Verizon Senior Security Engineer in Denver, Colorado
What you’ll be doing...
The Senior Security Engineer is critical to the MapQuest Verizon/MapQuest Location Center of Excellence COE. As our Senior Security Engineer, you will create and maintain our vision, strategy and program to ensure that MapQuest COE’s LCOE’s physical and digital information assets and technologies, and in turn our end-user customers, are protected. The Senior Security Engineer will combine expertise in all matters of working with the Chief Privacy Officer (CPO) and other business leadership, Operations and Systems teams and the VZ Information Security community and supporting the Yahoo team responsible for building the LCOE technologies. This role will proactively and in a very hands-on manner work with business units to establish, craft and implement best practices, design and develop products and deliver services that meet defined policies and standards for information security. The candidate will serve as process owner for all assurance activities related to the availability, integrity and confidentiality of customer, business partner, employee and business information in compliance with MapQuest's LCOE’s information security policies. The candidate will establish appropriate standards and controls, indirectly manage security technologies and direct the establishment and implementation of policies and procedures.
Lead, define and implement a comprehensive risk-based strategy and program to manage MapQuest’s the business’ digital and information assets; continuously review and set/update policies to support the program.
Develop, present and manage a diversified risk portfolio that identifies and quantifies key risks, measuring them quantitatively and qualitatively.
Communicate to key stakeholders and business leadership the prioritization, modeling and pricing of risk along with mitigation solutions.
Become the SME for data security within the MapQuest Locations Services Center of Excellence.
Establish and lead organizational development toward a mature risk management culture.
Participate in key Operations and Systems operating routines to implement and drive information security risk strategy.
Partake in reviews with the architecture team to ensure we incorporate adequate security requirements and privacy by design into our systems and applications where feasible.
Craft proof-of-concept exploitations for discovered vulnerabilities or security issues.
Provide guidance on prioritization and remediation of security issues.
Partner with the Chief Privacy Officer for Verizon Security to establish information security policies, standards and guidelines for sharing information on internal or external platforms, the product delivery process and the delivery of cloud-based and other services to customers.
Oversees the approval, training, and dissemination of security policies and practices, as well as information security awareness and training programs for all employees, contractors and approved system users.
Work with the Operations and Systems team to ensure all MapQuest COE applications and systems are developed and maintained according to the secure SDLC guidelines including architecture analysis, code reviews and penetration testing.
Work with business colleagues to review RFPs, RFIs etc., and provide security and risk-related input into proposals.
Plan responses and execute to manage security incidents and events to protect corporate IT assets, including intellectual property, regulated data and the company's reputation.
Monitor the external threat environment and information security trends internal and keeps business leadership informed about information security-related issues and activities potentially affecting the organization.
What we’re looking for...
You’ll need to have:
Bachelor’s degree in Engineering/Computer Science or related field or 6 or more years of related work experience.
6 or more years of relevant work experience.
CISSP certified or willingness to obtain within 6 months.
4+ years in cyber security program management.
4+ years in cyber security architecture and engineering.
4+ years project management/management experience supporting new developments and initiatives.
Ideally will have:
Master’s degree /MBA preferred.
2+ years of experience with cloud security design and engineering.
Knowledge of AWS architecture and security measures.
Knowledge of Verizon and AWS contract requirements and specifications.
Knowledge of data security requirements and protection measures (e.g., encryption).
Knowledge of Verizon networking architecture and cloud interfaces.
Knowledge of Cloud-unique security risks.
1-3 years of experience with obtaining system security certifications/approvals within Verizon.
Familiarity with I&AM processes and technologies.
Familiarity with security event logging, retention and analysis.
Knowledge of code/API security vulnerabilities and remediation measures.
Knowledge of Verizon, regulator, privacy and international data protection rules.
Exceptional written and verbal communication skills, excellent influencing and problem resolution skills.
When you join Verizon...
You’ll be doing work that matters alongside other talented people, transforming the way people, businesses and things connect with each other. Beyond powering America’s fastest and most reliable network, we’re leading the way in broadband, cloud and security solutions, Internet of Things and innovating in areas such as, video entertainment. Of course, we will offer you great pay and benefits, but we’re about more than that. Verizon is a place where you can craft your own path to greatness. Whether you think in code, words, pictures or numbers, find your future at Verizon.
Equal Employment Opportunity
We're proud to be an equal opportunity employer- and celebrate our employees' differences, regardless of race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, or Veteran status. Different makes us better.