Senior Network Security Engineer, MFA

When you join Verizon

You want more out of a career. A place to share your ideas freely — even if they’re daring or different. Where the true you can learn, grow, and thrive. At Verizon, we power and empower how people live, work and play by connecting them to what brings them joy. We do what we love — driving innovation, creativity, and impact in the world. Our V Team is a community of people who anticipate, lead, and believe that listening is where learning begins. In crisis and in celebration, we come together — lifting our communities and building trust in how we show up, everywhere & always. Want in? Join the #VTeamLife.

What you’ll be doing…

The GN&T Network Security team has an opening for Engineer IV’s in the Network Access team.  This role will center around delivery and operations of the Multi Factor Authentication (MFA) services. This position is part of the FIDO/MFA team. This team is responsible for operationalizing a Global Network & Technology (GN&T) wide strategy to facilitate the use of FIDO/MFA services. This team is responsible for the entire life cycle of MFA solutions from developing Architecture to Operational support of the MFA services.

MFA is provided as a service(s) to other network teams, providing them centralized mechanisms to help implement MFA and adhere to the Network Security Fundamentals (Access Management, Situational Awareness, Configuration Hardening, Vulnerability Mitigation) at scale.  A successful candidate will possess both strong inter-personal and technical skills. They will be expected to work within and across team barriers to take these functions from concepts to design and ultimately to production implementation.

Key Responsibilities:

• Assist in interpreting business and functional requirements by collaborating with senior engineers to support technical implementation.

• Support subject matter experts by documenting processes and contributing to knowledge-sharing activities within the team.

• Follow established procedures and contribute to team coordination by understanding roles and responsibilities across support and engineering functions.

• Participate in the implementation and testing of high-availability and redundant network systems under the guidance of senior engineers.

• Install, configure, and perform basic Identity services components as part of MFA services.

• Develop automation tools necessary for MFA services.

• Implementation of Identity lifecycle automated provisioning workflows to ensure secure, and timely access.

• Work with cloud based tools in the deployment of the services in cloud infrastructure.

• Utilize configuration management tools like Ansible for the delivery and support of MFA services.

• Enforce zero-trust principles to adhere to security standards and processes. 

• Provide first-line operational support, including monitoring alerts, escalating issues, and assisting in 24x7 support efforts as scheduled.

What we’re looking for...

You’ll need to have:

• Bachelor’s degree or four or more years of work experience.

• Four or more years of relevant experience required, demonstrated through work experience and/or military experience

• IAM Expertise – Deep knowledge and understanding of Identity protocols like LDAP, SAML, FIDO, OAuth, and OpenID Connect. Working experience with products like DUO, Okta.

• Automation & Scripting – Proficiency in developing automation tools using languages like python, powershell, etc.

• Directory Services – Practical experience of LDAP directory server implementations.

• Cloud & Containers – Good understanding of containers and cloud based services.

• Operations  – Experience with application delivery, support, incident management, log management, and problem management areas.

• Education – Bachelor’s degree ( in engineering, computer science or related discipline) or four or more years of work experience.

• Four or more years of relevant experience required, demonstrated through one of or a combination of work and/or military experience, or specialized training.

• Familiarity with Identity and Access Management solutions.

• Knowledge of Splunk. Ability to write splunk search language models, data models, and lookups for thread hunting.

• Experience in developing, testing, and maintaining automation playbooks using python/API integrations and 

• Strong knowledge of incident response lifecycles.

• Experience building relationships across business units.

Even better if you have one or more of the following:

• Strong networking and cybersecurity knowledge and experience.

• Knowledge of Jumphost servers and their operational use

• Knowledge of applications like Hashicrop vault to store credentials and secrets.

• Experience in developing Splunk SOAR to automate triage and response actions.

• Hands on experience in managing Identities in containers and cloud native services.

• Directory Services optimization to support millions of identity attributes and high frequency authentication requests.

• Expert knowledge of LDAP, SAML, OAuth 2.0, and OIDC.

• Hands on experience with IAM in Kubernetes, ansible for automatic security patching for identity servers.

• Established track record in managing complex processes, driving results, and adapting to change.

• Demonstrated success leading organizations providing cybersecurity engineering.

• The ability to communicate effectively across all levels of the organization and educate peers and teams on security concepts and overall importance to the business.

• Recent experience with machine learning, statistical analysis, graph theory or artificial intelligence.

• Hands-on experience working with internet-scale data sets such as Netflow, BGP, DNS, and IDS logs.

• Knowledge of network-based, system-level, and application layer attacks and mitigation methods.

If Verizon and this role sound like a fit for you, we encourage you to apply even if you don’t meet every “even better” qualification listed above.

In this hybrid role, you'll have a defined work location that includes working from home and a minimum of three days per week in the office, which will be set by your manager. Employees are responsible for maintaining compliance with hybrid work policies.

Scheduled Weekly Hours

40

Equal Employment Opportunity

Verizon is an equal opportunity employer. We evaluate qualified applicants without regard to veteran status, disability or other legally protected characteristics.

Benefits and Compensation

Our benefits are designed to help you move forward in your career, and in areas of your life outside of Verizon. From health and wellness benefit options including: medical, dental, vision, short and long term disability, basic life insurance, supplemental life insurance, AD&D insurance, identity theft protection, pet insurance and group home & auto insurance. We also offer a matched 401(k) savings plan, up to 8 company paid holidays per year and up to 6 personal days per year, paid parental leave, adoption assistance and tuition assistance, plus other incentives, we’ve got you covered with our award-winning total rewards package. Depending on the role, employees have the opportunity to receive compensation in the form of premium pay such as overtime, shift differential, holiday pay, allowances, etc. Newly hired employees receive up to 15 days of vacation per year, which grows with additional service. For part-timers, your coverage will vary as you may be eligible for some of these benefits depending on your individual circumstances.

The salary will vary depending on your location and confirmed job-related skills and experience. This is an incentive based position with the potential to earn more. For part-time roles, your compensation will be adjusted to reflect your hours.The annual salary range for the location(s) listed on this job requisition based on a full-time schedule is: $101,000.00 - $194,000.00.