Junior Security Risk Analyst

When you join Verizon

Verizon is one of the world's leading providers of technology and communications services, transforming the way we connect across the globe. We're a diverse network of people driven by our shared ambition to shape a better future. Here, we have the ability to learn and grow at the speed of technology, and the space to create within every role. Together, we are moving the world forward - and you can too. Dream it. Build it. Do it here.

What you’ll be doing...

This position is with the Enterprise Vulnerability Management team. You will work on scanning solutions (operating and deploying), impact investigations for identified vulnerabilities and oversee the effectiveness of vulnerability remediation. It is critical that you apply a process-driven approach but equally important that you interact with multiple levels of leadership and build positive, collaborative working relationships. You will require a broad technical knowledge that will enable you to understand vulnerabilities, their exposure techniques and compensating controls across the full stack of technologies.

• Facilitating work efforts related to vulnerability scanning deployment and operations.
• Keeping abreast of current cyber security and technology news and trends.
• Overseeing multi-departmental investigations into vulnerability impact or remediation. Provide comprehensive analysis back to leadership.
• Reporting on operational KPIs.
• Compiling documentation of and conduct training on the program processes and procedures.
• Presenting to cross-functional stakeholders and senior leadership to ensure the awareness of and ongoing success of the vulnerability reporting and management programs.
• Follow-up with owners to ensure remediation efforts are consistent with SLA/policy. Escalation for noncompliance.
• Identifying opportunities to enhance the asset inventory, or better enrich vulnerability data. Conduct ongoing research to help validate completeness or identify “gaps”.
• Evaluating of reported "bugs"/vulnerabilities to ensure appropriate triage.
• Working with and evolving the Security Operations toolsets and reporting to provide better vulnerability insight and create effective communications and reporting.

Where you’ll be working…
In this hybrid role, you will have a defined work location that includes work from home and assigned office days set by your manager.

What we’re looking for...

You'll need to have:

• Bachelor’s degree or one or more years of work experience.
• Experience in cyber-security and/or Security Operations.

Even better if you have one or more of the following:

• Experience working with a bug bounty program.
• Experience to the full stack of information technologies and associated security models - including server/OS, database, hardware, network devices, user compute, application/SDLC, cloud, etc.
• Knowledge of security fundamentals and common vulnerabilities.
• Experience in a vulnerability management program.
• Knowledge with common security frameworks (SOX, NIST, FISMA, etc.)

If Verizon and this role sound like a fit for you, we encourage you to apply even if you don’t meet every “even better” qualification listed above.
22CyberRISK

Equal Employment Opportunity

We're proud to be an equal opportunity employer - and celebrate our employees' differences, including race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, and Veteran status. At Verizon, we know that diversity makes us stronger. We are committed to a collaborative, inclusive environment that encourages authenticity and fosters a sense of belonging. We strive for everyone to feel valued, connected, and empowered to reach their potential and contribute their best. Check out our diversity and inclusion page to learn more.