Verizon is one of the world’s leading providers of technology and communications services, transforming the way we connect across the globe. We’re a diverse network of people driven by our shared ambition to shape a better future. Here, we have the ability to learn and grow at the speed of technology, and the space to create within every role. Together, we are moving the world forward – and you can too. Dream it. Build it. Do it here.
What you’ll be doing...
At Verizon we believe technology should help you achieve more. And we help businesses do exactly that almost daily — co-creating innovative connected products, rapidly and securely deploying apps in the cloud, managing employee-owned devices on a global scale, and deflecting sophisticated hacker attacks. In support of our world leading position in Cyber Security, we have recently launched a new service, the Computer Emergency Response Team (CERT).
Our newly offered service will include a designated CSIRT Consultant full time or as a shared resource, who will work as a contact and communications point between our security services team and customers’ security and IT staff as well as users and other important partners. You will also be responsible for operating the incident management process in accordance with the procedures designed in cooperation with customers.
On a day to day basis, you will assist with, identify and respond to incidents as well as proactively propose improvements for how to reduce risk and potential future incidents.
Receiving and monitoring incident information from our managed security services and other sources.
Reviewing the collected incident data and confirming or rejecting incidents based on the analysis.
Classifying and prioritizing incidents based on established criteria.
Facilitating communication between stakeholders of the incident status.
Coordinating the containment effort based on the available information and established processes.
Performing vulnerability management using the Qualys tool.
Making containment decisions and facilitating decision making by other parties using established escalation processes.
Communicating with affected users and partners to organize the containment effort.
Verifying the effectiveness of containment actions taken.
Identifying the attack vector used by incident and taking actions to confirm that similar incidents are prevented in the future.
Validating the effectiveness of the eradication actions.
Coordinating forensics and law enforcement activities with officials as necessary.
Analyzing the incident response effort, with feedback from the customer and third parties.
Conducting proactive management of the Monitoring and Analytics solution.
This hybrid role will have a defined work location that includes work from home and assigned office days as set by the manager.
What we’re looking for...
You'll need to have:
Bachelor's degree or four or more years of work experience.
Four or more years of relevant work experience.
Knowledge of Network and Web Application vulnerability assessments.
Even better if you have one or more of the following:
Four or more years of work experience in Security incident detection or Security incident management.
Demonstrated strong communication skills and the capability to engage with customers at both technical and executive levels.
Strong problem-solving and security analytics skills and the ability to identify gaps in processes and recommend improvements for mitigation.
Four or more years of experience in security operations, risk management, operational management, and/or consultant management.
Experience structuring and operating an efficient Incident Response process.
Knowledge of common types of malware, their infection vectors, how to identify them using network and host based tools, and how to eradicate them and verify the success of eradication efforts.
Knowledge of current security threats and vulnerabilities and how to detect and mitigate them, and the ability to understand their possible consequences on the customer’s environment.
Understanding of modern technologies used to detect malware and vulnerabilities and protect assets.
SIEM (SPLUNK) and log analytics skills.
SANS or other Security certifications, such as GCIA, GCIH, GREM, GPEN, CEH.
CISSP certification and/or CISM certification.
ITIL Foundations training/certification.
Knowledge of ISO 27001 requirements.
Verizon is committed to maintaining a Total Rewards package which is competitive, valued by our employees, and differentiates us as an Employer of Choice.
We are a ‘pay for performance’ company and your contribution is rewarded through competitive salaries, performance-based incentives and an employee Stock Program. We create an opportunity for us all to share in the success of Verizon and the value we help to create through this broad-based discretionary equity award program.
Your benefits are market competitive and delivered by some of the best providers.
You are provided with a full spectrum of health and wellbeing resources, including a first in-class Employee Assistance Program, to empower you to make positive health decisions.
We offer generous paid time off benefits to help you manage your work life balance and opportunities for flexible working arrangements*.
Verizon provides training and development for all levels, to help you enhance your skills and develop your career, from funding towards education assistance, award-winning training, online development tools and access to industry research.
You will be able to take part in volunteering opportunities as part of our environmental, community and sustainability commitment.
Your benefits package will vary depending on the country in which you work.