Principal Engineer Network Security

Overview

When you join Verizon, you want more out of a career. A place to share your ideas freely - even if they're daring or different. Where the true you can learn, grow, and thrive. At Verizon, we power and empower how people live, work and play by connecting them to what brings them joy. We do what we love - driving innovation, creativity, and impact in the world.

Our V Team is a community of people who anticipate, lead, and believe that listening is where learning begins. In crisis and in celebration, we come together - lifting our communities and building trust in how we show up, everywhere & always. Want in? Join the #VTeamLife.

The Global Network & Technology team seeks highly motivated Network Security Engineers to secure and harden Verizon's critical RAN Access networks.

This role requires candidates to translate high-level security frameworks into concrete configurations for devices like Cell Site Routers, eNBs, and out-of-band networks, focusing on security implementation beyond a standard firewall scope. The role requires deep expertise in network protocols, hands-on experience with Routers/switches, SIEM tools (especially SPLUNK and ISE), and a strong focus on automation, threat detection, incident response, and continuous security validation across the organization.

The Principal Engineer will specifically set strategic direction and define architectural patterns for long-term resilience. Lead the design, architecture, and implementation of cutting-edge network security solutions to address technology gaps.

• Act as the security subject matter expert in network design reviews, ensuring that all network assets meet stringent carrier-grade security standards and embed secure design patterns.
• Drive continuous improvement of network visibility and telemetry collection, conduct proactive threat hunting, and serve as escalation support for network security incidents.
• Execute root cause analysis for incidents, perform regular security control assessments, and lead strategic security solution implementation in a highly scalable environment.
• Develop essential technical documentation, including Playbooks, Confluence pages, Network diagrams, and Method of Procedures (MOPs).
• Drive security architecture, lead policy implementation, manage incident response, and integrate security principles early into the development lifecycle.
• Leverage tools or custom automation, eg:
  Python, Ansible playbooks to run automated audits against security benchmarks, ensuring zero configuration drift.
• Analyze network logs and configurations to identify vulnerabilities, recommend & build proactive mitigations.
• Develop comprehensive assessment reports and provide prioritized recommendations for remediations.
• Identifying opportunities to mentor, guide, and delegate technical documentation/tasks to support the team and broader organization.

In this hybrid role, you'll have a defined work location that includes work from home and assigned office days in one of the offices listed for this position. In order to be eligible to apply for this position, you must be within commuting distance of one of those locations.

You'll need to have:

• Bachelor's degree or four or more years of work experience.
• Six or more years of relevant experience required, demonstrated through one or a combination of work and/or military experience, or specialized training.
• Experience in securing RAN technologies (Diameter, GTP, eCPRI/CPRI) and a wide array of network devices, such as Cell Site Routers, eNBs, gNBs, FWA, In-Building solutions, and non-terrestrial networks. Knowledge of Internet protocols, Software-Defined Networking (SDN), OTNGN, and Hub & Spoke architectures is also required.
• Strong practical experience with Splunk/SIEM tools is necessary for data analysis, dashboard creation, alerting, automation, risk-based alerting, managing notable events, and defining/tuning correlation searches. Familiarity with Identity and Access Management (IAM) solutions is also beneficial.
• Demonstrated leadership skills are required, along with the ability to lead and manage cross-functional projects, build consensus, resolve conflict, negotiate, and possess strong analytical, communication, and programming skills, including 3-5 years of experience with Python.

• Certifications like : CCIE (Service Provider or Security) or Nokia NRS II/SRA or CISSP, CompTIA Security+, OSCP, CCNP, CCIE, or CCNA.
• Expertise in using Python, Ansible, or Terraform to automate network device configurations and operations.
• Competence in using Splunk or Elasticsearch for network data analysis, creating dashboards, setting up alerts, and handling large-scale internet data sources (Netflow, GGP, DNS, IDS logs).
• Knowledge of Firewalls, VPNs, IDS/IPS, DDoS mitigation, encryption technologies (IPsec, TLS), identifying vulnerabilities in RAN, and Security Information and Event Management (SIEM) tools like…