Apply expertise to government and commercial common user systems, as well as dedicated special purpose systems requiring specialized security features to track malicious activity with known indicators from intelligence partners.

  • Coordinate/collaborate with program offices developing/acquiring tools for defensive cyber operations, as well as with the organizations operating those tools.

Desired Skills, Experience, and Education: Certified Ethical Hacker

Required Clearance: Active Top Secret (minimum) with current SCI

AT&T is an Affirmative Action/Equal Opportunity Employer and we are committed to hiring a diverse and talented workforce. EOE/AA/M/F/D/V