Principal Cybersecurity - HashiCorp Vault Platform

Job Description:

This position requires office presence of a minimum of 5 days per week and is only located in the location(s) posted. No relocation is offered.

Join AT&T and reimagine the communications and technologies that connect the world. Our Chief Security Office ensures that our assets are safeguarded through truthful transparency, enforce accountability and master cybersecurity to stay ahead of threats. Bring your bold ideas and fearless risk-taking to redefine connectivity and transform how the world shares stories and experiences that matter. When you step into a career with AT&T, you won’t just imagine the future-you’ll create it.

Key Responsibilities:

• Design, build, and operate a large‑scale, production HashiCorp Vault platform providing centralized secrets management across the organization
• Implement and support high‑availability (HA) Vault clusters, ensuring reliability and uptime
• Partner with security, platform, and application teams to integrate Vault with applications, CI/CD pipelines, and cloud/Kubernetes environments
• Own the implementation and lifecycle of Vault authentication methods, secrets engines, and access policies
• Automate Vault deployment, configuration, and operational workflows using Infrastructure as Code and scripting
• Monitor Vault health, performance, and security using telemetry, audit logs, and observability tooling
• Participate in on‑call rotations, incident response, troubleshooting, and post‑incident reviews
• Ensure Vault configurations align with enterprise security standards and regulatory requirements

Required/Desired Skills:

• Hands‑on experience operating HashiCorp Vault in production, including initialization, sealing/unsealing, and day‑2 operations
• Strong knowledge of Vault authentication methods (OIDC, LDAP, Kubernetes, cloud IAM) and secrets engines (KV, Transit, PKI, database, Kubernetes)
• Experience running high‑availability and disaster‑tolerant Vault environments
• Proficiency with Infrastructure as Code, especially Terraform, for managing Vault and supporting infrastructure
• Strong automation and scripting skills (Python, Go, Bash/Shell)
• Experience integrating Vault with Kubernetes and cloud platforms (commonly AWS)
• Familiarity with observability and monitoring tools (e.g., Datadog, Prometheus, Grafana)
• Solid foundation in security engineering, including encryption, PKI, identity, and access control
• 7+ years of experience in DevOps, SRE, Infrastructure, or Security Engineering roles
• Vault Associate certification or equivalent hands‑on experience (advanced Vault operations experience preferred)

Education/Experience:

Bachelor’s degree (BS/BA) desired in Computer Science or Cybersecurity. 7+ years of related experience. Certification is required in some areas.

Supervisor:

No

Our Principal Cybersecurity earns between $155,400-$233,200 USD Annual not to mention all the other amazing rewards that working at AT&T offers. Individual starting salary within this range may depend on geography, experience, expertise, and education/training.  

Joining our team comes with amazing perks and benefits:

• Medical/Dental/Vision coverage  
• 401(k) plan  
• Tuition reimbursement program  
• Paid Time Off and Holidays (based on date of hire, at least 23 days of vacation each year and 9 company-designated holidays)  
• Paid Parental Leave  
• Paid Caregiver Leave  
• Additional sick leave beyond what state and local law require may be available but is unprotected  
• Adoption Reimbursement  
• Disability Benefits (short term and long term)  
• Life and Accidental Death Insurance  
• Supplemental benefit programs: critical illness/accident hospital indemnity/group legal  
• Employee Assistance Programs (EAP)  
• Extensive employee wellness programs  
• Employee discounts up to 50% off on eligible AT&T mobility plans and accessories,
• AT&T internet (and fiber where available) and AT&T phone.

#LI-Onsite – Full-time office role-

Weekly Hours:

Time Type:

Location:

Salary Range:

It is the policy of AT&T to provide equal employment opportunity (EEO) to all persons regardless of age, color, national origin, citizenship status, physical or mental disability, race, religion, creed, gender, sex, sexual orientation, gender identity and/or expression, genetic information, marital status, status with regard to public assistance, veteran status, or any other characteristic protected by federal, state or local law. In addition, AT&T will provide reasonable accommodations for qualified individuals with disabilities. AT&T is a fair chance employer and does not initiate a background check until an offer is made.