Senior Network Security Engineer, MFA

When you join Verizon

You want more out of a career. A place to share your ideas freely - even if they're daring or different. Where the true you can learn, grow, and thrive. At Verizon, we power and empower how people live, work and play by connecting them to what brings them joy. We do what we love - driving innovation, creativity, and impact in the world.

Our V Team is a community of people who anticipate, lead, and believe that listening is where learning begins. In crisis and in celebration, we come together - lifting our communities and building trust in how we show up, everywhere & always. Want in? Join the #VTeamLife.

The GN&T Network Security team has an opening for Engineer IV's in the Network Access team. This role will center around delivery and operations of the Multi Factor Authentication (MFA) services. This position is part of the FIDO/MFA team. This team is responsible for operationalizing a Global Network & Technology (GN&T) wide strategy to facilitate the use of FIDO/MFA services. This team is responsible for the entire life cycle of MFA solutions from developing Architecture to Operational support of the MFA services.

MFA is provided as a service(s) to other network teams, providing them centralized mechanisms to help implement MFA and adhere to the Network Security Fundamentals (Access Management, Situational Awareness, Configuration Hardening, Vulnerability Mitigation) at scale. A successful candidate will possess both strong inter-personal and technical skills. They will be expected to work within and across team barriers to take these functions from concepts to design and ultimately to production implementation.

Key Responsibilities:

• Assist in interpreting business and functional requirements by collaborating with senior engineers to support technical implementation.

• Support subject matter experts by documenting processes and contributing to knowledge-sharing activities within the team.

• Follow established procedures and contribute to team coordination by understanding roles and responsibilities across support and engineering functions.

• Participate in the implementation and testing of high-availability and redundant network systems under the guidance of senior engineers.

• Install, configure, and perform basic Identity services components as part of MFA services.

• Develop automation tools necessary for MFA services.

• Implementation of Identity lifecycle automated provisioning workflows to ensure secure, and timely access.

• Work with cloud based tools in the deployment of the services in cloud infrastructure.

• Utilize configuration management tools like Ansible for the delivery and support of MFA services.

• Enforce zero-trust principles to adhere to security standards and processes.

• Provide first-line operational support, including monitoring alerts, escalating issues, and assisting in 24x7 support efforts as scheduled.

You'll need to have:

• Bachelor's degree or four or more years of work experience.

• Four or more years of relevant experience required, demonstrated through work experience and/or military experience

• IAM Expertise - Deep knowledge and understanding of Identity protocols like LDAP, SAML, FIDO, OAuth, and OpenID Connect. Working experience with products like DUO, Okta.

• Automation & Scripting - Proficiency in developing automation tools using languages like python, powershell, etc.

• Directory Services - Practical experience of LDAP directory server implementations.

• Cloud & Containers - Good understanding of containers and cloud based services.

• Operations - Experience with application delivery, support, incident management, log management, and problem management areas.

• Education - Bachelor's degree ( in engineering, computer science or related discipline) or four or more years of work experience.

• Four or more years of relevant experience required, demonstrated through one of or a combination of work and/or military experience, or specialized training.

• Familiarity with Identity and Access Management solutions.

• Knowledge of Splunk. Ability to write splunk search language models, data models, and lookups for thread hunting.

• Experience in developing, testing, and maintaining automation playbooks using python/API integrations and

• Strong knowledge of incident response life cycles.

• Experience building relationships across business units.

Even better if you have one or more of the following:

• Strong networking and cybersecurity knowledge and experience.

• Knowledge of Jumphost servers and their operational use

• Knowledge of applications like Hashicrop vault to store credentials and secrets.

• Experience in developing Splunk SOAR to automate triage and response actions.

• Hands on experience in managing Identities in containers and cloud native services.

• Directory Services optimization to support millions of identity attributes and high frequency authentication requests.

• Expert knowledge of LDAP, SAML, OAuth 2.0, and OIDC.

• Hands on experience with IAM in Kubernetes, ansible for automatic…