Verizon Product Security Engineer in San Jose, California

What you’ll be doing...

You will be responsible for the review and approval of security end-to-end architectures, systems, configurations, controls, policies, and processes to ensure that our products are best protected against sophisticated cyber security threats and meet all internal security policies and governance in order to protect our network and customers. You'll work directly with senior product security analysts, product development teams, vendors, industry partners, planning, engineering, and peer security teams to ensure that all development, systems, and applications contain and implement the best possible security using the most efficient and effective security attestation processes.

  • Review applicable policy standards for the practical application of cyber security requirements and ensure they are implemented consistently and correctly.

  • Interface externally with our partnering vendors on their security reviews of their products implemented in Verizon.

  • Ensure we are positioning and designing the security compliance of all our projects at the forefront of current development process.

  • Understand best security practices and bring that knowledge to the table during the stages of our projects.

  • Interpret and document the results of the product security reviews.

  • Design and develop new processes or methodologies to enhance security and streamline new or existing workflows, and work with the product teams on education of security best practices.

  • Participate in security requirement review meetings to analyze areas of security concerns, and function as lead for the project.

  • Partner with development teams to ensure the security requirements and specifications are addressed appropriately.

  • Help coordinate team participation in code reviews, development (CI/CD pipeline), code scans, penetration testing and production releases for verification, support and resolution of any anomalies related to security requirements.

  • With limited supervision, produce documented frameworks or architectures, which describe and are used to manage the implementation of these technical security environments.

  • Work with the appropriate development and tools teams to develop, create, and drive current and new data collection and reporting methods to ensure that the proper data is being captured and retained by these processes in compliance with corporate standards and in support of both internal and external audits.

What we’re looking for...

You'll need to have:

  • Bachelor's degree in computer science/engineering or four or more years of work experience.

  • Four or more years of relevant work experience.

  • Four or more years of experience in product development, and/or security in the software development lifecycle.

Even better if you have:

  • A degree.

  • Vulnerability management experience, monitoring and logging, and SIEM best practices knowledge.

  • Seven or more years of experience and background in security, telecommunications, development or engineering.

  • Strong knowledge of mobile application security standards and their implementation in compliance to corporate security policies.

  • BSIMM.

  • Knowledge of security best practices with experience protecting information assets.

  • Experience integrating security requirements with identity stores, relational databases, application servers and physical access management systems, encryption, network perimeter – defense in depth.

  • Experience with cloud security industry best practices and Amazon Web Services (AWS) security.

  • Experience working with API’s, SDK and APK’s.

  • Experience with Shell, Expect, Perl, Python and JavaScript.

  • Good knowledge of OSI Layer 7 Model, Network Architecture and Network Topology.

  • Experience as a project lead with documentation and organization skills and the ability to lead and complete tasks and projects.

  • Ability to multi-task, take direction, prioritize, and manage multiple activities / tasks to achieve objectives.

  • Good oral, written, and interpersonal skills.

  • Ability to present and communicate to both superiors and peers.

  • Experienced in communicating security risks in business terms that can be clearly understood at all levels of the organization.

When you join Verizon...

You’ll be doing work that matters alongside other talented people, transforming the way people, businesses and things connect with each other. Beyond powering America’s fastest and most reliable network, we’re leading the way in broadband, cloud and security solutions, Internet of Things and innovating in areas such as, video entertainment. Of course, we will offer you great pay and benefits, but we’re about more than that. Verizon is a place where you can craft your own path to greatness. Whether you think in code, words, pictures or numbers, find your future at Verizon.

Equal Employment Opportunity

We're proud to be an equal opportunity employer- and celebrate our employees' differences, regardless of race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, or Veteran status. Different makes us better.

REQNUMBER: 486666-1B