find jobs
what:
where:
 
job title, keywords or company
city, state or zip code
Sr Engineer, Ent Information Security more...
Location:Bellevue, WA
Company:T-Mobile
First posted:May 13, 2017 (last updated 2 weeks 5 days ago)
x

As America's Un-carrier, T-Mobile US, Inc.

(NASDAQ: TMUS) is redefining the way consumers and businesses buy wireless services through leading product and service innovation.

The company's advanced nationwide 4G and 4G LTE network delivers outstanding wireless experiences for customers who are unwilling to compromise on quality and value.

Based in Bellevue, Washington, T-Mobile US provides services through its subsidiaries and operates its flagship brands, T-Mobile and Metro PCS.

For more information, please visit (please use the apply button below) this role, the Senior Application Security Engineer will apply depth of expertise in cyber security to contemporary design and development to effectively secure and protect application portfolio as a member of an integrated squad working together to deliver successful outcomes.

You will function as a cybersecurity leader in daily sprint standups, providing ownership for all aspects of the security life cycle in the product release.

You will also provide cybersecurity technical thought leadership, injecting secure coding standards and best practices into daily scrums.

Additionally, you will: Provide mentoring and skill set knowledge transfers to Scrum team members Review and modify Agile user stories and epics to ensure correct authentication, authorization, and logging Partner with other technology and business teams to develop secure technical solutions Support sprint teams through hands-on technical security knowledge, integration, and development/coding Work with a team of architects and developers, operational leads, and functional owners to plan and implement security technical features Understand how new technologies impact the current environment Champion the adoption of new technologies and drive the implementation into the environment Essential Requirements Proficiency in at least one programming language (Java, GOLANG, Node.JS, Javascript, Python, or C/C++) Provides design, installation/development, & configuration of Cyber Security solutions Ability to simplify and communicate technical concepts & architecture to non-technical team members Experience with application logging integration, and products (Log4J, Logstash, Splunk) Knowledge of Federated security architecture, flows, and standards (SAML, Open ID _ Connect, and JSON_Web-Token (JWT)) Integration level knowledge of API Security Architecture, and technologies (O Auth 2, Spring Security, HMAC, WS-Security, WS-Trust, or XACML) Hands on experience developing secure RES Tful API'sWorking knowledge of Cloud Provider security architecture design patterns (AWS, Cloud Foundry, Azure).Proficiency in development frameworks (Spring Security, Spring Boot, or Angular JS) Working knowledge of OWASP Web/API vulnerabilities and compensating controls (CSRF, XSS, SQLI, etc.

) Familiarity with encryption fundamentals: PKI, Encryption, Digital Signatures, & Key Management Expert knowledge of HTTP (s) protocol Knowledge of Risk Controls framework, and Audit procedures (270/1/2, NIST 800-53/171, DFARS) Position requires an individual that is highly organized and self-motivated Proven ability and desire to learn and adapt to new products quickly and comprehensively Essential Responsibilities Function as cyber security leader and automation engineer in daily Sprint stand up, and provide ownership for all aspects of security lifecycle in product release Provide cyber security technical thought leadership, and inject secure coding standards and best practices into daily scrums Provide mentoring, and skill set knowledge transfer to scrum team members Review and modify agile user stories and epics to ensure correct authentication, authorization, and logging Partner with other technology & business teams to develop secure technical solutions Support sprint teams through "hands on" technical security knowledge, integration, and development/coding Work with a team of architects and developers, operational leads and functional owners to plan and implement security technical features Ability to work in a fast paced, dynamic environment, with shifting priorities; must be comfortable with change and actively driving improvements Understand how new technologies impact the current environment Champion the adoption of new technologies and drive the implementation into the T-Mobile environment Essential Requirements Proficiency in at least one programming language (Java, GOLANG, Node.JS, Javascript, Python, or C/C++) Provides design, installation/development, & configuration of Cyber Security solutions Ability to simplify and communicate technical concepts & architecture to non-technical team members Experience with application logging integration, and products (Log4J, Logstash, Splunk) Knowledge of Federated security architecture, flows, and standards (SAML, Open ID _ Connect, and JSON_Web-Token (JWT)) Integration level knowledge of API Security Architecture, and technologies (O Auth 2, Spring Security, HMAC, WS-Security, WS-Trust, or XACML) Hands on experience developing secure RES Tful API'sWorking knowledge of Cloud Provider security architecture design patterns (AWS, Cloud Foundry, Azure).Proficiency in development frameworks (Spring Security, Spring Boot, or Angular JS) Working knowledge of OWASP Web/API vulnerabilities and compensating controls (CSRF, XSS, SQLI, etc.

) Familiarity with encryption fundamentals: PKI, Encryption, Digital Signatures, & Key Management Expert knowledge of HTTP (s) protocol Knowledge of Risk Controls framework, and Audit procedures (270/1/2, NIST 800-53/171, DFARS) Position requires an individual that is highly organized and self-motivated Proven ability and desire to learn and adapt to new products quickly and comprehensivelyWe Take Equal Opportunity Seriously - By Choice T-Mobile USA, Inc.

is an Equal Opportunity Employer.

All decisions concerning the employment relationship will be made without regard to age, race, color, religion, creed, sex, sexual orientation, gender identity or expression, national origin, marital status, veteran status, the presence of any physical or mental disability, or any other status or characteristic protected by federal, state, or local law.

Discrimination or harassment based upon any of these factors is wholly inconsistent with our Company values and will not be tolerated.

Furthermore, such discrimination or harassment may violate federal, state, or local law.

Send this job to yourself or a friend.


Please mention WirelessJobs.org
if asked how you found this job.
»