Cybersecurity Vulnerability Scanning Engineer

This position requires office presence of a minimum of 5 days per week and is only located in the location(s) posted. No relocation is offered.

Join AT&T and help shape the future of communications and technology that connect the world. We value innovators who seek to explore the unknown and challenge the status quo. Bring your bold ideas and fearless spirit to redefine connectivity and transform how people share stories and experiences. At AT&T you wont just imagine the futureyoull build it.

We are seeking a Vulnerability Scanning Engineer with a strong focus on infrastructure vulnerability scanning using Tenable Vulnerability Management. This role is responsible for managing and executing authenticated and non-authenticated vulnerability scans across enterprise infrastructure ensuring accurate coverage high-quality results and operational excellence in support of vulnerability management and remediation teams.

Responsibilities:

• Manage day-to-day operations of infrastructure vulnerability scanning using Tenable Vulnerability Management (e.g. including scan scheduling execution and monitoring.

• Configure run and maintain authenticated scans (credentialed checks) for Windows Linux/Unix and network devices including credential management and troubleshooting failed authentications.

• Perform Linux server system administration in support of the infrastructure vulnerability scanning platform (e.g. scanner hosts) including OS hardening patching performance monitoring log review certificate management and troubleshooting.

• Execute and tune non-authenticated scans for external and internal perspectives where applicable ensuring safe scanning practices and minimal operational impact.

• Maintain scan coverage and accuracy through target management asset classification exclusions and scanner placement considerations.

• Support vulnerability lifecycle activities by validating findings reducing false positives and partnering with infrastructure teams to enable effective remediation.

• Develop and maintain operational runbooks and documentation for scan standards credential onboarding and troubleshooting procedures.

• Produce recurring reporting and metrics on scan health coverage and results quality; support audit and compliance requests as needed.

• Collaborate with teams responsible for CMDB/asset inventory identity/privileged access networking and patching to improve scan efficacy and remediation outcomes.

Required Skills:

• 57 years of cybersecurity experience with demonstrated experience operating vulnerability scanning programs for infrastructure.

• Hands-on experience with Tenable Vulnerability Management including scan policy configuration scanners targets/assets and results analysis.

• Strong knowledge of authenticated (credentialed) scanning concepts and common credential types (local/domain accounts SSH keys SNMP etc.).

• Working knowledge of Windows and Linux/Unix administration concepts (services packages patching permissions) to support scan troubleshooting and validation.

• Solid understanding of networking fundamentals (TCP/IP ports routing firewalls VLANs) and how they affect scan reachability and performance.

• Ability to analyze vulnerability findings prioritize based on risk/context and communicate clearly with technical stakeholders.

Desired Skills:

• Experience tuning Tenable scan policies for performance and accuracy (safe checks scan windows throttling exclusions and plugin families).

• Familiarity with vulnerability management workflows and integrations (e.g. ServiceNow Vulnerability Response and CMDB/asset inventory alignment).

• Knowledge of network administration and routing protocols (e.g. BGP OSPF IS-IS).

• Experience with scripting/automation for scan operations and reporting (Python PowerShell Bash).

• Understanding of cloud and hybrid environments and related scanning approaches (e.g. IaaS workloads segmented networks and scanner placement).

• Relevant certifications (e.g. CompTIA Security Tenable certifications GIAC or equivalent).

• Bachelors degree in Cybersecurity Information Technology Computer Science or a related field is desired (or equivalent practical experience).

• Minimum of 57 years of experience in cybersecurity with emphasis on vulnerability scanning and infrastructure security operations.

• Familiarity with applying Artificial Intelligence (AI)or Machine Learning (ML)techniques in cybersecurity contexts (e.g. anomaly detection threat hunting behavioral analytics or risk scoring).

Supervisor:

No

Ready to join our team Apply today.