Sr Specialist Cybersecurity - Control Testing

Responsibilities Include:

• Working with CTR team leadership to understand the need for control testing, and support them with prioritizing & planning, annual test plan preparation activities.

• Independently executing complex engagements assigned from the annual testing plan or other discrete engagements (test script preparation, walkthroughs, issue identification, obtaining stakeholder agreement, documentation and reporting them to senior ATS stakeholders) within the expected timelines and quality parameters, while working closely with external auditors, and other internal stakeholders where necessary, for better efficiency.

• Providing analysis of complex information technology and security issues and provides clear articulation of risk to AT&T assets (devices, networks, applications & data), and customers. Also, supporting periodic articulation of risk to ATS’s objectives using the test results and open issues by the Reporting team.

• Mentoring and supporting junior team members with advice and training.

• Supporting the development of a Control Testing Methodology and other key components of Technology Risk Management Framework (TRMF) and tooling that are related to or impact control testing.

Required skills:

• Minimum 8 years’ experience in Technology Risk Management or Consulting or Assurance with at least 5 of those years in design or testing of controls in the areas of information technology and information security (SOX / ITGC / Critical application security / Cloud security)

• Strong understanding of regulatory requirements like SOX, PCIDSS etc.

• Strong documentation and effective articulation skills.

Desirable skills:

• Bachelor's degree in Computer Science, Mathematics, Information Systems, Engineering or Cyber Security.

• Prior experience with Telecom sector

• ISACA, ISC2 or other relevant certifications.

Additional information (if any): Need to be flexible to provide coverage in US morning hours.