Remediation Security Engineer

You want more out of a career. A place to share your ideas freely - even if they're daring or different. Where the true you can learn, grow, and thrive. At Verizon, we power and empower how people live, work and play by connecting them to what brings them joy. We do what we love - driving innovation, creativity, and impact in the world. Our V Team is a community of people who anticipate, lead, and believe that listening is where learning begins. In crisis and in celebration, we come together - lifting our communities and building trust in how we show up, everywhere & always. Want in? Join the #VTeamLife.

The GN&T Network Security team is looking for a highly motivated and experienced Network Engineer to join the Remediation Assurance team within the Network Security Adversary Emulation (NSAE) organization. While our adversary emulation teams focus on identifying vulnerabilities, this role serves as the strategic brain and policy engine that ensures we learn from every attack. You will lead the effort to move beyond "point-in-time" fixes by identifying the systemic root causes of security failures and codifying those lessons into security guardrails.

In this role, you will be the bridge between high-end investigative research and proactive security design. You will perform deep-dive Root Cause Analysis (RCA) on recurring vulnerability classes and conduct proactive threat research to identify assets across the network with Shared Technical Vulnerabilities. Your work will directly inform the Secure-by-Default blueprints and technical guidance used by defensive teams, ensuring that our security posture evolves as quickly as the threat landscape.

Core Responsibilities

• Drive Systemic Root Cause Analysis (RCA): Lead deep-dive investigations into recurring vulnerability classifications to identify systemic design flaws.

• Lead Investigative Threat Research & Pivoting: When a compromised asset is identified, perform technical correlation to determine if related infrastructure, subnets, or technically congruent stacks are also exposed. You will pivot from known indicators to identify secondary vulnerabilities across the network.

• Identify Shared Technical Vulnerabilities: Leverage external intelligence and internal data correlation to identify assets that mirror the technical configuration and exploitability of originally compromised targets, providing Defense teams with an expanded scope for remediation.

• Translate Offensive Intelligence: Partner with Red, Purple, and Pen Test teams to translate 100% of validated TTPs into actionable mitigation strategies mapped to the MITRE ATT&CK framework.

• Author Security Blueprints & Guardrails: Draft a suite of "Secure-by-Default" hardening guides and templates, using trend data to define high-end technical security standards.

• Advocate for Preventive Controls: Provide high-level technical guidance to inform the development of tactical playbooks and lower-level hardening guides, ensuring security is baked into the foundation of the network.

• Verification & Validation (V&V): Perform rigorous post-remediation testing to confirm that security fixes are implemented correctly and function as intended. You will "trust but verify" by using direct security testing to validate remediation claims.

Where you'll be working...

In this hybrid role, you'll have a defined work location that includes working from home and a minimum of three days per week in the office, which will be set by your manager. Employees are responsible for maintaining compliance with hybrid work policies.

What we're looking for...

You'll need to have:

• Bachelor's degree or four or more years of relevant work experience.

• Three or more years of experience in Security Intelligence, Technical Writing, or Root Cause Analysis.

• Experience with Verification & Validation (V&V) processes-specifically, the ability to test and confirm that a security control is performing its intended function.

• Strong understanding of the MITRE ATT&CK framework and the ability to map adversary behaviors to defensive controls.

• Proficiency in pivoting and asset correlation to identify Shared Technical Vulnerabilities across complex network environments.

• Experience documenting technical workflows and SOP frameworks for security operations.

Even better if you have one or more of the following:

• Security certifications such as GIAC Cyber Threat Intelligence, CISSP, CISA, or CompTIA Security+.

• Background in Offensive Security (Red/Purple Teaming) to better facilitate the translation of TTPs into defensive guidance.

• Experience with the MITRE ATT&CK framework to map remediation efforts to specific adversarial behaviors.

• Experience with Splunk or other SIEM tools to verify that remediation efforts are properly reflected in security telemetry.

• A "proactive mindset"-the ability to look past a single bug to find the broken process or architectural flaw that allowed it to exist.

• Strong technical writing skills focused on creating engineering blueprints and clear system standards.

Verizon is an equal opportunity employer. We evaluate qualified applicants without regard to veteran status, disability or other legally protected characteristics.

Our benefits are designed to help you move forward in your career, and in areas of your life outside of Verizon. From health and wellness benefit options including: medical, dental, vision, short and long term disability, basic life insurance, supplemental life insurance, AD&D insurance, identity theft protection, pet insurance and group home & auto insurance. We also offer a matched 401(k) savings plan, up to 8 company paid holidays per year and up to 6 personal days per year, paid parental leave, adoption assistance and tuition assistance, plus other incentives, we've got you covered with our award-winning total rewards package. Depending on the role, employees have the opportunity to receive compensation in the form of premium pay such as overtime, shift differential, holiday pay, allowances, etc. Newly hired employees receive up to 15 days of vacation per year, which grows with additional service. For part-timers, your coverage will vary as you may be eligible for some of these benefits depending on your individual circumstances.