When you join Verizon

You want more out of a career. A place to share your ideas freely — even if they’re daring or different. Where the true you can learn, grow, and thrive. At Verizon, we power and empower how people live, work and play by connecting them to what brings them joy. We do what we love — driving innovation, creativity, and impact in the world. Our V Team is a community of people who anticipate, lead, and believe that listening is where learning begins. In crisis and in celebration, we come together — lifting our communities and building trust in how we show up, everywhere & always. Want in? Join the V Team Life.

What you’ll be doing...

The Threat Management Center (TMC) serves as the initial point of defense for Verizon's networks and information systems, safeguarding them against internal misconduct and cyber-attacks. The TMC Advanced Cyber Defense (TMC-ACD) team is tasked with responding to, investigating, hunting and managing all incidents. Collectively, the teams strive to protect Verizon's employees, customers, brand reputation, and revenue streams through proactive identification, response, and mitigation of potential threats that could adversely affect Verizon or its business partners.

The Digital Forensics & Incident Response Principal Role is a senior level position providing an opportunity to work in a fast paced collaborative environment defending Verizon from current and future cyber threats. This position plays a critical role in Verizon’s enterprise computing defense. Analysts are considered thought leaders, should be willing to mentor and advise others, and will drive operational and strategic growth of the organization.

Responsibilities include:

• Executing the Incident Response Lifecycle to drive threat remediation and identify strategic countermeasures improving future defenses.
• Serving as a primary point of contact during assigned on-call shifts, responding promptly to incidents, escalations, and critical alerts to minimize downtime and mitigate risks to the enterprise.
• Operating as a trusted advisor on advanced threat analysis during incidents for team and stakeholders by following cybersecurity response methodologies such as the NIST Cybersecurity Framework.
• Deploying security tools and leveraging logs in order to complete a detailed and accurate assessment of security alerts and threats affecting the Verizon enterprise and cloud infrastructure.
• Developing security controls for multiple platforms via automated capabilities by using advanced analysis and forensic techniques.
• Driving identification, analysis, and remediation activities to ensure compliance with relevant regulatory requirements, industry standards, and best practices related to security and data privacy.
• Providing assistance and analytical evaluations for high-priority and significant security incidents, including composing extensive and comprehensive analysis summaries and facilitating incident-related discussions.
• Conducting risk assessments, in-depth analysis, and forensic investigations to determine the root cause and impact of incidents.
• Identifying gaps in detections and collaborating with teams across Cyber Security to mitigate threats and improving the overall TMC security posture.
• Recommending ways to mature and advance the preventive and defensive capabilities of the TMC. This includes leveraging internal data, threat trends, and operational metrics to clearly communicate the use case for alert creation.
• Collaborating with cross-functional teams to design and implement governance guidelines, safeguarding sensitive data, and ensuring adherence to industry standards and regulatory requirements.
• Enhancing techniques, workflows and processes of security controls, compliance assessments, and incident response procedures to drive the TMC operational and strategic growth (continuous improvement).
• Architecting, enhancing, and/or implementing Forensic and Response playbooks to ensure cohesive response repeatability.
• Assisting with producing executive-level operational read-outs, metrics, and case reviews for management that accurately capture the effectiveness of TMC.
• Mentoring and coaching TMC analysts to build and maintain skills and techniques needed to produce quality and consistency analysis.

What we’re looking for...

Verizon is looking for an innovative and motivated professional who will be responsible for safeguarding the Verizon enterprise. This individual will take the initiative to identify and neutralize threats through proactive hunting and detection, improve incident response and mitigation strategies, and ensure continuous operation of Verizon’s on-prem and cloud environments.

You’ll need to have:

• Bachelor’s degree or six or more years of work experience.

• Six or more years of relevant work experience.

• Six or more years of experience working in Incident Response and/or Forensic environments.

Even better if you have one or more of the following:

• Fundamental understanding of cyber based adversarial frameworks including MITRE ATT&CK and Lockheed Martin’s Cyber Kill Chain.

• Proficient knowledge of the cyber threat landscape including types of adversaries, campaigns, and the motivations that drive them.

• Experience working with analysis techniques, identifying indicators of compromise, threat hunting, and identification of intrusions and potential incidents.

• Programming and Scripting Experience to enhance automations and speed-up response times.

• Previous experience with log aggregation platforms such as Splunk, Elastic, Snowflake, LogRhythm, etc.

• Proficient in understanding Operating Systems and their architectures: Windows, Unix/Linux, and MacOS Operating Systems

• Demonstrates leadership and mentoring skills to help advance the overall capabilities of the TMC organization.

• Strong communication, presentation, and leadership skills along with the ability to work in a highly collaborative environment

• Experience presenting to executive and senior leadership

• Exhibits initiative, follow-up and follow through with commitments

• Certifications like: Network+, Security+, CISSP, GCFA, GCFE, GCIH and/or cloud-specific security certifications (e.g. AWS Certified Security - Specialty, Microsoft Certified: Azure Security Engineer Associate, Google Cloud Certified Professional Cloud Security Engineer)

If Verizon and this role sound like a fit for you, we encourage you to apply even if you don’t meet every “even better” qualification listed above.

Where you’ll be working

In this hybrid role, you'll have a defined work location that includes work from home and a minimum eight assigned office days per month that will be set by your manager.

Scheduled Weekly Hours

40

Equal Employment Opportunity

We’re proud to be an equal opportunity employer - and celebrate our employees’ differences, including race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, and Veteran status. At Verizon, we know that diversity makes us stronger. We are committed to a collaborative, inclusive environment that encourages authenticity and fosters a sense of belonging. We strive for everyone to feel valued, connected, and empowered to reach their potential and contribute their best. Check out our diversity and inclusion page to learn more.

You want more out of a career. A place to share your ideas freely. We power and empower how people live, work and play by connecting them to what matters most. If that inspires you, start the next chapter of your career here.