Security Risk Manager

When you join Verizon

Verizon is one of the world’s leading providers of technology and communications services, transforming the way we connect across the globe. We’re a diverse network of people driven by our shared ambition to shape a better future. Here, we have the ability to learn and grow at the speed of technology, and the space to create within every role. Together, we are moving the world forward – and you can too. Dream it. Build it. Do it here.

What you’ll be doing...

The Verizon Corporate Information Security (CIS) organization securely enables the business by protecting assets and information across Verizon networks, infrastructure and applications. CIS integrates cybersecurity governance, policies, technologies and operations across Verizon, and works to incorporate security into the design of technology systems and services.

We are looking for a Security Risk Management professional to join our Information Risk Management team to perform the following activities:

• Evaluating new or modified end-to-end systems, processes and/or product versus internal security standards to identify risks that fall outside of VZ’s risk tolerances
• Collaborating with the core business partners and other security teams to improve controls via creative process design which meet the evolving business needs for customer experience and efficiency.
• Providing risk consulting and/or training to business and technical partners to improve business effectively protecting information and other projects and duties focused on efficient operations effective risk management
• Providing guidance for new technologies and methodologies as business needs evolve.
• Providing guidance, interpretation and education on specific security policies across requesting organizations related to their projects and applications.
• Identifying initiatives with risk areas that need specialized security expertise.
• Providing additional responsibilities as assigned.

Where you’ll be working…

In this hybrid role, you'll have a defined work location that includes work from home and assigned office days set by your manager.

What we’re looking for...

You’ll need to have:

• Bachelor’s degree or four or more years of work experience.
• Six or more years of relevant work experience.
• Experience creating and maintaining partnering relationships with business leaders at VP, SVP and C-levels.
• Experience within Information Security, Technology or Technical Risk Analysis.
• Experience in providing interaction and executive level communications.
• Knowledge of cybersecurity risk management concepts, cybersecurity frameworks, secure coding principles, and security technologies.
• Experience with implementation of industry standards, such as, NIST/FISMA, COBIT 5, and ISO 20000 series, ISO 27000 series, HIPAA, or PCI/DSS.
• Experience in applying working knowledge of new technologies and methodologies to meet evolving environments and business needs.
• Knowledge with IT and technology services Governance practices and processes, business acumen.
• Experience in creating presentations, training material, network diagrams, reports, and templates.

Even better if you have one or more of the following:

• A degree in Computer Science, Information Security, Cyber Security, Risk Management, Applied Mathematics, Engineering or Information Technology.
• Security certifications: CRISC, GSEC, CISA, CISM or CISSP, or willingness to obtain within 12 months of hire.
• Project management skills or PMP certification.
• Experience in managing information security functions, strategy and risk.
• Strong written, verbal and presentation communication skills and the ability to thrive in a dynamic environment handling multiple priorities.
• Strong relationship skills and collaborative style to enable success across multiple partners.
• Strong documentation, planning, negotiation, work prioritization and organizational skills.
• Experience in a service and solution architecture of information technology services.
• Three or more years of experience in at least two of the following: Risk Management & Consulting, Quantitative Risk Management.
• Experience in driving informed decisions regarding protecting confidentiality, integrity, and availability of data and systems.
• Experience in briefing technical vulnerabilities, system non-compliance with Information Security policies, and security incidents to management in a timely fashion.
• Ability to understand and negotiate legal contractual language and effectively communicate with legal attorneys, business sponsors and sourcing teams.
• Experience with implementing security by design.
• Experience in a service and solution architecture of information technology services.
• Experience implementing quantitative risk methodologies.
• Experience integrating quantitative risk management best practices into business activities.
• Experience with one or more of the security Tools, such as, Directory Services, Authentication Services, Logging & Monitoring, vulnerability scanning tools or other security tools
• Experience with one or more of the general technologies, such as, Networking technologies, databases, middleware, cloud, or operating systems.
• Experience with implementing sustainable process improvement leveraging security tools.
• ITIL Certification with experience in Six Sigma process improvement related experience for cybersecurity management and/or IT service management.
• Release management process, system development life cycle (waterfall & agile) experience.
• Experience for designing and implementing control, assurance and data quality metrics.
• Experience in a service and data, information based on Enterprise Data Modeling Council standards.
• Data architecture, modeling and integration experience.

If Verizon and this role sound like a fit for you, we encourage you to apply even if you don’t meet every “even better” qualification listed above.

22CyberRISK

Equal Employment Opportunity

We're proud to be an equal opportunity employer - and celebrate our employees' differences, including race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, and Veteran status. At Verizon, we know that diversity makes us stronger. We are committed to a collaborative, inclusive environment that encourages authenticity and fosters a sense of belonging. We strive for everyone to feel valued, connected, and empowered to reach their potential and contribute their best. Check out our diversity and inclusion page to learn more.