**Job Description:** **About the Company:** Join AT&T and reimagine the communications and technologies that connect the world. Our Chief Security Office ensures that our assets are safeguarded through truthful transparency, enforce accountability and master cybersecurity to stay ahead of threats. Bring your bold ideas and fearless risk-taking to redefine connectivity and transform how the world shares stories and experiences that matter. When you step into a career with AT&T, you won’t just imagine the future-you’ll create it. We are seeking a Senior Specialist Engineer responsible to design and develop comprehensive IT architectural solutions and implementation plans, ensuring they are scalable, high-performance, and aligned with enterprise goals to drive technological innovation for the customer. This role partners with IAM product owners, security teams, and ServiceNow platform teams to ensure access-related services are available, compliant, and efficient. This hybrid role blends solution architecture with hands-on Java backend engineering (≈50%) to support and accelerate Chipmunks Application backend development activities. **What you'll bring** + Architect, design, and deliver large-scale, reliable, maintainable, high-quality cybersecurity solutions and systems aligned with company guidelines and best practices. + Maintain comprehensive documentation and patterns for cybersecurity design, implementation, and maintenance, ensuring compliance with regulatory standards and internal policies. + Work with other cybersecurity SMEs to resolve the company’s most difficult cybersecurity problems, develop groundbreaking solutions, and push the boundaries of cybersecurity technology in alignment with strategic business objectives. + Address difficult and ambiguous cybersecurity problems spanning the interactions among multiple systems, products, organizations, people, and functions. + Model tech solutions by iteratively translating cybersecurity needs and business constraints into working designs. + Advisory Role: Advise on the best possible technical and innovative cybersecurity approaches. + Balance agility and quality with the right security protocols. + Lead and provide expert guidance and mentorship to Lead, and Senior engineers, lead technical discussions, and make architectural decisions that positively impact the product and company’s direction + Experience in drafting Security design patterns across all of Cyber domains. + Expertise and deep understanding in Information security domains. + Experience in thought leadership and creating high-quality cybersecurity solutions. + Experience in leadership with the ability to work well across business units, building relationships to deliver on joint objectives and key results. + Expertise in building cybersecurity platforms. + Experience working within Agile/Scrum/Kanban development teams. + Excellent written and verbal communication skills with the demonstrated ability to present complex technical information clearly to peers, developers, and senior leaders. **Core Skills & Competencies:** **Java / Backend Engineering (Expert)** + Advanced Java expertise (Java 17/21): concurrency, JVM performance tuning (GC, memory), modern language features, clean code practices. + Spring Boot mastery: REST API design (resource modeling, pagination/filtering), validation, exception handling, versioning, OpenAPI/Swagger. + API security: OAuth2/OIDC, JWT, mTLS, service-to-service auth, secrets management, secure headers, OWASP API Top 10 mitigations. + GraphQL (Spring Boot): schema design, resolvers, federation basics (if applicable), performance patterns (batching/dataloaders), query cost controls, introspection governance. + Integration patterns: async workflows, idempotency, retries/backoff, circuit breakers, rate limiting/throttling, correlation IDs. **Data & Persistence (PostgreSQL)** + Strong PostgreSQL skills: schema design, indexing strategy, query optimization (EXPLAIN/ANALYZE), connection pooling, transaction isolation, migrations (Flyway/Liquibase). + Data integrity and performance: constraints, partitioning (where needed), handling large datasets, auditing patterns. **Containers, Kubernetes & Azure** + Container engineering: building secure Docker images (multi-stage builds, minimal base images), image scanning, SBOMs, vulnerability remediation. + Kubernetes fundamentals: deployments/statefulsets, services/ingress, configmaps/secrets, health probes, autoscaling (HPA), pod security, resource limits/requests. + kubectl proficiency: debugging pods, logs, exec, port-forward, rollout strategies, troubleshooting networking/DNS. + AKS (Azure Kubernetes Service) operations: cluster/nodepool concepts, upgrade strategy, workload identity (as applicable), storage classes, ingress controllers, monitoring. **ServiceNow (Architecture + Production Engineering)** + Flow Designer: design patterns, subflows, error handling, retries, transaction troubleshooting, performance considerations, production support. + Security model expertise: ACLs, roles, user criteria, scoped app boundaries, least-privilege access design. + Data modeling: table design, relationships, normalization vs reporting needs, data quality controls, performance optimization (queries, indexing where applicable). + Governance & upgrade-safe design: minimizing customizations, reusable components, standards for scripts/config, testing strategy (ATF), release/change discipline. **Architecture, Delivery & Operations** + Proven architecture ownership: designing end-to-end solutions, writing interface contracts, creating sequence/architecture diagrams, making trade-offs (security/performance/cost). + SDLC excellence: code reviews, branching strategy, CI/CD pipelines, automated testing (unit/integration/contract), artifact/version management. + Observability & reliability: structured logging, metrics, tracing (OpenTelemetry concepts), SLO thinking, incident response, RCA/problem management. + Strong collaboration: ability to work across platform teams (ServiceNow), backend teams, security, and operations; clear documentation and stakeholder communication. **Mandatory certification:** OCP Java 17/21, CKAD or CKA, VMware Spring Professional Certification. **Preferred Skills** + Certificates – CISSP, CCSP or any industry recognized certification. + IntegrationHub advanced usage; Spokes, robust error handling, integration monitoring. + ServiceNow performance analytics/reporting and operational dashboards. + CMDB/data foundations (as applicable): identification rules, data certification, service mapping concepts. + App Engine / scoped app packaging, App Repo, source control integration. + Automated Test Framework (ATF) strategy and implementation. **Additional information (if any):** Flexible to provide coverage in US hours upon need. **Experience Level:** 10+ years **Location:** Bengaluru **Weekly Hours:** 40 **Time Type:** Regular **Location:** IND:KA:Bengaluru / Innovator Building, Itpb, Whitefield Rd - Adm: Intl Tech Park, Innovator Bldg It is the policy of AT&T to provide equal employment opportunity (EEO) to all persons regardless of age, color, national origin, citizenship status, physical or mental disability, race, religion, creed, gender, sex, sexual orientation, gender identity and/or expression, genetic information, marital status, status with regard to public assistance, veteran status, or any other characteristic protected by federal, state or local law. In addition, AT&T will provide reasonable accommodations for qualified individuals with disabilities. AT&T is a fair chance employer and does not initiate a background check until an offer is made. AT&T will consider for employment qualified applicants in a manner consistent with the requirements of federal, state and local laws We expect employees to be honest, trustworthy, and operate with integrity. Discrimination and all unlawful harassment (including sexual harassment) in employment is not tolerated. We encourage success based on our individual merits and abilities without regard to race, color, religion, national origin, gender, sexual orientation, gender identity, age, disability, marital status, citizenship status, military status, protected veteran status or employment status