Senior Security Engineer

When you join Verizon

Verizon is one of the world’s leading providers of technology and communications services, transforming the way we connect across the globe. We’re a diverse network of people driven by our shared ambition to shape a better future. Here, we have the ability to learn and grow at the speed of technology, and the space to create within every role. Together, we are moving the world forward – and you can too. Dream it. Build it. Do it here.

What you’ll be doing...

SAST Security Engineer IV is a senior position under the Global Technology Solutions portfolio. You will be working with skilled members of SAST (Static Application Security Testing) and OSS (Open-Source Security) teams for secure code testing. You will be required to work with application teams in achieving secure code compliance for production releases across the Verizon Enterprise.

Required or relevant experience and knowledge includes:

• Securing code concepts, including ability to identify and mitigate secure code defects.
• Familiarity with cyber threats targeting large companies.
• Enhancing process driving secure code mitigation efforts.
• Investigating and evaluating security tools and tooling to enhance SAST process.
• Writing technical articles for knowledge sharing.
• Presenting to management.

Where you’ll be working…

In this hybrid role, you'll have a defined work location that includes work from home and assigned office days set by your manager.

What we’re looking for...

You'll need to have:

• Bachelor’s degree or four or more years of work experience.
• Four or more years of relevant work experience.

Even better if you have one or more of the following:

• Experience in two of more of the following languages: C/C++, Java, Scala, Ruby, Python, COBOL, Groovy, Go, HTML.
• Experience in deploy and build environments, including CI/CD.
• Experience in S-SDLC.
• Excellent written and oral communication skills.
• A Computer Science, Information & Cyber Security or Information Systems degree.
• Cyber Security Certifications.
• Four years of experience in cybersecurity, preferably supporting code development.
• Application Programming experience.
• Ability to work well in a team environment.
• Ability to work across all IT organizations and understand the Cyber Security roles each org is responsible for.
• Experience in Multi-tasking of projects required.
• Knowledge of security criticality of vulnerabilities.
• Knowledge of OWASP Top 10 vulnerabilities.
• Experience in using Application Security solutions such as OSS (i.e. Black Duck, White Source) & SAST (i.e. Fortify, Checkmarx).
• Ability to communicate clearly, spoken and written, with the ability to explain security incidents to IT and non-IT personnel, including layers of ownership; developer, mid-level management, and executive management.
• Ability to comply with corporate, industry and government regulations and requirements such as CPNI, SPI, PCI, SOX.

If Verizon and this role sound like a fit for you, we encourage you to apply even if you don’t meet every “even better” qualification listed above.

22CyberAPP

Equal Employment Opportunity

We're proud to be an equal opportunity employer - and celebrate our employees' differences, including race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, and Veteran status. At Verizon, we know that diversity makes us stronger. We are committed to a collaborative, inclusive environment that encourages authenticity and fosters a sense of belonging. We strive for everyone to feel valued, connected, and empowered to reach their potential and contribute their best. Check out our diversity and inclusion page to learn more.