When you join Verizon
Verizon is one of the world's leading providers of technology and communications services, transforming the way we connect across the globe. We're a diverse network of people driven by our shared ambition to shape a better future. Here, we have the ability to learn and grow at the speed of technology, and the space to create within every role. Together, we are moving the world forward - and you can too. Dream it. Build it. Do it here.
What you'll be doing...
The Infrastructure Security Operations (ISO) enables the business by defining, managing and improving the overall security posture, which includes remediation efforts, architecture enhancements and the implementation of security measures to secure the cloud, network, database and endpoint infrastructure. ISO integrates cybersecurity governance, policies, technologies and operations across Verizon, and works to incorporate security into the design of technology systems and services.
The Cloud Security team within ISO is responsible for Cloud Security Consulting, Planning and Review of Security Architecture, Security DevOps Engineering and Security Compliance leveraging Security Automation.
As a Cloud Security Engineer of Verizon's ISO organization, you will support the team in its goals of embracing cloud based technologies across multiple providers (e.g., Amazon AWS, Oracle OCI, Google GCP) supporting differing service implementations (e.g., IaaS, SaaS, PaaS). You will be a strategic contributor in information security, problem solving and relationship management to lead internal programs aimed at: achieving certification and attestation of multi-cloud platforms against Verizon security policies, industry standards and regulations, and government regulations, identifying and mitigating security risks in our cloud deployments; ensuring security alignment to corporate policies; and balancing security requirements with the dynamic needs of our users and the values of our company. In this role you will gain valuable experience and insight in protecting Verizon's multiple cloud environments and will be at the heart of guarding our data and applications against advanced threat adversaries.
- Becoming proficient with corporate and industry security requirements/best practices.
- Staying current on Cloud Security policies, standards, regulations making recommendations for the company.
- Working closely and collaboratively with Information Security Teams, IT Portfolios, and Business units to support their needs.
- Producing Reports, scorecards and related metrics.
- Driving Mitigation of reported risks from continuous monitoring solutions.
- Tracking and reporting on the status of Cloud Security risks to corporate/industry requirements.
- Gaining deep security-level knowledge of cloud environments, continuous monitoring solutions to understand and provide direct guidance for security remediation activities.
- Infrastructure as a Code/Security Automation (Example, Terraform, CloudFormation, Shell Scripting, API integrations...etc.).
- Maintaining strong awareness of Cloud Security incidents in the external community to identify threats and opportunities for enhancement.
- Leading cloud threat intelligence program, responsible for gathering the necessary security intelligence, ensuringcorrelation of threat intelligence with Verizon systems, analyzingthe resulting threat from the relevant information and then formulatingactionable responses and threat mitigation to ensure the protection of Verizon's systems, customer information and brand.
Where you'll be working...
In this hybrid role, you will have a defined work location that includes work from home and assigned office days set by your manager.
What we're looking for...
You'll need to have:
- Bachelor's degree or four or more years of work experience.
- Four or more years of relevant work experience.
- Experience with AWS/Public Cloud.
Even better if you have one or more of the following:
- Bachelor's degree in Information Technology and or Security.
- AWS/Public Cloud Certified (e.g. Solution Architect Associate Certification).
- Experience in Security, Compliance and risk management (e.g., privacy, controls).
- One of more of the following certifications: Google Cloud Certified (GCP) Associate Cloud Engineer (ACE),Oracle Cloud Infrastructure(OCI) Certified Architect Associate (CAA),AWS Certified Solutions Architect - professional, AWS Certified Security - Specialty, CSA Certificate of Cloud Security Knowledge (CCSK), ISC2 Certified Cloud Security Professional (CCSP).
- Knowledge of multi-cloud platforms (e.g., AWS, GCP, Azure, OCI) to be able to identify and prioritize potential security challenges.
- Experience of infrastructure as a Service (IaaS) cloud platforms (e.g., IAM, compute (e.g.,EC2, GCE), storage (volume/object), networking (e.g., VPC, VCN, Load Balancers, Security Groups/List, NACLs), serverless (e.g.,Lambda)).
- Knowledge of cloud console(s) navigation and CLI execution to research and query/validate potential security risks and of security violations.
- Knowledge with native Cloud Security services AWS Trusted Advisor, Amazon Inspector/Google Cloud Security Scanner, AWS Configuration.
- Experience with Jenkins, JIRA, Confluence, BitBucket, GIT, and other related technologies.
- Knowledge of containerization (e.g., Docker, Kubernetes, EKS, Elastic Container Service) and best practices to secure registries, images, workloads, etc.
- Ability to clearly communicate technical concepts to all audiences.
- Performance oriented, self-directed ability to drive change and the ability to manage multiple projects.
If Verizon and this role sound like a fit for you, we encourage you to apply even if you don't meet every "even better" qualification listed above.
Equal Employment Opportunity
We're proud to be an equal opportunity employer - and celebrate our employees' differences, including race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, and Veteran status. At Verizon, we know that diversity makes us stronger. We are committed to a collaborative, inclusive environment that encourages authenticity and fosters a sense of belonging. We strive for everyone to feel valued, connected, and empowered to reach their potential and contribute their best. Check out our diversity and inclusion page to learn more.