What you’ll be doing...

The Verizon Corporate Information Security (CIS) organization ensures the confidentiality, integrity and availability of technology assets and information across all Verizon networks, systems and applications. CIS integrates cyber security governance, policies, technologies and operations across Verizon, and works to incorporate security into the design of technology systems and services. We are looking for a Security Risk Management professional to join our Information Risk Management team.

Responsibilities:

As part of the Corporate Information Security team, you will be assigned to a team to perform the following activities:

  • Evaluate new or modified end-to-end systems, processes and/or product versus internal security standards to identify risks that fall outside of VZ’s risk tolerances
  • Collaborate with the core business partners and other security teams to improve controls via creative process design which meet the evolving business needs for customer experience and efficiency.
  • Provide risk consulting and/or training to business and technical partners to improve business effectively protecting information and other projects and duties focused on efficient operations effective risk management
  • Provide guidance for new technologies and methodologies as business needs evolve.
  • Provide guidance, interpretation and education on specific security policies across requesting organizations related to their projects and applications.
  • Identify initiatives with risk areas that need specialized security expertise.
  • Additional responsibilities as assigned.

What we’re looking for...

You’ll need to have…

  • Bachelor’s degree or four or more years of work experience.
  • Six or more years of relevant work experience.
  • Experience within Information Security, Technology or Technical Risk Analysis.
  • Willingness to travel

Even better if you have…

  • BA / BS Degree - preferably in Computer Science, Information Security, Cyber Security, Risk Management, Applied Mathematics, Engineering or Information Technology.
  • Experience in a service and solution architecture of information technology services.
  • Demonstrated knowledge of cybersecurity risk management concepts, cybersecurity frameworks, secure coding principles, and security technologies.
  • Experience with implementation of industry standards, such as, NIST/FISMA, COBIT 5, ISO 20000 series, ISO 27000 series, HIPAA, or PCI/DSS.
  • Demonstrated success in applying working knowledge of new technologies and methodologies to meet evolving environments and business needs.
  • Knowledge with IT and technology services Governance practices and processes, and solid business acumen.
  • Three or more years of experience in at least two of the following areas:
    • Risk Management & Consulting:
      • Experience driving informed decisions regarding protecting confidentiality, integrity, and availability of data and systems.
      • Briefing technical vulnerabilities, system non-compliance with Information Security policies, and security incidents to management in a timely fashion.
      • Demonstrated capability to understand and negotiate legal contractual language and effectively communicate with legal attorneys, business sponsors and sourcing teams.
      • Experience with implementing security by design.
      • Experience in a service and solution architecture of information technology services.
    • Quantitative Risk Management:
      • Experience implementing quantitative risk methodologies.
      • Demonstrated experience integrating quantitative risk management best practices into business activities.
    • Hands-on experience with one or more of these areas:
      • Security Tools, such as, Directory Services, Authentication Services, Logging & Monitoring, vulnerability scanning tools or other security tools, or
      • General technologies, such as, Networking technologies, databases, middleware, cloud, or operating systems.
      • Implementing sustainable process improvement leveraging security tools.
    • Process Improvement & Automation:
      • ITIL Certification with experience in Six Sigma process improvement related experience for cybersecurity management and/or IT service management.
      • Release management process, system development life cycle (waterfall & agile) experience.
    • Technical Data and Modeling:
      • Related experience for designing and implementing control, assurance and data quality metrics.
      • Experience in a service and data, information based on Enterprise Data Modeling Council standards.
      • Data architecture, modeling and integration experience.
      • Education, Training & Soft Skills.
  • Security certifications: CRISC, GSEC, CISA, CISM or CISSP, or willingness to obtain within 9 months of start date
  • Project management skills or PMP certification.
  • Experience creating and maintaining partnering relationships with business leaders at VP, SVP and C-levels with the capability to provide interaction and executive level communications.
  • Specific experience in managing information security functions, strategy and risk within a Fortune Top 500 company.
  • Strong written, verbal and presentation communication skills and the ability to thrive in a dynamic environment handling multiple priorities.
  • Strong relationship skills and collaborative style to enable success across multiple partners.
  • Strong documentation, planning, negotiation, work prioritization and organizational skills.
  • Creating presentations, training material, network diagrams, reports, and templates.

22CyberRISK

When you join Verizon...

You’ll be doing work that matters alongside other talented people, transforming the way people, businesses and things connect with each other. Beyond powering America’s fastest and most reliable network, we’re leading the way in broadband, cloud and security solutions, Internet of Things and innovating in areas such as, video entertainment. Of course, we will offer you great pay and benefits, but we’re about more than that. Verizon is a place where you can craft your own path to greatness. Whether you think in code, words, pictures or numbers, find your future at Verizon.

Equal Employment Opportunity

We're proud to be an equal opportunity employer- and celebrate our employees' differences,including race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, and Veteran status. Different makes us better.