Verizon Risk Manager - Supplier Security Assurance in Temple Terrace, Florida

What you’ll be doing...

You will be an integral part of the Corporate Information Security Team focused on supplier security assurance programs and processes. You will be responsible for leading, coordinating, articulating and tracking actions related to the Supplier Risk Management process, ensuring effective cyber security supplier practices and mitigating supplier risk. You will engage with the business and various functions such as Finance, Legal, Regulatory, Compliance, Internal Audit, and Supply Chain to identify risks and implement risk mitigation plans to address potential cyber security issues and achieve overall business objectives.

You will drive supplier security assurance throughout the various phases of the supplier lifecycle, from onboarding, through fulfillment and to termination of the supplier relationship. You must be able to interact with many multifaceted supplier types, senior management and business sponsors concurrently to effectively apply the Supplier Information Security Framework.

  • Leading a cross-functional enterprise program to identify, characterize and lower supplier information security risk to Verizon.

  • Assimilating complex qualitative and quantitative sources of supplier key risk indicator information to formulate multilayered risk decisions.

  • Transposing intricate risk results into understandable terms for senior leadership and clearly socializing these risks to assist the business in making beneficial decisions for the Company.

  • Working with senior leadership, suppliers and supplier business sponsors to address escalated security concerns and gap remediation in a timely manner.

  • Effectively navigating the challenging environment and delicate relationships between suppliers and senior business leaders to ensure the Company and its customers are not negatively impacted.

  • Driving the Supplier Information Security Program to evaluate suppliers’ security practices in order to gauge security posture and readiness to securely manage the IT assets and data they are entrusted with.

  • Recommending and implementing process, formula and data normalization changes to the Supplier Information Security Program which enhance its ability to identify risk and also increase its efficiency in reducing the risks discovered.

  • Providing risk-based guidance to supplier business sponsors to garner their full understanding, support and acceptance of the risks involved in doing business with each supplier.

  • Leading the negotiation of supplier contracts with regard to security requirements and articulating risk to supplier business sponsors where suppliers are in disagreement with the terms.

  • Defining and delivering reports and metrics to demonstrate volume, value and trending of all supplier assurance activities.

What we’re looking for...

You'll need to have:

  • Bachelor's degree or four or more years of work experience.

  • Six or more years of relevant work experience.

  • Technical related experience and business operations experience.

  • Experience in Information Security, Technology or Technical Risk Analysis.

Even better if you have:

  • Bachelor’s degree in Computer Science, Engineering, Information Security or related degree.

  • Four or more years of combined experience in IT, risk analysis, risk treatment and cyber security.

  • Certifications: CISSP, CISA, CISM, CRISC or willingness to obtain within 9 months of start date.

  • Demonstrated understanding of cyber security risk management concepts, cybersecurity frameworks, control standards (e.g. ISO 27001-2 and NIST 800-53), industry best practices with prior responsibilities of protecting information assets.

  • Experience creating and maintaining partnering relationships with business leaders at VP, SVP and C-levels with the capability to provide interaction and executive level communications.

  • Specific experience in managing information security functions, strategy and risk within a Fortune Top 50 company.

  • Demonstrated capability to understand and negotiate legal contractual language and effectively communicate with legal attorneys, business sponsors and sourcing teams.

  • Strong written, verbal and presentation communication skills and the ability to thrive in a dynamic environment handling multiple priorities.

  • Strong relationship skills and collaborative style to enable success across multiple partners.

  • Strong documentation, planning, negotiation, work prioritization and organizational skills.

#cybersecurityerp 22CyberRISK

When you join Verizon...

You’ll be doing work that matters alongside other talented people, transforming the way people, businesses and things connect with each other. Beyond powering America’s fastest and most reliable network, we’re leading the way in broadband, cloud and security solutions, Internet of Things and innovating in areas such as, video entertainment. Of course, we will offer you great pay and benefits, but we’re about more than that. Verizon is a place where you can craft your own path to greatness. Whether you think in code, words, pictures or numbers, find your future at Verizon.

Equal Employment Opportunity

We're proud to be an equal opportunity employer- and celebrate our employees' differences, regardless of race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, or Veteran status. Different makes us better.

REQNUMBER: 481374-1A