Verizon is a leading provider of technology, communications, information and entertainment products, transforming the way we connect across the globe. We’re a diverse network of people driven by our ambition and united in our shared purpose to shape a better future. Here, we have the ability to learn and grow at the speed of technology, and the space to create within every role. Together, we are moving the world forward – and you can too. Dream it. Build it. Do it here.
What you’ll be doing...
Verizon Consumer Group is hiring a Software Security Analyst Developer to analyze and implement a common framework to remedy the vulnerabilities detected during Static application security testing (SAST), Dynamic application security testing (DAST) and Penetration Testing across multiple IT applications. You will have in-depth experience across the Security and Compliance domain and the ability to apply this knowledge to drive Secure Solutions and best practices for Secure Software Development across the Verizon Consumer Group. As a senior individual contributor, you will be responsible for review of application designs for security vulnerabilities and provide corrections as required. As a member of the Application Security team you will work in a fast-paced environment focused on planning and managing security risk for critical applications.
Work with application teams and provide solutions to address security vulnerabilities identified by various tools.
Review and provide guidelines on adopting Open Source libraries if security vulnerabilities get addressed on a timely manner.
Keep abreast of the newer vulnerabilities and attacks.
Being current and familiar with various security tools to identify and remediate vulnerabilities.
Conduct frequent webinars with developments teams, educating them on recent attacks and methods to prevent these.
Educate the application teams on following the best practices in the industry for implementing secure solutions.
Communicate progress, findings, and ensure successful resolution of issues.
Build relationships with program leads, developer, operations and CISO teams to understand how to develop plans that effectively manage security risks.
What we’re looking for...
You’ll need to have:
Bachelor’s degree or four or more years of work experience.
Six or more years of relevant work experience.
Even better if you’ve have:
Five or more years of hands-on in reviewing and providing security reviews for applications developed using the leading programming languages - C++, Java, Python, etc.
Three or more years of experience with OWASP, SANS, NIST frameworks.
Three or more years of hands-on experience with vulnerability scanning toolkits like Fortify, Tenable, Shiftleft Ocular, Veracode, Avocado, Threat Monitoring, Prevorty, Blackduck.
Two or more years of hands-on experience analyzing high volumes of logs, and other attack artifacts in support of incident investigations.
In depth knowledge on Application and Cloud Security industry standards, trends, threats, vulnerabilities, and technology frameworks.
Agile software development experience.
Ability to clearly communicate technical concepts to audiences at various skill levels of an IT organization.
Self-directed ability to drive change & manage multiple projects.
Contributions to the security community such as Whitehat groups, bug-bounty recognitions and open-source projects.
Equal Employment Opportunity
We're proud to be an equal opportunity employer - and celebrate our employees' differences, including race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, and Veteran status. At Verizon, we know that diversity makes us stronger. We are committed to a collaborative, inclusive environment that encourages authenticity and fosters a sense of belonging. We strive for everyone to feel valued, connected, and empowered to reach their potential and contribute their best. Check out our diversity and inclusion page to learn more.