This position requires office presence of a minimum of 5 days per week and is only located in the location(s) posted. No relocation is offered.
Join AT&T and help shape the future of communications and technology that connect the world. We value innovators who seek to explore the unknown and challenge the status quo. Bring your bold ideas and fearless spirit to redefine connectivity and transform how people share stories and experiences. At AT&T, you won’t just imagine the future—you’ll build it.
We are seeking a Vulnerability Scanning Engineer with a strong focus on infrastructure vulnerability scanning using Tenable Vulnerability Management. This role is responsible for managing and executing authenticated and non-authenticated vulnerability scans across enterprise infrastructure, ensuring accurate coverage, high-quality results, and operational excellence in support of vulnerability management and remediation teams.
Responsibilities:
- Manage day-to-day operations of infrastructure vulnerability scanning using Tenable Vulnerability Management (e.g., Tenable.io/Tenable.sc), including scan scheduling, execution, and monitoring.
- Configure, run, and maintain authenticated scans (credentialed checks) for Windows, Linux/Unix, and network devices, including credential management and troubleshooting failed authentications.
- Perform Linux server system administration in support of the infrastructure vulnerability scanning platform (e.g., scanner hosts), including OS hardening, patching, performance monitoring, log review, certificate management, and troubleshooting.
- Execute and tune non-authenticated scans for external and internal perspectives where applicable, ensuring safe scanning practices and minimal operational impact.
- Maintain scan coverage and accuracy through target management, asset classification, exclusions, and scanner placement considerations.
- Support vulnerability lifecycle activities by validating findings, reducing false positives, and partnering with infrastructure teams to enable effective remediation.
- Develop and maintain operational runbooks and documentation for scan standards, credential onboarding, and troubleshooting procedures.
- Produce recurring reporting and metrics on scan health, coverage, and results quality; support audit and compliance requests as needed.
- Collaborate with teams responsible for CMDB/asset inventory, identity/privileged access, networking, and patching to improve scan efficacy and remediation outcomes.
Required Skills:
- 5–7 years of cybersecurity experience, with demonstrated experience operating vulnerability scanning programs for infrastructure.
- Hands-on experience with Tenable Vulnerability Management, including scan policy configuration, scanners, targets/assets, and results analysis.
- Strong knowledge of authenticated (credentialed) scanning concepts and common credential types (local/domain accounts, SSH keys, SNMP, etc.).
- Working knowledge of Windows and Linux/Unix administration concepts (services, packages, patching, permissions) to support scan troubleshooting and validation.
- Solid understanding of networking fundamentals (TCP/IP, ports, routing, firewalls, VLANs) and how they affect scan reachability and performance.
- Ability to analyze vulnerability findings, prioritize based on risk/context, and communicate clearly with technical stakeholders.
Desired Skills:
- Experience tuning Tenable scan policies for performance and accuracy (safe checks, scan windows, throttling, exclusions, and plugin families).
- Familiarity with vulnerability management workflows and integrations (e.g., ServiceNow Vulnerability Response and CMDB/asset inventory alignment).
- Knowledge of network administration and routing protocols (e.g., BGP, OSPF, IS-IS).
- Experience with scripting/automation for scan operations and reporting (Python, PowerShell, Bash).
- Understanding of cloud and hybrid environments and related scanning approaches (e.g., IaaS workloads, segmented networks, and scanner placement).
- Relevant certifications (e.g., CompTIA Security+, Tenable certifications, GIAC, or equivalent).
- Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related field is desired (or equivalent practical experience).
- Minimum of 5–7 years of experience in cybersecurity, with emphasis on vulnerability scanning and infrastructure security operations.
- Familiarity with applying Artificial Intelligence (AI) or Machine Learning (ML) techniques in cybersecurity contexts (e.g., anomaly detection, threat hunting, behavioral analytics, or risk scoring).
Supervisor:
No
Our Vulnerability Scanning Engineer (Lead Cybersecurity) earns between $141,300-$211,900 USD Annual, Not to mention all the other amazing rewards that working at AT&T offers. Individual starting salary within this range may depend on geography, experience, expertise, and education/training.
Joining our team comes with amazing perks and benefits:
- Medical/Dental/Vision coverage
- 401(k) plan
- Tuition reimbursement program
- Paid Time Off and Holidays (based on date of hire, at least 23 days of vacation each year and 9 company-designated holidays)
- Paid Parental Leave
- Paid Caregiver Leave
- Additional sick leave beyond what state and local law require may be available but is unprotected
- Adoption Reimbursement
- Disability Benefits (short term and long term)
- Life and Accidental Death Insurance
- Supplemental benefit programs: critical illness/accident hospital indemnity/group legal
- Employee Assistance Programs (EAP)
- Extensive employee wellness programs
- Employee discounts up to 50% off on eligible AT&T mobility plans and accessories,
- AT&T internet (and fiber where available) and AT&T phone.
#LI-Onsite – Full-time office role-
Ready to join our team? Apply today.
Weekly Hours:
40
Time Type:
Regular
Location:
USA:NC:Charlotte / Ibm Dr - Adm:8505 Ibm Dr
**Salary Range: **
$141,300.00 - $211,900.00
It is the policy of AT&T to provide equal employment opportunity (EEO) to all persons regardless of age, color, national origin, citizenship status, physical or mental disability, race, religion, creed, gender, sex, sexual orientation, gender identity and/or expression, genetic information, marital status, status with regard to public assistance, veteran status, or any other characteristic protected by federal, state or local law. In addition, AT&T will provide reasonable accommodations for qualified individuals with disabilities. AT&T is a fair chance employer and does not initiate a background check until an offer is made.