What you’ll be doing...

This position will be part of the IT Information Security Office (ISO) supporting the information security risk reviews for Global Clearance. The set the data security risk parameters for all IT work conducted offshore, per the direction of the company's CIO's and CISO.

The team will work with IT application leaders, business owners and 3rd Party business partners to ensure the security requirements are fulfilled and risks are reduced for all Global Clearances across VES/VBM/VPS/CFO/CAO.

  • This role will provide focused risk analysis support for Global Clearances across the HR (CAO), Finance (CFO) and VES/VBM/VPS portfolio partners providing process guidance and risk assessment.
  • The requests for offshore access will span multiple Global Clearance PMOs that support both the IT CIO teams and business teams.
  • This role maintains processes and ensures documentation and due diligence is performed and evidence material for audits is recorded.
  • This role will provide security oversight, direction, guidance and requirements to IT application leaders, business leaders and their offshore partners.
  • They will work with application and data architecture teams to set the strategic and technical direction for global security operations and ensure that it is maintained to security specifications.
  • The role is expected to understand the depth of a security risk review which involves conducting detail walkthroughs of each system and data elements to gain an understanding of risk for offshore access.
  • Participate as a stakeholder representing Information Security in functional and technical requirements and design sessions via the agile and traditional software development methodologies.
  • Work with architecture teams to understand enterprise solutions and impacts on security controls for offshore access.
  • Preform detailed risk assessment and provide risk reduction recommendations and security requirements and guidance to IT and business teams supporting the initiatives offshore engagements.
  • The risk analysts they will lead provide control requirements and approvals for offshore work based on assessed risk and mitigating controls.
  • This will require an understanding of the current control environment onshore and with offshore vendors and affiliates.
  • The role can support escalations and for the Global Clearance PMO’s associated with the team's reviews and dispositions of the requests.
  • Provide security requirements during planning sessions, functional and technical requirement sessions, user story creation and grooming, and technical design based on identified risks for offshore access.
  • Determine if any compensating controls are necessary due to inability to comply with the primary control requirements. Facilitate and help design compensating controls as needed for offshore access.
  • Complete and present to Security management and business sponsors a risk assessment evaluation articulating risk and impact analysis when security controls cannot be met by an initiative to ensure transparency and appropriate level of acceptance for offshore access.
  • Broker meetings as needed between project team members and specialized security experts when additional details are required or circumstances are unique or private (under special NDA).
  • Participate weekly meetings with management and Global Clearance security team peers to provide project updates and risk overviews.

What we’re looking for...

You'll need to have:

  • Bachelor's degree or four or more years of work experience
  • Four or more years of relevant work experience

Even better if you have:

  • A degree.
  • Four or more years of IT or related experience.
  • Experience in an Information Security, Software Development/Technical Support.
  • One or more of the following professional certifications: CISA (Certified Information Security Auditor), CISM(Certified Information Security Manager), CRISC (Certified in Risk and Information Systems Controls), GSEC (General Security Essentials Certification), or equivalent, or willingness to obtain within 6 months.
  • Understanding of all stages of the SDLC process, from coding and code promotion through all levels of testing as well as management of multiple non-production environments.
  • Understanding of networking technologies ad portals.
  • Knowledge of databases and operating systems.
  • Knowledge of data security fundamentals and best practices with prior responsibilities of protecting information assets.
  • Ability to coordinate and lead productive working sessions with resources from multiple application and technology teams across the enterprise.
  • Ability to effectively communicate with Legal department attorneys and other supporting business groups such as Compliance and Finance.
  • Excellent written and verbal communication skills. Ability to work effectively with multiple corporate cultures.
  • Understanding of IT Governance practices and processes, and solid business acumen.
  • Experience producing reference documentation for technical or business reference. Excellent documentation and organization skills.

When you join Verizon...

You’ll be doing work that matters alongside other talented people, transforming the way people, businesses and things connect with each other. Beyond powering America’s fastest and most reliable network, we’re leading the way in broadband, cloud and security solutions, Internet of Things and innovating in areas such as, video entertainment. Of course, we will offer you great pay and benefits, but we’re about more than that. Verizon is a place where you can craft your own path to greatness. Whether you think in code, words, pictures or numbers, find your future at Verizon.

Equal Employment Opportunity

We're proud to be an equal opportunity employer- and celebrate our employees' differences,including race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, and Veteran status. Different makes us better.