Manager of Audit Security Risk Management

When you join Verizon

Verizon is one of the world’s leading providers of technology and communications services, transforming the way we connect across the globe. We’re a diverse network of people driven by our shared ambition to shape a better future. Here, we have the ability to learn and grow at the speed of technology, and the space to create within every role. Together, we are moving the world forward – and you can too. Dream it. Build it. Do it here.

What you’ll be doing...

Driving continuous improvement is what we are all about, and you will support our efforts by providing objective evaluations of our security processes. You’ll gain exposure to the diverse aspects of our business through conversations with leaders responsible for our technology controls, processes, and systems. The work you perform is critical to reducing risk and providing solutions that protect our company, our employees and our shareholders.

As a Technology Audit Security Risk Manager on the Verizon Compliance as a Competency team, you will lead and execute complex technical audits over systems and infrastructure supporting Federal customers. You are responsible for developing a repeatable methodology for planning, supervising and completing comprehensive and complex audits. . You will play a critical role in executing and managing projects, coaching staff, conducting training, assisting daily assignments, overseeing and incorporating industry expertise and knowledge into internal control frameworks, improving testing methodology, ensuring consistency in evidence standards, developing tools and testing environments, and promoting cybersecurity and software engineering skills within the team.

• Cultivates relationships with key executive leaders.
• Performs complex analysis across our public sector systems, products and boundaries to ensure compliance to maintain and/or obtain an Authority to Operate.
• Manages milestones for ongoing projects and proactively communicates delays.
• Verifies that observations are appropriately vetted at the right level and performs a preliminary review of action plans to validate that they address the risk and will be completed within a reasonable timeframe.
• Supports a highly-matrixed stakeholder group for and works collaboratively to manage s risks.
• Executes testing of complex cybersecurity, IT controls, and emerging technologies, with a focus on encryption, privacy, and cloud security.
• Develops and maintains internal tools to support the development of testing methodologies.
• Identifies and communicates significant scope changes, milestone delays, performance issues, and/or opportunities to gain efficiencies.

In this role, you'll have a defined work location that includes work from home and assigned office days set by your manager.

What we’re looking for...

You’ll need to have:

• Bachelor’s degree or four or more years of work experience.
• Six or more years of relevant work experience.
• Five or more years of relevant audit or information systems experience.
• Knowledge and experience in project management.
• Professional Certification such as CISA, CISSP, OSCP, AWS Solutions Architect or other relevant certification.
• Ability to obtain and maintain Public Trust.
• Willingness to travel.

Even better if you have one or more of the following:

• Bachelor's or Master’s degree in Business Information Technology, Computer Science, Information Systems, Cybersecurity or related field.
• Experience with any of the following cloud products: OCI, GCP, AWS, Azure, SFDC.
• Experience with FISMA, FedRAMP, CMMC, and / or other Public Sector cyber security frameworks.
• Experience with Java, Python, JS, Jenkins, Jira, GitLab, Fortify, Artifactory, or equivalent.
• Experience developing and executing technology-based audits and IT and application control assessments during complex business process reviews.
• Experience as a software engineer developing and securing enterprise applications using modern tools and methodologies
• Experience with a wide range of computer hardware and software.
• Knowledge of different businesses to be able to evaluate and assess the significance of problems identified during the course of an audit.
• Experience developing action plans and communicating concise recommendations to management.
• Experience performing information security assessments.
• Management skills including direct supervision and development of subordinates.
• Ability to identify and categorize risks associated with new technology, learn technology functions being audited and evaluate the effectiveness of controls.

Equal Employment Opportunity

We're proud to be an equal opportunity employer - and celebrate our employees' differences, including race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, and Veteran status. At Verizon, we know that diversity makes us stronger. We are committed to a collaborative, inclusive environment that encourages authenticity and fosters a sense of belonging. We strive for everyone to feel valued, connected, and empowered to reach their potential and contribute their best. Check out our diversity and inclusion page to learn more.

COVID-19 Vaccination Requirement

Verizon requires new hires to be fully vaccinated against COVID-19. Verizon provides reasonable accommodations consistent with legal requirements (e.g., for medical, religious, or state law recognized reasons).