Principal Engineer Network Security

Verizon · Telecom · Ashburn, VA +8

Principal Engineer, Network Security at Verizon. This role focuses on securing and hardening Verizon's Telemetry networks. Responsibilities include designing and implementing network security solutions, acting as a security subject matter expert, driving continuous improvement in network visibility, conducting threat hunting, and leading incident response. The role also involves analyzing logs and configurations, developing detection logic, and leveraging automation tools like Python and Ansible for security audits. Requires expertise in network protocols, SIEM tools (Splunk), and security frameworks.

What you'd actually do

Lead the design, architecture, and implementation of cutting-edge network security solutions to address technology gaps.
Act as the security subject matter expert in network design reviews, ensuring that all network assets meet stringent carrier-grade security standards and embed secure design patterns.
Drive continuous improvement of network visibility and telemetry collection, conduct proactive threat hunting, and serve as escalation support for network security incidents.
Execute root cause analysis for incidents, perform regular security control assessments, and lead strategic security solution implementation in a highly scalable environment.
Design, develop, and refine high-fidelity detection logic to identify adversarial behavior across the network.

Skills

Required

Bachelor’s degree in Computer Science, Cybersecurity, or a related field or four or more years of work experience.
Six or more years of relevant experience required
Expert-level experience in securing/hardening networks in multi-vendor environments (Cisco IOS-XR/XE, Palo Alto, F5, Arista).
Proven ability to leverage TCP/IP internals, DNS security, and flow-based analysis (NetFlow/IPFIX) to baseline network behavior and intercept sophisticated lateral movement.
Strong practical experience with Splunk/SIEM tools is necessary for data analysis, dashboard creation, alerting, automation, risk-based alerting, managing notable events, and defining/tuning correlation searches.
Demonstrated leadership skills are required
ability to lead and manage cross-functional projects
build consensus
resolve conflict
negotiate
strong analytical, communication, and programming skills.

Nice to have

Possession of a CCIE (Service Provider or Security) or Nokia NRS II/SRA is required.
Additional certifications such as CISSP, CompTIA Security+, OSCP, CCNP, CCIE, or CCNA are beneficial.
Expertise in using Python, Ansible, or Terraform to automate network device configurations and operations.
Competence in using Splunk or Elasticsearch for network data analysis, creating dashboards, setting up alerts, and handling large-scale internet data sources (Netflow, BGP, DNS, IDS logs).
Knowledge of Firewalls, VPNs, IDS/IPS, DDoS mitigation, encryption technologies (IPsec, TLS), identifying vulnerabilities in RAN, and Security Information and Event Management (SIEM) tools like Splunk.
Familiarity with Network Function Virtualization (NFV), Identity and Access Management (IAM) solutions, the system development lifecycle, mitigating network/system/application layer attacks, and working with SQL/NoSQL databases and UNIX/Linux operating systems.
Strong organizational, project management, and written/verbal communication abilities
capacity to collaborate with various stakeholders
demonstrate leadership and mentoring skills.
Fluency in security frameworks, particularly the application of CIS Benchmarks (Le

What the JD emphasized

security implementation beyond a standard firewall scope
deep expertise in network protocols
hands-on experience with routers/switches
strong focus on automation
threat detection
incident response
continuous security validation
strategic direction
architectural patterns
stringent carrier-grade security standards
secure design patterns
network visibility
telemetry collection
proactive threat hunting
escalation support
root cause analysis
security control assessments
strategic security solution implementation
highly scalable environment
high-fidelity detection logic
adversarial behavior
technical documentation
Playbooks
Confluence pages
Network diagrams
Method of Procedures (MOPs)
security architecture
policy implementation
incident response
integrate security principles early into the development lifecycle
custom automation
Python
Ansible playbooks
automated audits
security benchmarks
zero configuration drift
lateral movement
exfiltration
persistence
MITRE ATT&CK framework
network logs
configurations
vulnerabilities
proactive mitigations
comprehensive assessment reports
prioritized recommendations
remediations
mentor
guide
delegate technical documentation/tasks
support the team
broader organization
Bachelor’s degree in Computer Science, Cybersecurity, or a related field or four or more years of work experience.
Six or more years of relevant experience required
demonstrated through one or a combination of work and/or military experience, or specialized training.
Expert-level experience in securing/hardening networks in multi-vendor environments (Cisco IOS-XR/XE, Palo Alto, F5, Arista).
Proven ability to leverage TCP/IP internals, DNS security, and flow-based analysis (NetFlow/IPFIX) to baseline network behavior and intercept sophisticated lateral movement.
Strong practical experience with Splunk/SIEM tools is necessary for data analysis, dashboard creation, alerting, automation, risk-based alerting, managing notable events, and defining/tuning correlation searches.
Familiarity with Identity and Access Management (IAM) solutions is also beneficial.
Demonstrated leadership skills are required
ability to lead and manage cross-functional projects
build consensus
resolve conflict
negotiate
strong analytical, communication, and programming skills.
CCIE (Service Provider or Security) or Nokia NRS II/SRA is required.
Additional certifications such as CISSP, CompTIA Security+, OSCP, CCNP, CCIE, or CCNA are beneficial.
Expertise in using Python, Ansible, or Terraform to automate network device configurations and operations.
Competence in using Splunk or Elasticsearch for network data analysis, creating dashboards, setting up alerts, and handling large-scale internet data sources (Netflow, BGP, DNS, IDS logs).
Knowledge of Firewalls, VPNs, IDS/IPS, DDoS mitigation, encryption technologies (IPsec, TLS), identifying vulnerabilities in RAN, and Security Information and Event Management (SIEM) tools like Splunk.
Familiarity with Network Function Virtualization (NFV), Identity and Access Management (IAM) solutions, the system development lifecycle, mitigating network/system/application layer attacks, and working with SQL/NoSQL databases and UNIX/Linux operating systems.
Strong organizational, project management, and written/verbal communication abilities
capacity to collaborate with various stakeholders
demonstrate leadership and mentoring skills.
Fluency in security frameworks, particularly the application of CIS Benchmarks (Le

Read full job description

When you join Verizon

You want more out of a career. A place to share your ideas freely — even if they’re daring or different. Where the true you can learn, grow, and thrive. At Verizon, we power and empower how people live, work and play by connecting them to what brings them joy. We do what we love — driving innovation, creativity, and impact in the world. Our V Team is a community of people who anticipate, lead, and believe that listening is where learning begins. In crisis and in celebration, we come together — lifting our communities and building trust in how we show up, everywhere & always. Want in? Join the #VTeamLife.

What you’ll be doing...

The Global Network & Technology team seeks highly motivated Network Security Engineer to secure and harden Verizon's Telemetry networks.

This role requires candidates to translate high-level security frameworks into concrete configurations for telemetry devices, focusing on security implementation beyond a standard firewall scope. The role requires deep expertise in network protocols, hands-on experience with routers/switches, SIEM tools (especially SPLUNK and ISE), and a strong focus on automation, threat detection, incident response, and continuous security validation across the organization. The Principal Engineer will specifically set strategic direction and define architectural patterns for long-term resilience.

Lead the design, architecture, and implementation of cutting-edge network security solutions to address technology gaps.
Act as the security subject matter expert in network design reviews, ensuring that all network assets meet stringent carrier-grade security standards and embed secure design patterns.
Drive continuous improvement of network visibility and telemetry collection, conduct proactive threat hunting, and serve as escalation support for network security incidents.
Execute root cause analysis for incidents, perform regular security control assessments, and lead strategic security solution implementation in a highly scalable environment. Design, develop, and refine high-fidelity detection logic to identify adversarial behavior across the network.
Develop essential technical documentation, including Playbooks, Confluence pages, Network diagrams, and Method of Procedures (MOPs).
Drive security architecture, lead policy implementation, manage incident response, and integrate security principles early into the development lifecycle.
Leverage tools or custom automation, eg, Python, Ansible playbooks to run automated audits against security benchmarks, ensuring zero configuration drift.
Proactively search for signs of lateral movement, exfiltration, and persistence within the environment using the MITRE ATT&CK framework as a guide.
Analyze network logs and configurations to identify vulnerabilities, recommend & build proactive mitigations.
Develop comprehensive assessment reports and provide prioritized recommendations for remediations.
Identifying opportunities to mentor, guide, and delegate technical documentation/tasks to support the team and broader organization

Where you'll be working...

In this hybrid role, you'll have a defined work location that includes work from home and assigned office days in one of the offices listed for this position or other valid Verizon locations. In order to be eligible to apply for this position, you must be within commuting distance of one of those locations.

This role can be located in any US based Verizon hub location.

What we’re looking for...

You'll need to have:

Bachelor’s degree in Computer Science, Cybersecurity, or a related field or four or more years of work experience.
Six or more years of relevant experience required, demonstrated through one or a combination of work and/or military experience, or specialized training.
Expert-level experience in securing/hardening networks in multi-vendor environments (Cisco IOS-XR/XE, Palo Alto, F5, Arista). Proven ability to leverage TCP/IP internals, DNS security, and flow-based analysis (NetFlow/IPFIX) to baseline network behavior and intercept sophisticated lateral movement.
Strong practical experience with Splunk/SIEM tools is necessary for data analysis, dashboard creation, alerting, automation, risk-based alerting, managing notable events, and defining/tuning correlation searches. Familiarity with Identity and Access Management (IAM) solutions is also beneficial.
Demonstrated leadership skills are required, along with the ability to lead and manage cross-functional projects, build consensus, resolve conflict, negotiate, and possess strong analytical, communication, and programming skills.

Even better if you have one or more of the following:

Possession of a CCIE (Service Provider or Security) or Nokia NRS II/SRA is required. Additional certifications such as CISSP, CompTIA Security+, OSCP, CCNP, CCIE, or CCNA are beneficial.
Expertise in using Python, Ansible, or Terraform to automate network device configurations and operations.
Competence in using Splunk or Elasticsearch for network data analysis, creating dashboards, setting up alerts, and handling large-scale internet data sources (Netflow, BGP, DNS, IDS logs).
Knowledge of Firewalls, VPNs, IDS/IPS, DDoS mitigation, encryption technologies (IPsec, TLS), identifying vulnerabilities in RAN, and Security Information and Event Management (SIEM) tools like Splunk.
Familiarity with Network Function Virtualization (NFV), Identity and Access Management (IAM) solutions, the system development lifecycle, mitigating network/system/application layer attacks, and working with SQL/NoSQL databases and UNIX/Linux operating systems.
Strong organizational, project management, and written/verbal communication abilities, with the capacity to collaborate with various stakeholders and demonstrate leadership and mentoring skills.
Fluency in security frameworks, particularly the application of CIS Benchmarks (Level 1 & 2 hardening) and mitigating MITRE ATT&CK Tactics, Techniques, and Procedures (TTPs) on network devices, along with a solid understanding of network security fundamentals.

If Verizon and this role sound like a fit for you, we encourage you to apply even if you don’t meet every “even better” qualification listed above.

Where you’ll be working

In this hybrid role, you'll have a defined work location that includes working from home and a minimum of three days per week in the office, which will be set by your manager. Employees are responsible for maintaining compliance with hybrid work policies.

Scheduled Weekly Hours

Equal Employment Opportunity

Verizon is an equal opportunity employer. We evaluate qualified applicants without regard to veteran status, disability or other legally protected characteristics.

Benefits and Compensation

Our benefits are designed to help you move forward in your career, and in areas of your life outside of Verizon. From health and wellness benefit options including: medical, dental, vision, short and long term disability, basic life insurance, supplemental life insurance, AD&D insurance, identity theft protection, pet insurance and group home & auto insurance. We also offer a matched 401(k) savings plan, up to 8 company paid holidays per year and up to 6 personal days per year, paid parental leave, adoption assistance and tuition assistance, plus other incentives, we’ve got you covered with our award-winning total rewards package. Depending on the role, employees have the opportunity to receive compensation in the form of premium pay such as overtime, shift differential, holiday pay, allowances, etc. Newly hired employees receive up to 15 days of vacation per year, which grows with additional service. For part-timers, your coverage will vary as you may be eligible for some of these benefits depending on your individual circumstances.

The salary will vary depending on your location and confirmed job-related skills and experience. This is an incentive based position with the potential to earn more. For part-time roles, your compensation will be adjusted to reflect your hours.

The annual salary range for the location(s) listed on this job requisition based on a full-time schedule is: $120,500.00 - $231,000.00.

When you join Verizon

What you’ll be doing...

The Global Network & Technology team seeks highly motivated Network Security Engineer to secure and harden Verizon's Telemetry networks.

Lead the design, architecture, and implementation of cutting-edge network security solutions to address technology gaps.
Act as the security subject matter expert in network design reviews, ensuring that all network assets meet stringent carrier-grade security standards and embed secure design patterns.
Drive continuous improvement of network visibility and telemetry collection, conduct proactive threat hunting, and serve as escalation support for network security incidents.
Execute root cause analysis for incidents, perform regular security control assessments, and lead strategic security solution implementation in a highly scalable environment. Design, develop, and refine high-fidelity detection logic to identify adversarial behavior across the network.
Develop essential technical documentation, including Playbooks, Confluence pages, Network diagrams, and Method of Procedures (MOPs).
Drive security architecture, lead policy implementation, manage incident response, and integrate security principles early into the development lifecycle.
Leverage tools or custom automation, eg, Python, Ansible playbooks to run automated audits against security benchmarks, ensuring zero configuration drift.
Proactively search for signs of lateral movement, exfiltration, and persistence within the environment using the MITRE ATT&CK framework as a guide.
Analyze network logs and configurations to identify vulnerabilities, recommend & build proactive mitigations.
Develop comprehensive assessment reports and provide prioritized recommendations for remediations.
Identifying opportunities to mentor, guide, and delegate technical documentation/tasks to support the team and broader organization

Where you'll be working...

This role can be located in any US based Verizon hub location.

What we’re looking for...

You'll need to have:

Bachelor’s degree in Computer Science, Cybersecurity, or a related field or four or more years of work experience.
Six or more years of relevant experience required, demonstrated through one or a combination of work and/or military experience, or specialized training.
Expert-level experience in securing/hardening networks in multi-vendor environments (Cisco IOS-XR/XE, Palo Alto, F5, Arista). Proven ability to leverage TCP/IP internals, DNS security, and flow-based analysis (NetFlow/IPFIX) to baseline network behavior and intercept sophisticated lateral movement.
Strong practical experience with Splunk/SIEM tools is necessary for data analysis, dashboard creation, alerting, automation, risk-based alerting, managing notable events, and defining/tuning correlation searches. Familiarity with Identity and Access Management (IAM) solutions is also beneficial.
Demonstrated leadership skills are required, along with the ability to lead and manage cross-functional projects, build consensus, resolve conflict, negotiate, and possess strong analytical, communication, and programming skills.

Even better if you have one or more of the following:

Possession of a CCIE (Service Provider or Security) or Nokia NRS II/SRA is required. Additional certifications such as CISSP, CompTIA Security+, OSCP, CCNP, CCIE, or CCNA are beneficial.
Expertise in using Python, Ansible, or Terraform to automate network device configurations and operations.
Competence in using Splunk or Elasticsearch for network data analysis, creating dashboards, setting up alerts, and handling large-scale internet data sources (Netflow, BGP, DNS, IDS logs).
Knowledge of Firewalls, VPNs, IDS/IPS, DDoS mitigation, encryption technologies (IPsec, TLS), identifying vulnerabilities in RAN, and Security Information and Event Management (SIEM) tools like Splunk.
Familiarity with Network Function Virtualization (NFV), Identity and Access Management (IAM) solutions, the system development lifecycle, mitigating network/system/application layer attacks, and working with SQL/NoSQL databases and UNIX/Linux operating systems.
Strong organizational, project management, and written/verbal communication abilities, with the capacity to collaborate with various stakeholders and demonstrate leadership and mentoring skills.
Fluency in security frameworks, particularly the application of CIS Benchmarks (Level 1 & 2 hardening) and mitigating MITRE ATT&CK Tactics, Techniques, and Procedures (TTPs) on network devices, along with a solid understanding of network security fundamentals.

If Verizon and this role sound like a fit for you, we encourage you to apply even if you don’t meet every “even better” qualification listed above.

Where you’ll be working

Scheduled Weekly Hours

Equal Employment Opportunity

Verizon is an equal opportunity employer. We evaluate qualified applicants without regard to veteran status, disability or other legally protected characteristics.

Benefits and Compensation

The annual salary range for the location(s) listed on this job requisition based on a full-time schedule is: $120,500.00 - $231,000.00.

What you'd actually do

Skills

Required

Nice to have

What the JD emphasized

When you join Verizon

What you’ll be doing...

What we’re looking for...

Even better if you have one or more of the following:

Where you’ll be working

Scheduled Weekly Hours

Equal Employment Opportunity** **

Benefits and Compensation

When you join Verizon

What you’ll be doing...

What we’re looking for...

Even better if you have one or more of the following:

Where you’ll be working

Scheduled Weekly Hours

Equal Employment Opportunity** **

Benefits and Compensation

Equal Employment Opportunity

Equal Employment Opportunity