Verizon is one of the world’s leading providers of technology and communications services, transforming the way we connect across the globe. We’re a diverse network of people driven by our shared ambition to shape a better future. Here, we have the ability to learn and grow at the speed of technology, and the space to create within every role. Together, we are moving the world forward – and you can too. Dream it. Build it. Do it here.
What you’ll be doing...
The Verizon Product Security Team ensures security by design product engineering and architecture for both consumer and business products. As a Security Risk Management Engineer, you will work to conduct risk assessments on both Consumer and Business products and solutions. You will have in-depth experience across the Security and Compliance domain and apply this knowledge to drive cross-organizational initiatives. As a senior individual contributor, you will be responsible to conduct risk assessments, develop action plans to improve application security posture.
You will also work in conjunction with security stakeholders in other areas of the business and make decisions and help lead initiatives to ensure timely delivery of security solutions that support business objectives. You will also manage work that involves coordination with multiple organizations and is the focal point within the group.
- Work with application teams managing activities related to Compliance, Vulnerability scanning, Threat Modeling.
- Liaise with and offer direction in the related compliance functions to application developers and leaders throughout the Verizon Consumer Group/Verizon Business Group.
- Analyze trends in threat and compliance environment, develop and execute plans for mitigation of risk.
- Act as a focal point during the implementation & delivery of multiple Security projects.
- Lead efforts to promote security awareness including newsletters and knowledge sharing sessions.
- Produce reports and presentations outlining issues, action plans and overall compliance status of the portfolio.
- Communicate progress, findings, and ensure successful resolution of issues.
- Build relationships with program leads, developer, operations and CISO teams to understand how to develop plans that effectively manage security risks.
- Bachelor’s degree or relevant work experience.
- Experience across the Security and Compliance domain
- Knowledge on Application and Cloud Security industry standards, trends, threats, vulnerabilities, and technology frameworks.
Even better if you have:
- Industry Certifications such as CISSP, CISM.
- Agile software development and Project management experience.
- Ability to clearly communicate technical concepts to all audiences.
- Self-directed ability to drive change & manage multiple projects.
- Contributions to the security community such as research, published CVEs, bug-bounty recognitions, open-source projects, blogs or publications.
