CrawlJobs Logo
T-Mobile Logo T-Mobile · IT - Software Development

Sr. Engineer, Cybersecurity - Threat Response

United States, Bellevue Employment contract 103400.00 - 186400.00 USD / Year · Job Posted June 15, 2026
Apply Position
Job Link Share

Job Description

This role is essential for protecting digital assets and maintaining the integrity of cybersecurity infrastructure within the organization. It involves developing and implementing security strategies, tools, and technologies to defend against cyber threats and vulnerabilities. The role is distinguished by its focus on proactive risk identification and deployment of mitigation measures to safeguard systems and data. Success is measured by the effectiveness of security improvements and alignment with organizational goals and regulatory requirements. The work enhances organizational resilience to cyber incidents and supports overall security posture for internal and external team members.

Job Responsibility

  • Conduct analysis of security alerts, incidents, and threat intelligence to identify potential risks and assess impact to systems and business operations.
  • Lead and support cybersecurity incident response activities, including detection, investigation, containment, eradication, recovery, and post-incident review.
  • Serve as Incident Commander during cybersecurity incidents, coordinating multi-functional response efforts, driving decision-making, managing communications, and ensuring timely resolution of security events.
  • Conduct proactive investigations to identify emerging threats, validate security controls, and improve detection and response capabilities.
  • Develop and implement response procedures and mitigation strategies to reduce organizational risk.
  • Collaborate with internal technology teams and business partners to investigate security events and drive remediation efforts.
  • Partner closely with network, cloud, infrastructure, and application teams to investigate security incidents impacting enterprise and telecommunications environments.
  • Document incident findings, root cause analysis, response actions, and lessons learned in accordance with company policies and regulatory requirements.
  • Communicate incident status, technical findings, and remediation recommendations to leadership and key collaborators.
  • Contribute to continuous improvement of detection and response capabilities through process enhancements, tuning opportunities, automation, and knowledge sharing.
  • Monitor evolving threat activity and apply industry standards to improve organizational resilience.
  • Provide technical guidance and mentoring to peers and junior team members.
  • Participate in cybersecurity initiatives and projects assigned by management.
  • Participate in an on-call rotation to provide after-hours support for cybersecurity incident escalations originating from the Security Operations Center (SOC).

Requirements

  • Bachelor's Degree plus 5 years of related work experience OR Advanced degree with 3 years of related experience. Acceptable areas of study include Computer Science or Information Technology. (required)
  • 4-7 years experience with security related software and/or business process design.
  • 4-7 years experience in technical project management and leading multi-functional solution design teams.
  • 4-7 years experience in network information security, including firewall policy design, SSL certificate management, and vulnerability analysis and mitigation.
  • Experience supporting cybersecurity operations, security investigations, or incident response activities.
  • Experience with enterprise security technologies and security monitoring platforms.
  • At least 18 years of age
  • Legally authorized to work in the United States

Nice to have

  • Experience serving as an Incident Commander, Incident Lead, or similar coordination role during major cybersecurity incidents or enterprise outages.
  • Knowledge of telecommunications, carrier, service provider, or large-scale network environments, including core networking concepts, network protocols, and network security principles.
  • Experience investigating network-based attacks, telecommunications infrastructure security events, or incidents involving enterprise and carrier-grade technologies.
  • Experience conducting digital forensics investigations and knowledge of forensic tools such as Axiom, KAPE, EnCase, X-Ways, Cellebrite, or similar platforms.
  • Experience with MITRE ATT&CK, Cyber Kill Chain, and NIST/SANS Incident Handling frameworks.
  • Experience with SOAR platforms and security automation development.
  • Knowledge of cloud security and enterprise-scale environments.
  • Experience with SIEM, IDS/IPS, EDR, and security monitoring technologies.
  • Solid understanding of network security, routing, switching, DNS, TCP/IP, telecommunications technologies, threat detection, and incident response methodologies.
  • Strong knowledge of enterprise networking concepts, including TCP/IP, DNS, routing, switching, firewalls, network protocols, and network-based threat detection and response
  • Knowledge of adversary tactics, techniques, and procedures (TTPs), threat-informed defense methodologies, and proactive investigation techniques
  • Knowledge of scripting tools (Python, Perl, Shell, HTML, PHP)
  • Strong analytical, troubleshooting, and problem-solving skills.
  • Ability to communicate technical findings to both technical and non-technical audiences.
  • CISSP, CISM, CRISC, CCSP, CCSK, CISA, GCIH, GCFA, GCFE, GNFA, GCIA, GREM, or similar certifications.

What we offer

  • Competitive base salary
  • Annual stock grant
  • Employee stock purchase plan
  • 401(k)
  • Access to free, year-round money coaches
  • Medical, dental and vision insurance
  • Flexible spending account
  • Paid time off
  • Up to 12 paid holidays
  • Paid parental and family leave
  • Family building benefits
  • Back-up care
  • Enhanced family support
  • Childcare subsidy
  • Tuition assistance
  • College coaching
  • Short- and long-term disability
  • Voluntary AD&D coverage
  • Voluntary accident coverage
  • Voluntary life insurance
  • Voluntary disability insurance
  • Voluntary long-term care insurance
  • Mobile service & home internet discounts
  • Pet insurance
  • Access to commuter and transit programs
T-Mobile - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Sr. Engineer, Cybersecurity - Threat Response

8 matching positions

Sr. Cybersecurity Engineer – SIEM & SOAR

Location
Location
United States , Austin
Salary
Salary:
Not provided
dutechsystems.com Logo
Dutech Systems
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Graduation from an accredited four-year college or university with major coursework in computer science, computer information systems, software engineering, cybersecurity, or a related field
  • Two (2) years of full-time experience in software development, cloud engineering, SIEM engineering, or cybersecurity engineering
  • Knowledge of Microsoft Sentinel architecture, SOAR, and UEBA capabilities
  • Knowledge of Azure cloud services, Logic Apps, Azure Functions, Event Hubs, Key Vault, and Azure AD
  • Knowledge of security operations processes (triage, threat detection, incident response, threat modeling)
  • Knowledge of MITRE ATT&CK, NIST CSF, Zero Trust Architecture concepts
  • Knowledge of programming and scripting languages (Python, PowerShell, KQL, C#, JavaScript, or equivalent)
  • Knowledge of CI/CD pipelines, DevOps practices, and Git-based version control
  • Knowledge of API integrations and JSON/YAML structures
  • Skills in building Logic App workflows and custom Sentinel automation playbooks
Read More
Arrow Right

Sr. Cybersecurity Incident Response Analyst

Blue Yonder, a leading supply chain software company, is seeking a Sr Cybersecur...
Location
Location
Mexico , Monterrey; Mexico City
Salary
Salary:
Not provided
blueyonder.com Logo
Blue Yonder
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Computer Science, Information Security, or related equivalent experience
  • 5+ years of experience in information security or cybersecurity as an analyst, engineer or consultant
  • MUST have experience with incident response methodologies and tools (e.g. SANS IR, EDR, SIEM, Threat Intelligence, etc.)
  • Strong technical skills and attention to detail
  • Excellent verbal and written communication skills
  • Ability to work independently and as part of a team
  • Ability to work under pressure and in a fast-paced environment
  • Strong problem-solving skills and a proactive approach to work
  • Knowledge of security frameworks such as NIST and ISO 27001
  • Familiarity with security regulations and standards (e.g. PCI DSS, HIPAA, etc.)
Job Responsibility
Job Responsibility
  • Monitor and Analyze Security Alerts – Review alerts generated by security systems, appliances, and logs to determine the appropriate course of action to protect the enterprise and reduce overall risk
  • Incident Triage and Response – Quickly assess, prioritize, and respond to security incidents, ensuring timely containment, eradication, and recovery to minimize business impact
  • Root Cause Analysis (RCA) – Investigate security incidents to determine root causes, attack vectors, and vulnerabilities, providing recommendations to reduce the attack surface and prevent recurrence
  • Threat Hunting and Proactive Defense – Conduct proactive threat-hunting activities based on intelligence, anomalies, and adversary tactics to identify and mitigate threats before they escalate
  • Collaboration with Cross-Functional Teams – Work closely with IT, engineering, legal, compliance, and other teams to coordinate incident response efforts and ensure an effective security posture
  • Incident Documentation and Reporting – Maintain detailed documentation of security incidents, response actions, and lessons learned, ensuring continuous improvement in security processes
  • Develop and Improve Incident Response Playbooks – Enhance and maintain incident response procedures, ensuring alignment with industry best practices and emerging threats
  • Security Awareness and Training – Provide guidance, training, and mentorship to SOC analysts and IT staff on security threats, incident handling, and response best practices
  • Threat Intelligence Integration – Leverage threat intelligence sources to stay informed on evolving cyber threats and proactively adjust security strategies to defend against them
  • Fulltime
Read More
Arrow Right

Sr. Security Engineer

Location: Remoto from Mexico (Monterrey or Mexico City areas). Role: Sr. Cyberse...
Location
Location
Mexico , San Pedro Garza García
Salary
Salary:
Not provided
blueyonder.com Logo
Blue Yonder
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum 4 to 5 years of professional security engineering or DevOps experience
  • Proficiency with at least one cloud platform (AWS, Azure, or GCP) and securing cloud-native environments
  • Strong Understanding of industry best practice security protocols, encryption, firewalls, remote access, and secure coding practices
  • Experience with scripting or automation (e.g., PowerShell, Python, Azure CLI, Terraform)
Job Responsibility
Job Responsibility
  • Manage the design and implementation of secure systems, networks, cloud infrastructure and/or security operations
  • Collaborate with cross functional teams across the organization to integrate security best practices into systems architecture and CI/CD pipelines
  • Develop and maintain security tools and automation for threat detection, prevention, and response, taking a continuous threat exposure management mindset
  • Stay current with emerging threats and cloud security technologies, influencing security strategy and architecture with industry’s best practices and innovations
  • Support the detection, investigation, and resolution of security incidents
  • Enhance and tune SIEM tools, log monitoring, and alerting systems
  • Support continuous compliance efforts (e.g., PCI-DSS, ISO 27001, SOC 2) by implementing monitoring and reporting capabilities to adhere to global regulations
  • Document security policies, processes, standards, and architecture diagrams
  • Fulltime
Read More
Arrow Right

Sr. Security Engineer

The position of Security Engineer involves performing professional security anal...
Location
Location
United States , Chicago
Salary
Salary:
130000.00 - 150000.00 USD / Year
blumeglobal.com Logo
Blume Global
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum of 8 years’ experience working on Information Security
  • Experience with cybersecurity requirement and analysis
  • Experience with Linux/Unix and windows security patch management, analysis of security scans and defect eradication
  • Experience with writing/implementing security policies
  • Experience with the Apache web server and plugins and configuration
  • Networking protocol knowledge (must have): ssh, DNS, TCP/IP, HTTP, HTTPS, SSL
  • Bachelor’s degree or higher from an accredited 4 year university
  • Professional Information Security credentials (e.g. CRISC, CISM), CISSP preferred
Job Responsibility
Job Responsibility
  • Design and implement robust security architectures for cloud and on-prem environments
  • Lead incident response efforts, including investigation, containment, and remediation
  • Conduct vulnerability assessments and penetration testing across systems and applications
  • Develop and enforce security policies, standards, and procedures
  • Manage and optimize SIEM, IDS/IPS, firewalls, and endpoint protection platforms
  • Collaborate with DevOps and IT teams to integrate security into CI/CD pipelines
  • Monitor threat intelligence feeds and apply insights to strengthen defenses
  • Provide mentorship and technical guidance to junior engineers
  • Ensure compliance with frameworks such as NIST, ISO 27001, etc
  • Prepare detailed reports for executive leadership and auditors
What we offer
What we offer
  • health and welfare benefits
  • tuition assistance
  • 401K savings and other retirement programs
  • employee assistance programs
Read More
Arrow Right

Sr Principal Product Security Engineer

Secure technology that saves lives. In support of our mission to save and sustai...
Location
Location
United States , Skaneateles Falls
Salary
Salary:
112000.00 - 154000.00 USD / Year
https://www.baxter.com/ Logo
Baxter
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Computer Science or a related technical field
  • 8+ years of experience working within a secure software development life cycle (SSDLC)
  • Strong understanding of application security across the full software life cycle
  • Hands‑on experience developing, reviewing, or enforcing secure coding practices
  • Familiarity with handling PHI and PII in regulated environments
  • Experience with threat modeling methodologies such as STRIDE, DREAD, LINDDUN, or PASTA
  • Proven ability to perform security risk assessments and clearly communicate risk and business impact
  • Experience analyzing, documenting, and remediating software and system vulnerabilities
  • Familiarity with industry standards and guidance including IEC TR 80001, NIST 800‑53, ISO/IEC 27001 & 27002 (preferred)
  • Expertise in designing secure networks, systems, and application architectures
Job Responsibility
Job Responsibility
  • Define and document the security architecture and cybersecurity posture of life‑critical medical products
  • Lead threat modeling, interface analysis, and secure design reviews across product lines
  • Author product security whitepapers, technical documentation, and regulatory‑facing materials
  • Develop Manufacturer Disclosure Statements for Medical Devices (MDS²) and related artifacts
  • Produce and interpret static code analysis and vulnerability assessment reports
  • Partner with development teams on security requirements and policies
  • Establish and drive governance around vulnerability management, from discovery through remediation
  • Support incident response, investigation, and recovery efforts in collaboration with cross‑functional teams
  • Use industry‑leading tools (e.g., Tenable Nessus, Fortify, Coverity) to identify, analyze, and mitigate risks
  • Monitor and assess zero‑day threats and emerging vulnerabilities
What we offer
What we offer
  • Support for Parents
  • Continuing Education/ Professional Development
  • Employee Heath & Well-Being Benefits
  • Paid Time Off
  • 2 Days a Year to Volunteer
  • Medical and dental coverage that start on day one
  • Insurance coverage for basic life, accident, short-term and long-term disability, and business travel accident insurance
  • Employee Stock Purchase Plan (ESPP)
  • 401(k) Retirement Savings Plan (RSP)
  • Flexible Spending Accounts
  • Fulltime
Read More
Arrow Right

Sr. Cyber Detection Incident Analyst - Security Operations

As a Cyber Detection Incident Analyst on GM’s Security Operations team, you will...
Location
Location
United States , Warren
Salary
Salary:
Not provided
gm.com Logo
General Motors
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Information Security, Computer Science, Information Systems, or equivalent experience
  • 5+ years of experience in cybersecurity with a focus on detection engineering, security operations, incident response, intrusion detection, or security event analysis
  • Strong analytical and investigative skills with the ability to interpret complex datasets and communicate findings effectively
  • Ability to create tactical scripts (Python, PowerShell, KQL, Bash, etc.) to supplement investigative workflows and enrich detections
  • Experience with network security monitoring (IDS, packet capture, flow analysis) and proper techniques for identifying and responding to security events
  • Experience detecting threats in cloud environments (Azure, AWS, GCP) and using cloud-native detection tooling
  • Strong collaboration and communication skills with focus on cross-team partnerships
  • Demonstrated ability to mentor other analysts, contribute to team development, and work effectively in a collaborative team environment
  • Deep knowledge of SIEM technologies, log‑centric analytics, and correlation logic
  • Deep knowledge of EDR platforms and behavioral-based detection methodologies
Job Responsibility
Job Responsibility
  • Conduct expert-level triage and deep-dive analysis of security events using EDR, NDR, identity telemetry, application logs, SIEM analytics, SOAR workflows, and cloud-native security tools
  • Lead incident escalation workflows and collaborate with the Incident Response and other partner teams drive timely containment and resolution of security threats
  • Perform proactive threat hunting across endpoints, networks, identity systems, cloud platforms (Azure, AWS, GCP), and SaaS environments using threat intelligence, behavioral analytics, and TTP/IOC research
  • Correlate telemetry across diverse systems to identify sophisticated attack patterns
  • Apply strong understanding of OS internals, cloud architectures, networking, authentication protocols, and adversary tradecraft to assess risk, determine impact, and drive escalation decisions
  • Integrate threat intelligence (IOCs, behavioral patterns, ATT&CK-aligned TTPs) into detection logic, use cases, and hunt strategies
  • Develop, tune, and maintain high-efficacy detections across: SIEM : correlation rules, anomaly detection, enrichment logic
  • EDR/XDR : behavioral detections, process analytics, custom rules
  • NDR : network anomaly detection, lateral movement patterns
  • SOAR : automation workflows, enrichment routines
What we offer
What we offer
  • Relocation benefits may be eligible
  • Fulltime
Read More
Arrow Right

Sr Solution Architect

Do you enjoy solving problems, looking at problems through a different lens, and...
Location
Location
United Kingdom , Multiple Locations
Salary
Salary:
Not provided
https://www.microsoft.com/ Logo
Microsoft Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Proven success and expertise in architecting innovative solutions primarily in a client-facing role
  • Ability to quickly build relationships and credibility with customers
  • Ability to build trust to drive change with customers
  • Track record of delivering quality solutions as a technical leader
  • Executes recognized Architectural methods, processes and tools
  • A passion for learning about and experimenting with new technologies
  • Confidence in creating and delivering technical presentations and training
  • Excellent organization and planning skills
  • Bachelor’s degree relevant to Information Technology/Computer Science, Engineering (or equivalent)
  • Technical knowledge of Microsoft security and identity technologies, such as Active Directory, Azure Active Directory, Microsoft Defender, Azure, Azure Security Center, and Sentinel
Job Responsibility
Job Responsibility
  • Business to Technology Strategy: Articulating value propositions for the most strategic Microsoft products and services
  • Actively and insightfully listen to translate and articulate customer challenges and translate these to business objectives and project outcomes
  • Support the sales process and provide input on contract, staffing, assumptions and risks
  • Quantify she needs of the business to achieve value outcomes, champion required methodology, capture/reuse IP and share best practices
  • Demonstrate ability to match technical solutions with customer business requirements
  • Technology Delivery Management: Strong leadership of Technical Delivery teams, driving high performance and collaboration in complex matrix environments
  • Demonstrate an understanding of and champions Customer/Partner Change management and adoption principles
  • Own Delivery Excellence
  • Demonstrate expertise in chosen field, drive opportunities to accelerate the adoption of the Microsoft Cloud
  • Drive and support innovation focusing on industry solutions and customer business outcomes on the Microsoft platform
  • Fulltime
Read More
Arrow Right
New

IT Training Lead

The IT Training Lead will drive technology learning and user adoption across the...
Location
Location
United States , Delray Beach
Salary
Salary:
Not provided
https://www.roberthalf.com Logo
Robert Half
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Experience in IT training, instructional design, technical enablement, or learning and development
  • Strong knowledge of Microsoft 365
  • Excellent communication, facilitation, and content development skills
  • Ability to translate technical concepts into practical, user-friendly training.
Job Responsibility
Job Responsibility
  • Design, develop, and deliver IT training programs in instructor-led, virtual, and self-paced formats
  • Take lead in the Microsoft Copilot and AI training strategy, including onboarding, advanced use cases, responsible AI usage, and ongoing enablement
  • Partner with IT leadership to support new technology rollouts, system upgrades, and digital transformation initiatives
  • Create and maintain training content, including videos, guides, tutorials, and job aids
  • Identify skill gaps and develop targeted learning solutions to improve adoption and productivity
  • Gather feedback and measure training effectiveness to continuously improve programs.
Read More
Arrow Right