When you join Verizon

Verizon is one of the world’s leading providers of technology and communications services, transforming the way we connect across the globe. We’re a diverse network of people driven by our shared ambition to shape a better future. Here, we have the ability to learn and grow at the speed of technology, and the space to create within every role. Together, we are moving the world forward – and you can too. Dream it. Build it. Do it here.

What you’ll be doing...

The Head of Cyber Defense is responsible for strategy, management, and operation of a full end-to-end proactive and reactive cyber defense capabilities. This position will report to the SVP, Chief Information Security Officer. The senior leader will be responsible for coordinating with other internal business units and operations centers in maintaining a full scope cyber defense program and services. The position will maintain processes and management services to ensure the ability of Verizon internal and external customers to effectively engage with the Cyber Defense teams. Support business objectives that enable established service level agreements (SLAs) and operating level agreements (OLAs).

A leader who can envision, prepare, and convey to all levels of leadership the future state of our adversaries and how to best plan, prepare and execute to diminish impact to Verizon. One who does not communicate by FUD (Fear, Uncertainty, & Doubt) rather one that is pragmatic to the business challenges and can communicate the multiple environmental variables to enable clear decisions and choices.

Must be knowledgeable about both internal and external business environments and ensure monitoring and responsiveness to potential risks in a fully functional and secure mode; compliant with legal, regulatory and contractual obligations. As the purview is global, must be conversant in various geopolitical concerns and threats as well as functional understanding and working experience with various global regulatory and privacy concerns.

KEY RESPONSIBILITIES

This position is responsible for establishment, maintenance and execution of strategies, planning and operations to ensure that:

1) Vulnerabilities are identified, assessed and addressed by systems owners sufficiently to ensure risk is properly managed based on prioritization that accounts for the current assessment of the threat environment.

2) that threats to systems, processes, personnel, and assets are assessed, well understood, and addressed,

3) that detective security capabilities in all environments are established, maintained, managed and operated effectively to provide detect anomalies and events, that

4) preventative security controls designed within systems and processes to manage controls are maintained, and necessary upgrades are provided to address changes in risk profile throughout the lifecycle of systems, and

Key functions and teams (not exhaustive or limited to):

Enterprise Vulnerability Management: Asset Inventory Program, Vulnerability Scanning (to include platform management), & Vulnerability assessment.

Threat Management: Incident Response and Incident Command, Threat Detection/Monitoring, Threat Hunt, Digital Forensics, Incident Exercise, & eMail phishing protection.

Insider Threat: Use case/Alert development, Policy & Procedures, Monitoring, Investigations

Cyber Defense Engineering: ML/AI analytics, content and product development, SIEM management, UEBA management, & SOAR development and management.

Resilience & Intelligence: Threat Intelligence, Continuous Validation, & Red Team

Representative Tasks:

▪ Lead the enterprise-wide Cyber Defense function by setting the vision and establishing direction across the global enterprise, fostering foster a business-driven, security-oriented culture and mind-set driven by continual service improvement techniques

▪ Build and maintain relationships with other IT, network, and security leaders to develop a clear understanding of business needs; ensures cost-effective delivery of security operations services to meet those needs

▪ Able to respond with agility to changing global security issues and business priorities

▪ Direct and provide guidance related to protective intelligence, intellectual property protection, threat mitigation, and sensitive threat analysis and investigations

▪ Maintain and oversee the execution of the coordinated enterprise-level Verizon cyber incident management process that ensures timely detection, containment, and eradication of threats, recovery from resulting damage, and corrective action to minimize the risk of future incidents to protect corporate IT assets, intellectual property, regulated data and the company's reputation

▪ Work effectively with business units to facilitate security penetration testing and red team assessments to support new system testing, vulnerability remediation, post-incident remediation validation, and proactive identification of threats and vulnerabilities to support operational risk assessment and management processes and efforts

▪ Deliver vulnerability management services to provide an enterprise view of the current state of vulnerabilities and remediation across the Verizon enterprise through reporting and analytic support capabilities; lead vulnerability scanning and assessment teams to ensure quality of execution and resulting data is effectively delivered within CIS-delivered standards, procedures, and guidelines

▪ Manage the cost-efficient delivery of security operations services within an organizational structure consisting of direct reports and dotted line reports. This includes ensuring hiring, training, staff development, performance management, and annual performance reviews are aligned and effectively executed to continue to grow the skills and capabilities in accordance with Verizon’s strategic needs

▪ Ensure security controls are monitored and operated in accordance with Verizon policy and control frameworks, applicable Verizon standards and procedures and system-specific operational security needs

▪ Build the necessary internal relationships and communication networks among the broader information security team and line-of-business executives, corporate compliance, audit, physical security, legal and HR management teams to ensure continued alignment as required

What we’re looking for...

  • The Head of Cyber Defense should have a track record of competency in the field of security operations with ten years of relevant experience in large enterprises, including at least six years in a significant Cyber leadership role

  • 15+ Years of overall security experience

  • 10+ years people management with a proven track record of building, training, and developing a high-performing team; ability to lead and motivate an organization of security professions to achieve tactical

22CyberOPS

Equal Employment Opportunity

We're proud to be an equal opportunity employer - and celebrate our employees' differences, including race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, and Veteran status. At Verizon, we know that diversity makes us stronger. We are committed to a collaborative, inclusive environment that encourages authenticity and fosters a sense of belonging. We strive for everyone to feel valued, connected, and empowered to reach their potential and contribute their best. Check out our diversity and inclusion page to learn more.

COVID-19 Vaccination Requirement

Verizon requires new hires to be fully vaccinated against COVID-19. Verizon provides reasonable accommodations consistent with legal requirements (e.g., for medical or religious reasons).