Principal Engineer Network Security

We are looking for a Network Security Engineer to secure and harden Verizon’s telemetry networks and create long‑term resilience.

• Lead the design, architecture, and implementation of cutting‑edge network security solutions.
• Act as security subject matter expert in network design reviews, ensuring all network assets meet stringent carrier‑grade security standards.
• Drive continuous improvement of network visibility and telemetry collection, conduct proactive threat hunting, and serve as escalation support for network security incidents.
• Execute root cause analysis for incidents, perform regular security control assessments, and lead strategic security solution implementation in a scalable environment.
• Develop essential technical documentation including playbooks, Confluence pages, network diagrams, and methods of procedures.
• Drive security architecture, lead policy implementation, manage incident response, and integrate security principles early into the development lifecycle.
• Leverage tooling or custom automation (Python, Ansible) to run automated audits against security benchmarks and ensure zero configuration drift.
• Use MITRE ATT&CK framework to search for signs of lateral movement, exfiltration, and persistence.
• Analyze network logs and configurations to identify vulnerabilities; recommend and build proactive mitigations.
• Develop comprehensive assessment reports and provide prioritized remediation recommendations.
• Mentor, guide, and delegate technical documentation and tasks to support the team and broader organization.

• Bachelor’s degree in computer science, cybersecurity, or related field, or equivalent experience.
• Six or more years of relevant experience in securing/hardening networks.
• Expert‑level experience in multi‑vendor network environments (Cisco IOS‑XR/XE, Palo Alto, F5, Arista).
• Strong practical experience with Splunk/SIEM tools for data analysis, dashboard creation, alerting, and automation.
• Demonstrated leadership skills: leading and managing cross‑functional projects, building consensus, resolving conflict.
• Proficiency in programming (Python, Ansible, Terraform) and network protocols.
• Familiarity with IAM solutions, NFV, and secure design principles.

• CCIE (Service Provider or Security) or Nokia NRS II/SRA. Additional certifications (CISSP, CompTIA Security+, OSCP, CCNP, CCNA) are beneficial.
• Experience with Python, Ansible, or Terraform for automating device configuration.
• Expertise in using Splunk or Elasticsearch for large‑scale network data analysis.
• Knowledge of firewalls, VPNs, IDS/IPS, DDoS mitigation, encryption (IPsec, TLS), and SIEM tools.
• Experience with NFV, IAM solutions, and development lifecycle.
• Strong organizational, project management, and written/verbal communication skills.
• Proficiency with CIS Benchmarks and MITRE ATT&CK Tactics, Techniques, and Procedures.

This is a hybrid role. You will work from home and spend a minimum of three days per week in a Verizon office located at a nearby hub.

40 scheduled weekly hours.

Verizon is an equal opportunity employer. We evaluate qualified applicants without regard to veteran status, disability, or other legally protected characteristics.

Benefits include medical, dental, vision, short‑term and long‑term disability, life insurance, identity theft protection, pet insurance, group home & auto insurance, a matched 401(k) plan, 8 paid holidays per year, 6 personal days, paid parental leave, adoption assistance, tuition assistance, and other incentives. New hires receive up to 15 days of vacation per year, increasing with tenure.

Compensation is incentive‑based and may include premium pay. The annual salary range for this role is $ – $.