What you’ll be doing...

Creating technologies to solve the world's biggest challenges is no small task. Join our Corporate Information Security Team focused on security frameworks and requirements, utilizing this knowledge to advise business units, support policy development, and conduct risk analysis.
You'llreview, interpret, and provide guidance related to security frameworks (i.e. NIST, ISO, PCI) and identify information security risks associated with IT and business initiatives impacting Verizon IT networks, information assets and business operations. You will provide security consultation, direction, guidance and requirements to IT application leaders, business sponsors and 3rd party business partners that meet security policy requirements, standards, best practices and reduced risk.
You'llwork with Security leadership and stakeholders to gain risk acceptance on information security risk matters when needed. You will also work with application, technical and business teams to inform and educate on security policies, risks and threats.
  • Develop and analyze cyber assurance initiatives based upon industry standard cybersecurity frameworks and Verizon cybersecurity policies. Function as an information security liaison with business unit teams and provide clear guidance related to control implementation.
  • Review new federal and state cybersecurity regulations, providing feedback to CIS and Legal. Based upon analysis develop recommendations on security controls to address gaps.
  • Evaluate business unit implementation of key security frameworks and provide recommendations to address alignment.
  • Work with architecture teams to understand enterprise solutions and impacts on security controls.
  • Provide general guidance, interpretation and education on specific security policies (primarily CPI-810) across requesting organizations related to their assigned projects / applications.
  • Determine if security or privacy risk factors exist and help associated teams understand the risk factors based on data classification, technology, and functional purpose. Use this risk to help prioritize remediation.
  • Identify initiatives with risk areas that need specialized security expertise.
  • Consult with and provide awareness to specialized security experts such as security architects, engineers, secure coding, PCI/CPNI, and/or Privacy specialist to obtain more specific requirements or design direction.
  • Broker meetings as needed between project team members and specialized security experts when additional details are required or circumstances are unique or private.
  • Participate in weekly meetings with management and specialized security experts (SMEs) to provide project updates and risk overviews.
  • Collaborate and build relationships with IT colleague’s core business partners for continued security education and awareness.
  • Learn new technologies and methodologies as required and direction shifts including various Cloud technologies.

What we’re looking for...

You'll need to have:
  • Bachelor’s degree in Information Systems or related field or four or more years of work experience.
  • Four or more years of relevant work experience.
  • Experience in Information Security, Software Development or Technical Support related area.
Even better if you have:
  • A degree.
  • Certifications: GSEC, CISA/CISM or CISSP, or willingness to obtain within 9 months of start date.
  • Demonstrated understanding of cybersecurity risk management concepts, cybersecurity frameworks, secure coding principles, and security technologies.
  • A base knowledge of AWS and/or cloud technologies.
  • A base knowledge of databases and operating systems.
  • Knowledge in multiple cybersecurity areas such as Identity and Access Management, Security Governance, Information Risk, Awareness and Education and/or Security Strategy.
  • Experience with ISO 27001-2, NIST 800-53, or other controls standards.
  • Knowledge of information security fundamentals, best practices and industry standards with prior responsibilities of protecting information assets.
  • Demonstrated capability to effectively communicate with Legal department attorneys and other supporting business groups such as Compliance and Finance.
  • A solid understanding of Verizon business operations and a baseline knowledge of core business applications and foundational technologies across the IT network.
  • Familiarity with IT Governance practices and processes, and solid business acumen.
  • Experience preparing and providing executive level statuses and presentations using MS PowerPoint, Visio and Excel. Prior experience producing reference documentation for technical or business reference.
  • Excellent documentation and organizational skills.
  • Excellent written and verbal communication skills.
#cybersecurityerp 22CyberRISK
22CyberRISK

When you join Verizon...

You’ll be doing work that matters alongside other talented people, transforming the way people, businesses and things connect with each other. Beyond powering America’s fastest and most reliable network, we’re leading the way in broadband, cloud and security solutions, Internet of Things and innovating in areas such as, video entertainment. Of course, we will offer you great pay and benefits, but we’re about more than that. Verizon is a place where you can craft your own path to greatness. Whether you think in code, words, pictures or numbers, find your future at Verizon.

Equal Employment Opportunity

We're proud to be an equal opportunity employer- and celebrate our employees' differences,including race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, and Veteran status. Different makes us better.