Principal-Security Risk Management

When you join Verizon

Verizon is one of the world's leading providers of technology and communications services, transforming the way we connect around the world. We're a human network that reaches across the globe and works behind the scenes. We anticipate, lead, and believe that listening is where learning begins. In crisis and in celebration, we come together-lifting up our communities and striving to make an impact to move the world forward. If you're fueled by purpose, and powered by persistence, explore a career with us. Here, you'll discover the rigor it takes to make a difference and the fulfillment that comes with living the #NetworkLife.

What you'll be doing...

• Leading the overall GRC Strategy and roadmap for the Compliance Center of Excellence.

• Maturing the governance structure and lead creation of the compliance roadmap

• Defining the requirements for implementation within ServiceNow GRC and underlying modules and ensure configurations are in synchronization with processes including categorizations, controls, risks tolerances and SLAs:

  • Policy and Compliance Module

  • Risk Management module configurations

  • Audit Management module in configurations

  • Vendor Risk management module configuration

  • GRC PA module for reports and KPIs

• Serving as a technical subject matter expert on cybersecurity and systems security matters, including interpreting and implementing security policies

• Overseeing the planning, execution and testing of GRC deployment

• Identifying improvements to environments and assessing industry standard and best practices to drive new or enhanced processes to meet or exceed the necessary compliance posture

• Monitoring changes to applicable governing bodies and security standards such as FedRAMP, StateRAMP, NIST sp. 800-53, NIST sp.800-37 and lead in implementing processes improvements and tooling configuration changes to maintain compliance

• Advising and coaching teams on resolving compliance related issues and helping deliver products and solutions on a CCoE Multi-Cloud Hybrid Platform to meet all accreditations.

• Aligning and automating risk management practices and strategy with the NIST Risk Management Framework

• Working closely with the CISO, Platform Infrastructure & Tooling Team, and the BU to ensure the capabilities are being met and implemented within systems such as ServiceNow.

• Participate in self-assessment activities using the appropriate compliance framework and develop recommendations for remediating findings.

• Leading creation of the risk assessment framework to prioritize self-assessment activities, gap analysis, continuous monitoring, and early identification and management of threats.

• Participating in Governance Councils

• Applying managed risks as input to assist in developing informed business strategies and risk-based decisions that maintains product solution compliance with accrediting bodies and requirements

• Reviewing requirements or revisions to requirements in response to changes to standards

What we're looking for...

You'll need to have:

• Bachelor's degree or four or more years of work experience.

• Six or more years of relevant work experience.

• Possess or the ability to obtain Public Trust and Secret level clearance .

Even better if you have one or more of the following:

• Excellent writing and presentation skills

• Excellent verbal skills with the ability to conduct face-to-face readouts with SVP levels and below

• ITSM and GRC Tools, such as ServiceNow

• Expertise in NIST RMF SP 800-37 Rev.2

• ITIL Standards

• Certified Risk and Information Systems Control (CRISC)

• Certified Information Security Manager (CISM)

• Certified Information Systems Security Professional (CISSP)

If Verizon and this role sound like a fit for you, we encourage you to apply even if you don't meet every "even better" qualification listed above.

In this hybrid role, you'll have a defined work location that includes work from home and assigned office days set by your manager.

Scheduled Weekly Hours

40

Equal Employment Opportunity

We're proud to be an equal opportunity employer - and celebrate our employees' differences, including race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, and Veteran status. At Verizon, we know that diversity makes us stronger. We are committed to a collaborative, inclusive environment that encourages authenticity and fosters a sense of belonging. We strive for everyone to feel valued, connected, and empowered to reach their potential and contribute their best. Check out page to learn more.