Principal Security Risk Management

When you join Verizon

Submit your CV and any additional required information after you have read this description by clicking on the application button.

Verizon is one of the world’s leading providers of technology and communications services, transforming the way we connect around the world.

We’re a human network that reaches across the globe and works behind the scenes. We anticipate, lead, and believe that listening is where learning begins.

In crisis and in celebration, we come together lifting up our communities and striving to make an impact to move the world forward.

If you’re fueled by purpose, and powered by persistence, explore a career with us. Here, you’ll discover the rigor it takes to make a difference and the fulfillment that comes with living the #NetworkLife.

What you’ll be doing...

In this role, you will be responsible for leading activities related to a variety of compliance and regulatory requirements applicable to Verizon Consumer Group (VCG), including but not limited to Federal Regulatory Compliance and Obligations, CPNI and PII.

In your role, you will employ industry standards and best practices aligned with the Version policy governance framework, NIST 800-53 Control Framework and Federal Compliance to (i) design, (ii) assess, (iii) implement and (iv) continuously improve VCG’s adherence to Verizon’s policies and applicable state and Federal regulatory requirements.

Additionally, you will participate, lead and drive VCG’s related governance, risk and compliance activities to ensure VCG continues to meet and exceed customer requirements.

Design and implement processes, controls to address compliance with regulatory information security requirements across VCG with focus on Federal Mandates.

Monitor implementation of cross-functional and cross-departmental action plans within defined and agreed matrix of accountability and responsibilities.

Act as a Subject Matter Expert on federal mandated program, information security processes, controls, compliance manual and training program including third parties pertaining to federal mandated regulatory requirements and associated compliance obligations.

Evaluate effectiveness and accuracy of control evidence against specific and broader scope regulatory requirements.

Implement formally-defined oversight, escalation, investigation and resolution processes via appropriate governance structure.

Drive and lead discussions pertaining to the regulatory requirements, whereby the compliance objectives are shared with stakeholders, consensus on decisions is reached, and discussions occur surrounding risk impacts and mitigating activities.

Develop the necessary processes, dashboards and goals to track progress on VCG meeting its applicable regulatory, compliance obligations.

What we’re looking for...

You’ll need to have :

Bachelor’s degree or four or more years of work experience.

Four or more years of relevant work experience.

Knowledge of security risk management concepts, cybersecurity frameworks and security technologies.

Knowledge and experience in System and / or Security Engineering / Architecture.

Willingness to travel.

Even better if you have one or more of the following :

Bachelor’s degree in Computer Science, Information Technology, Risk Management or related area.

Six or more years of experience in operations, product management, compliance, audit and / or information security disciplines.

Possess (or the ability to obtain) one or more professional certifications (e.g., GIAC, ISACA (CISM CISA, CRISC), ISC (2) family of certifications (CISSP, CCSP, CCFP, CSSLP, HCISSP, SSCP), Cloud Security Alliance Certificate of Cloud Security Knowledge (CCSK).

Extensive experience across multiple domains including operational, reputational, and risk management with the ability to apply your knowledge and critical thinking skills.

Experience identifying and performing data classification with the intent to ensure appropriate control and authorization are present.

Experience in networking (TCP / IP and related concepts).

Knowledge of threats, risks, and vulnerabilities.

If Verizon and this role sound like a fit for you, we encourage you to apply even if you don’t meet every even better qualification listed above.

Where you’ll be working

In this hybrid role, you'll have a defined work location that includes work from home and a minimum eight assigned office days per month that will be set by your manager.

Scheduled Weekly Hours

Equal Employment Opportunity

We’re proud to be an equal opportunity employer - and celebrate our employees’ differences, including race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, and Veteran status.

At Verizon, we know that diversity makes us stronger. We are committed to a collaborative, inclusive environment that encourages authenticity and fosters a sense of belonging.

We strive for everyone to feel valued, connected, and empowered to reach their potential and contribute their best.

Our benefits are designed to help you move forward in your career, and in areas of your life outside of Verizon. From health and wellness benefits, short term incentives, 401(k) Savings Plan, stock incentive programs, paid time off, parental leave, adoption assistance and tuition assistance, plus other incentives, we’ve got you covered with our award-winning total rewards package.

If you are hired into a California, Colorado, Connecticut, Hawaii, Maryland, Nevada, New York, Rhode Island, Washington or Washington, D.

C. work location, the compensation range for this position is between $125,000.00 and $232,000.00 annually based on a full-time schedule.

The salary will vary depending on your location and confirmed job-related skills and experience. This is an incentive based position with the potential to earn more.

For part time roles, your compensation will be adjusted to reflect your hours.

J-18808-Ljbffr