Specialist Cybersecurity - Control Test… at AT&T

What you'd actually do

Partner with ATS leadership to evaluate the criticality of AT&T’s infrastructure, applications, and projects, and identify high‑risk areas for deep dive reviews.

Develop targeted test plans for each review, leveraging recent IT control test results and relevant risk findings.

Execute deep dive reviews, identify issues requiring remediation, and report them to ATS stakeholders with clear risk articulation.

Supporting periodic articulation of risk to ATS’s objectives using the test results and open issues by the Reporting team.

Contribute to the development and enhancement of the Testing Methodology, TRMF components, and tooling related to control testing.

Skills

Required

8 years minimum experience in technology risk management or consulting with at least 5 years in design or testing of controls focused on critical IT infrastructure and applications.
Strong understanding of various technology risk management frameworks and standards.
Strong exposure to regulatory requirements in multiple industries like SOX, PCIDSS etc.
Familiarity with applying Artificial Intelligence (AI) or Machine Learning (ML) techniques in cybersecurity contexts (e.g., anomaly detection, threat hunting, behavioral analytics, or risk scoring).
Experience leveraging AI-enabled tools (such as Copilot for Security, Darktrace, CrowdStrike Charlotte AI, or custom LLM integrations) to enhance detection, response, and automation workflows.
Exposure to data science fundamentals relevant to security (pattern recognition, supervised vs. unsupervised learning, model validation).
Awareness of AI-driven risks (e.g., adversarial ML, data poisoning, model hallucination) and their mitigation within enterprise environments.

Nice to have

Understanding of LLM safety, prompt engineering, or AI governance frameworks (e.g., NIST AI RMF, EU AI Act readiness) is a plus.
Bachelors or Master’s degree in computer science, Mathematics, Information Systems, Engineering or Cyber Security.
Flexible and creative thinker with strong execution skills.
Prior experience with Telecom sector
ISACA, ISC2 or other relevant certifications

About the Company:

At AT&T, we’re connecting the world through the latest tech, top-of-the-line communications and the best in entertainment. Our groundbreaking digital solutions provide intuitive and integrated experiences for millions of customers across online, retail and care channels. Join our mission to deliver compelling communication and entertainment experiences to customers around the world as we continue to evolve as a technology-powered, human-centered organization. As part of our team, you’ll transform the way we deliver a seamless customer experience with digital at the center of all you do. In our world, digital is much larger than just an eCommerce channel, we are transforming all channels to digitally perform as one team to create a better customer experience. As we move into 2026, the digital transformation will revolutionize the digital space and you can build a career that will propel your future.

About the Job:

The Control Assurance (CA) team is part of Chief Security Office (CSO) and responsible for testing information technology and information security controls owned and operated by AT&T Technology Services (ATS), which includes CSO. This Senior Specialist joins the CA team as an individual contributor. This person,

Is responsible for executing deep dive reviews focused on critical infrastructure & applications or projects of ATS.
Providing analysis of complex information technology and security issues and provides clear articulation of risk to AT&T’s critical assets (devices, networks, applications & data), and customers.
Understands and stays up to date with industry trends in technology risk management. Brings expert knowledge in various tools, processes and industry best practices used in technology risk management to AT&T and supports the Technology Risk Management Framework (TRMF) build out.

**Experience Level: **8+ years.

Location: Hyderabad / Bengaluru

Responsibilities Include:

Partner with ATS leadership to evaluate the criticality of AT&T’s infrastructure, applications, and projects, and identify high‑risk areas for deep dive reviews.
Develop targeted test plans for each review, leveraging recent IT control test results and relevant risk findings.
Execute deep dive reviews, identify issues requiring remediation, and report them to ATS stakeholders with clear risk articulation.
Supporting periodic articulation of risk to ATS’s objectives using the test results and open issues by the Reporting team.
Contribute to the development and enhancement of the Testing Methodology, TRMF components, and tooling related to control testing.

Required skills:

8 years minimum experience in technology risk management or consulting with at least 5 years in design or testing of controls focused on critical IT infrastructure and applications.
Strong understanding of various technology risk management frameworks and standards. Strong exposure to regulatory requirements in multiple industries like SOX, PCIDSS etc.
Understanding of leading ERPs, and / or other third-party applications like, Salesforce etc.
Familiarity with applying Artificial Intelligence (AI) or Machine Learning (ML) techniques in cybersecurity contexts (e.g., anomaly detection, threat hunting, behavioral analytics, or risk scoring).
Experience leveraging AI-enabled tools (such as Copilot for Security, Darktrace, CrowdStrike Charlotte AI, or custom LLM integrations) to enhance detection, response, and automation workflows.
Understanding of LLM safety, prompt engineering, or AI governance frameworks (e.g., NIST AI RMF, EU AI Act readiness) is a plus.
Exposure to data science fundamentals relevant to security (pattern recognition, supervised vs. unsupervised learning, model validation).
Awareness of AI-driven risks (e.g., adversarial ML, data poisoning, model hallucination) and their mitigation within enterprise environments.
Interest in leveraging GenAI for security operations, such as summarizing alerts, drafting reports, or automating incident triage.

Desirable skills:

Bachelors or Master’s degree in computer science, Mathematics, Information Systems, Engineering or Cyber Security.
Flexible and creative thinker with strong execution skills.
Prior experience with Telecom sector
ISACA, ISC2 or other relevant certifications

Additional information (if any): Need to be flexible to provide coverage in US morning hours.

#Cybersecurity

Weekly Hours:

Time Type:

Regular

Location:

IND:KA:Bengaluru / Innovator Building, Itpb, Whitefield Rd - Adm: Intl Tech Park, Innovator Bldg

It is the policy of AT&T to provide equal employment opportunity (EEO) to all persons regardless of age, color, national origin, citizenship status, physical or mental disability, race, religion, creed, gender, sex, sexual orientation, gender identity and/or expression, genetic information, marital status, status with regard to public assistance, veteran status, or any other characteristic protected by federal, state or local law. In addition, AT&T will provide reasonable accommodations for qualified individuals with disabilities. AT&T is a fair chance employer and does not initiate a background check until an offer is made.