Engineer, Cybersecurity - Network Security & Certificate Management

At T-Mobile, we invest in YOU! Our Total Rewards Package ensures that employees get the same big love we give our customers. All team members receive a competitive base salary and compensation package - this is Total Rewards. Employees enjoy multiple wealth-building opportunities through our annual stock grant, employee stock purchase plan, 401(k), and access to free, year-round money coaches. That's how we're UNSTOPPABLE for our employees!

Job Responsibilities:

• Configure, implement, and troubleshoot key components of network and information security, with a focus on SSL certificate management, Configuration Compliance (OTNA), Password management and vulnerability analysis and mitigation.
• Support and manage certificate lifecycle processes including issuance, renewal, revocation, and troubleshooting across infrastructure and application layers (e.g., A10, Cisco ISE, Cisco ASA, Infoblox and Symantec).
• Administer and support load balancer technologies such as A10 and F5, and systems including Cisco and CheckPoint, ensuring optimal configuration and security posture.
• Assist in managing compliance policies for configuration standards across thousands of network devices; ensure policy updates align with new hardware, drivers, or standard changes.
• Work closely with internal stakeholders to analyze and address compliance failures, trace root causes, and bring systems into compliance with security policies.
• Participate in vulnerability assessments, help identify risks, and track mitigation strategies to closure.
• Support and maintain access management processes, including Active Directory group reviews, user access approvals, and quarterly attestations.
• Engage with internal teams and external auditors to provide evidence for compliance audits and help refine control definitions as part of governance activities.
• Use scripting and automation tools (e.g., Python, Shell, Perl, HTML, PHP) to automate repetitive tasks, improve operational efficiency, and support scalability.
• Provide technical support for day-to-day certificate, compliance, and credential management issues, engaging other teams as needed.

Education:

• Bachelor's Degree in Computer Science, Information Technology or a related field or equivalent experience years of experience (Required)

Work Experience:

• 2-4 years experience in info security technology or related field
• 2-4 years experience working in a large enterprise
• Strong knowledge of multiple security subject areas
• Some knowledge of critical security elements, threats, vulnerabilities, and safeguards
• Knowledge of information security policies and regulatory controls (per team function)
• Strong written, verbal, and interpersonal communication skills; ability to communicate internally, upward, and cross functionally; ability to work with cross-functional team members to gain support required to accomplish assignments; able to build coalitions
• Always act with tact and integrity, and work with a variety of individuals in a positive and productive manner
• Self-motivated, able to work under stress, multitask, plan, organize and prioritize tasks to complete independently and meet timelines
• Knowledge of current technological trends and developments in the area of info security
• Presentation skills to large and small audiences
• Domain expert in a few facets of network & information security, including SSL Certificate management, vulnerability analysis & mitigation, and other topics as assigned

Knowledge, Skills and Abilities:

• Experience managing the full lifecycle of SSL certificates, including issuance, renewal, revocation, and troubleshooting across infrastructure and application environments (e.g., A10, WAF). (Preferred: experience with PKI design and implementation)
• Understanding of cryptographic concepts, protocols, and standards such as X.509, PKCS, and LDAP. (Preferred: in-depth knowledge of cryptographic algorithms and key management practices)
• Strong knowledge of network and information security best practices, including credential management, and compliance frameworks.
• Familiarity with compliance standards and regulatory requirements impacting network infrastructure and access control.
• Proficiency in scripting and automation using languages such as Python, Shell, Perl, HTML, or PHP to streamline repetitive tasks and improve efficiency.
• Hands-on experience with load balancers (A10, F5) and platforms (Cisco, CheckPoint).
• Excellent analytical and troubleshooting skills, with the ability to diagnose issues across multiple layers of infrastructure and security systems.
• Strong collaboration and communication abilities to work effectively with cross-functional teams, including compliance, engineering, and support teams.

Licenses and Certifications:

• Security and network certifications such as CISSP, CCSK, CCSP, CISA, CISM, or CCNA are preferred.
• Certifications related to network infrastructure, cloud security, or PKI management are a plus.

• At least 18 years of age
• Legally authorized to work in the United States

The pay range above is the general base pay range for a successful candidate in the role. The successful candidate's actual pay will be based on various factors, such as work location, qualifications, and experience, so the actual starting pay will vary within this range.

At T-Mobile, our benefits exemplify the spirit of One Team, Together! A big part of how we care for one another is working to ensure our benefits evolve to meet the needs of our team members. Full and part-time employees have access to the same benefits when eligible. We cover all of the bases, offering medical, dental and vision insurance, a flexible spending account, 401(k), employee stock grants, employee stock purchase plan, paid time off and up to 12 paid holidays - which total about 4 weeks for new full-time employees and about 2.5 weeks for new part-time employees annually - paid parental and family leave, family building benefits, back-up care, enhanced family support, childcare subsidy, tuition assistance, college coaching, short- and long-term disability, voluntary AD&D coverage, voluntary accident coverage, voluntary life insurance, voluntary disability insurance, and voluntary long-term care insurance. We don't stop there - eligible employees can also receive mobile service & home internet discounts, pet insurance, and access to commuter and transit programs! To learn about T-Mobile's amazing benefits, check out www.t-mobilebenefits.com.

Never stop growing!
As part of the T-Mobile team, you know the Un-carrier doesn't have a corporate ladder-it's more like a jungle gym of possibilities! We love helping our employees grow in their careers, because it's that shared drive to aim high that drives our business and our culture forward. By applying for this career opportunity, you're living our values while investing in your career growth-and we applaud it. You're unstoppable!

T-Mobile USA, Inc. is an Equal Opportunity Employer. All decisions concerning the employment relationship will be made without regard to age, race, ethnicity, color, religion, creed, sex, sexual orientation, gender identity or expression, national origin, religious affiliation, marital status, citizenship status, veteran status, the presence of any physical or mental disability, or any other status or characteristic protected by federal, state, or local law. Discrimination, retaliation or harassment based upon any of these factors is wholly inconsistent with how we do business and will not be tolerated.

Talent comes in all forms at the Un-carrier. If you are an individual with a disability and need reasonable accommodation at any point in the application or interview process, please let us know by emailing ApplicantAccommodation@t-mobile.com or calling 1-844-873-9500. Please note, this contact channel is not a means to apply for or inquire about a position and we are unable to respond to non-accommodation related requests.