Sr Specialist Cybersecurity – Non-Human Identity (NHI) Engineer (IAM) - Account/Service/Secret Management

AT&T · IND:KA:Banglaore / Intl Tech Park, Whitefield Rd - Storage: Creator Building, Itpb, Whitefield Rd

Senior Specialist Cybersecurity: Non-Human Identity Engineering

Location: Bangalore or Hyderabad. This is an onsite role requiring 5 days/week presence; candidates must be based in or willing to relocate to one of these locations.

About the Team
We are strengthening AT&T’s enterprise Non-Human Identity engineering capability to support discovery, inventory, ownership, access governance, credential security, and monitoring machine identities across hybrid cloud and on-premises environments. The team works closely with IAM, PAM, IGA, cloud, AI platform, application, infrastructure, DevOps, and security monitoring teams to operationalize centralized governance for service accounts, APIs, bots, application identities, RPA workloads, cloud workload identities, and AI agents.

Role Summary
As a Senior Specialist Cybersecurity - Non-Human Identity Engineering technical leader, you will implement, integrate, automate, troubleshoot, and operate the enterprise NHI and Cloud IAM governance program. You will support discovery, onboarding, classification, ownership mapping, access governance, credential security, reporting, and remediation for non-human identities. This is a senior hands-on engineering role that requires deep technical execution, the ability to lead by doing, and the capability to guide other engineers through complex IAM platform, cloud IAM, PAM, secrets management, monitoring, application, and agentic workload challenges.

What You’ll Do
•    Execute NHI discovery, onboarding, classification, ownership mapping, and registry maintenance across service accounts, APIs, bots, RPA, cloud workloads, and AI agents.
•    Integrate NHI data and controls with IGA, PAM, secrets management, cloud IAM, SaaS, DevOps, monitoring, and enterprise application platforms.
•    Implement lifecycle controls including access provisioning, entitlement validation, access reviews, deprovisioning, and event-driven reviews for high-risk NHIs.
•    Operationalize credential security controls including automated rotation, dynamic secrets, short-lived certificates, JIT access, runtime authentication, and least privilege.
•    Identify and remediate orphaned, stale, duplicate, unmanaged, over-permissioned, or unjustified NHIs through structured tracking and follow-up.
•    Support AI-agent and agentic workload onboarding by validating ownership, system mappings, access, credentials, and monitoring visibility.
•    Serve as a senior hands-on escalation point for production issues involving NHI discovery, cloud IAM permissions, secrets, integrations, monitoring gaps, and data quality.

What You Need to Bring
•    8+ years of enterprise experience in IAM, cloud IAM, PAM, IGA, cybersecurity engineering, infrastructure security, or machine identity management.
•    Hands-on experience with NHI engineering across service accounts, APIs, application identities, bots, RPA, privileged machine accounts, cloud workload identities, and agentic workloads.
•    Ability to lead by doing: design integrations, build automation, troubleshoot production issues, validate access models, and guide engineers through implementation challenges.
•    Strong hands-on experience with AWS IAM, Azure Entra ID, and/or GCP IAM, including integration with IGA, PAM, secrets management, and monitoring platforms.
•    Experience implementing access governance and lifecycle controls, including entitlement validation, certifications, least privilege, deprovisioning, and remediation.
•    Experience with secrets management and credential security patterns including automated rotation, dynamic secrets, short-lived certificates, JIT access, and runtime authentication.
•    Scripting proficiency in Python, PowerShell, Bash, APIs, or similar tools for automation, diagnostics, reporting, integration, and remediation.
•    Strong troubleshooting, communication, documentation, and collaboration skills across technical teams, application owners, cloud teams, vendors, and leadership stakeholders.

Nice to Have
•    Experience with Oasis, SailPoint, CyberArk, HashiCorp Vault, Azure Entra ID, AWS IAM, GCP IAM, ServiceNow, CI/CD tools, cloud-native security services, or SIEM integrations.
•    Understanding of AI agents, agentic workflows, automated workloads, and identity risks associated with autonomous systems.
•    Experience with zero trust architectures, least-privilege access models, privileged access management, and identity threat detection.
•    Exposure to infrastructure-as-code, containerized deployments, DevOps pipelines, cloud platforms, or API-based integrations.
•    Strong troubleshooting, analytical, organizational, self-motivation, and stakeholder management skills.
•    Interest in leveraging automation or AI-enabled tools to improve discovery, monitoring, reporting, remediation, and operational response workflows.

Why Join Us?
•    Play a hands-on role in operationalizing AT&T’s enterprise NHI governance capability across IAM, cloud, PAM, secrets management, and AI-agent environments.
•    Work on high-scale discovery, onboarding, access review, credential security, and remediation activities that directly reduce risk from unmanaged machine identities.
•    Collaborate directly with teams across India and the US on a strategic identity security capability that improves visibility, access control, and operational resilience.

#Cybersecurity

Weekly Hours:

40

Time Type:

Regular

Location:

IND:KA:Banglaore / Intl Tech Park, Whitefield Rd - Storage: Creator Building, Itpb, Whitefield Rd (inactive)

It is the policy of AT&T to provide equal employment opportunity (EEO) to all persons regardless of age, color, national origin, citizenship status, physical or mental disability, race, religion, creed, gender, sex, sexual orientation, gender identity and/or expression, genetic information, marital status, status with regard to public assistance, veteran status, or any other characteristic protected by federal, state or local law. In addition, AT&T will provide reasonable accommodations for qualified individuals with disabilities. AT&T is a fair chance employer and does not initiate a background check until an offer is made.

Security pay context

Based on 1,666 disclosed Security salaries on RoleSuite, the role pays a median of $142K/year, with most offers between $114K and $179K (10th–90th percentile: $95K–$215K).

See the full Security salary breakdown →
Apply →