What you’ll be doing...

The Cloud Compliance Senior Manager will serve as the strategic security lead for enterprise information security evolution. This position will provide guidance and direction to a team of security subject matter experts (SME’s). This position will lead the compliance, monitoring, control and SaaS product management as it relates to Verizon’s public cloud environments. This is a working Manager position, requiring the appropriate candidate for to be technically proficient in multiple domains of security. 

This manager will make decisions both autonomously and also with the counsel and support of the Director of Cloud Integration Security and provide guidance regarding strategic approach and overall deliverables will be provided by the Director with an expectation that these directives be carried out independently.

  • Conduct enterprise level assessments to evaluate existing security program, identify weaknesses and make recommendations.
  • Identify and assess security threats and risks in order to define and implement appropriate architectural security models.
  • Create, document and maintain cloud control frameworks that document primary cloud controls and cross reference them to specific control frameworks (PCI DSS, Fedramp, NIST, etc).
  • Manage and maintain all cloud security SaaS product including but not limited to Dome9, Evident.IO, Redlock and Twistlock.
  • Provide for daily monitoring of cloud controls and related follow-up of any identified exceptions
  • Act as the Cloud Compliance SME in support of other Information Security teams, e.g. Strategy, Compliance, Privacy, SOC/CIRT and Risk Assessment.
  • Provide guidance to junior security staff and perform deep technical research on the security impacts of new technology.
  • Drive efforts and provide material support to business teams by planning and designing cloud compliance solutions in support of the Verizon security strategy.
  • Ensure that security risk mitigations and approach are aligned with IT and business goals.
  • Oversee the review of major/key business projects and initiatives by serving as the cloud compliance lead.
  • Provide guidance to ensure security policy, compliance requirements, and best-practices are implemented across the project portfolio. In addition, this role will provide strategic and technical leadership for Information Security sponsored initiatives, including requirements gathering/creation, vendor/product selection, implementation guidance, and turnover to production.
  • Lead weekly staff meetings and review/analyze weekly status reports for actionable items.
  • Lead cross-functional team meetings with IT and business partners to ensure architecture project alignment.
  • Participate in weekly management meetings to provide feedback on key initiatives to the Director of CSIS
  • Provide direction and prioritization of team assignments.
  • Provide regular progress reports for Senior/C-Level management.
  • Conduct performance reviews, help team members execute career development plans and interview and hire staff as necessary.
  • Build relationships and synergies across business areas to promote security awareness, and improve security adoption to ensure the protection of Verizon corporate and customer information.

What we’re looking for...

You'll need to have:

  • Bachelor’s degree or four or more years of work experience.
  • Six or more years of relevant work experience.

Even better if you have:

  • Bachelor’s Degree in information technology or related field.
  • Eight or more years of experience in Security, Compliance and risk management, including privacy, controls.
  • Certifications: CISSP, CCSP, AWS certification(s), GCP certification(s).
  • Supervisory experience and strong verbal/ written communication skills.
  • Two or more years of experience with Cloud technologies.
  • Experience with IT Security Frameworks such as NIST, ISO27001, PCI, DSS.
  • Experience with Security Services in AWS such as IAM, KMS, VPC, Security Groups, AWS Inspector.
  • Expertise in 4 or more of the 10 security epics across Data Protection, Compliance Validation, Vulnerability Analysis, Network Security, Infrastructure Security, CICD Security, Identity andAccess Management, Logging and Monitoring, Incident Response, Big Data and Analytics, andResiliency.
  • Experience with Management Services such as CloudWatch, Lambda and AWS Config.
  • Experience of Infrastructure and Platform Services such as EC2, RDS.
  • Knowledge and experience with Docker, ECS, Kubernetes, and Container Security.
  • Third party ecosystem tools for compliance and security such as Evident.IO, Dome 9, TrendMicro, Twistlock, RedLock SaaS Tools.

When you join Verizon...

You’ll be doing work that matters alongside other talented people, transforming the way people, businesses and things connect with each other. Beyond powering America’s fastest and most reliable network, we’re leading the way in broadband, cloud and security solutions, Internet of Things and innovating in areas such as, video entertainment. Of course, we will offer you great pay and benefits, but we’re about more than that. Verizon is a place where you can craft your own path to greatness. Whether you think in code, words, pictures or numbers, find your future at Verizon.

Equal Employment Opportunity

We're proud to be an equal opportunity employer- and celebrate our employees' differences,including race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, and Veteran status. Different makes us better.