What you’ll be doing...

The candidate will be part of the Corporate Information Security Strategy and Risk team and will helping transform the Verizon security operating model across the enterprise and business units to become best in class security service providers for the Verizon enterprise. This team is responsible for developing enterprisecybersecurity and risk management strategy for detection and monitoring of risks, vulnerabilities, and evolving our preventive infrastructure, network and business processes to keep ahead of the threat. This is accomplished through strong information security leadership and active collaboration with line of business to provide high quality security solutions and services that are focused on improving Verizon’s risk posture.

The candidate will be responsible for helping introduce novel approaches, technologies and skills within security services, products and capabilities to evolve security defenses through automation and incorporation of data-driven, intelligent technology to deliver world-class security capabilities.

The candidate will aid in creating technical solutions designed to scale across the Verizon enterprise in order to provide effectiveness and efficiency demanded by shareholders, Verizon business units, and consumers. The successful candidate will work with business, operations and technical teams to create lean, standardized cyber technical solutions that meet Verizon protection needs and against best practices security frameworks. Ultimately the combination of standards, governance and operational efficiency will provide a measurable reduction in unit cost, increase of speed to implement, and increase quality of delivery for desired security controls.

Responsibilities:

  • Support the Cyber Transformation Lead for strategic initiatives (vulnerability management, asset management, penetration testing, etc.) around improving the effectiveness of the delivery, integration and operation of enterprise security services technologies in meeting Verizon’s business operational and risk management goals.
  • Assist in the development of modular architectures and designs that allow substitution or maturation of modules and services in a manner that allows more streamlined update of existing capabilities and integration of new technical or process capabilities to allow the enterprise to more quickly adapt to the increasing pace of evolution of threat and technology in the security landscape.
  • Support the analysis of cyber security tools to support a standardized, integrated automation-based security architecture based on sound technology, data, and operations management principles, resulting in tangible corporate cost savings.
  • Collaborate with technology and business stakeholders to assist in providing technical and operational guidance for potential new technologies and solutions to meet evolving business needs and regulatory requirements which includes an independent review of architecture, standards, controls and risk remediation activities.
  • Analyze existing and planned cyber security technical capabilities, products and operations for detailed technical requirements for security services.
  • Document these requirements to enable the supporting teams in architecting, designing and implementing security services that effectively support business solutions.
  • Execute implementation of technical service definition and decomposition modeling methods to support effective delivery of security services and interfacing with other services and information providers.
  • Work with business and technical stakeholders to ensure the establishment of enterprise-level KPIs related to the reduction of time to detect, respond, and remediate key technical security risks.

What we’re looking for...

You’ll need to have:

  • Bachelor’s degree or four or more years of work experience.
  • Six or more years of relevant work experience.

Even better if you have:

  • A degree in Information Systems or business/supply chain management.
  • One or more of these certifications:
    • Certified in Risk and Information Systems Control (CRISC)
    • ISO 27001 Lead Auditor
    • Certified Information System Auditor (CISA)
  • Certified Information Systems Security Professional (CISSP).
  • Release management process, system development life cycle (waterfall & agile) experience.
  • Experience working implementing security and security-related processes, tools and systems from designs.
  • Knowledge of AWS and/or cloud technologies, Databases and Operating Systems.
  • Experience with Active Directory, PowerBroker, Firemon, Tuffin, CyberArk, CA or other security tools.
  • Organizational, technical and cultural transformation and/or merger & acquisition experience.
  • Experience in a service and solution architecture of information technology services.
  • Automation experience with tools, such as Splunk ES, HP uCMDB, BMC, ServiceNow, BDNA, Archer, business intelligence solutions, vulnerability detection tools, discovery and dependency mapping tools, and continuous integration or continuous delivery (CI/CD) lifecycle tools.
  • Knowledge of cyber security risk management concepts, cyber security frameworks, secure coding principles, and security technologies.
  • Knowledge of information security fundamentals, best practices and industry standards with prior responsibilities of protecting information assets. (NIST, COBIT 5, ISO 20000 series, ISO 27000 series).
  • Demonstrated success in applying working knowledge of new technologies and methodologies to meet evolving environments and business needs.
  • ITIL Certification and/or experience with Six Sigma process improvement related experience for cyber security management and/or IT service management.
  • Six Sigma Greenbelt or Lean certification.
  • Excellent written and verbal communication skills.
  • Excellent documentation and organizational skills.

22CyberARCH 22CyberRISK

When you join Verizon...

You’ll be doing work that matters alongside other talented people, transforming the way people, businesses and things connect with each other. Beyond powering America’s fastest and most reliable network, we’re leading the way in broadband, cloud and security solutions, Internet of Things and innovating in areas such as, video entertainment. Of course, we will offer you great pay and benefits, but we’re about more than that. Verizon is a place where you can craft your own path to greatness. Whether you think in code, words, pictures or numbers, find your future at Verizon.

Equal Employment Opportunity

We're proud to be an equal opportunity employer- and celebrate our employees' differences,including race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, and Veteran status. Different makes us better.