Skip to main content
Two Technologists Testing Software


Senior Principal Security Risk Management

  • Cary, North Carolina
  • Ashburn, Virginia

Job ID: R-1002920

When you join Verizon

Verizon is one of the world’s leading providers of technology and communications services, transforming the way we connect across the globe. We’re a diverse network of people driven by our shared ambition to shape a better future. Here, we have the ability to learn and grow at the speed of technology, and the space to create within every role. Together, we are moving the world forward – and you can too. Dream it. Build it. Do it here.

What you’ll be doing...

At Verizon, we don't wait for the future, we build it! Join the industry leader in Network and Telecommunications Services as we embark on transforming our nation's critical communications infrastructure and the FAA's National Airspace System (NAS) network. As a member of our FAA Enterprise Network Services (FENS) team, you will bring your passion, education and experience to this critical mission and interact directly with decision-makers and government staff who are tasked with ensuring the nation's air transportation system's underlying communications infrastructure is secure and always available. We are hiring skilled and energetic candidates to work alongside the best and brightest employees on a long-term career opportunity to design, build and operate the next generation NAS network supporting the busiest, most complex aerospace system in the world.

As the Information System Security Officer (ISSO), you will serve as the principal advisor on all matters involving the security posture of the environment. You will work with a team of security professionals to ensure that the people, processes, and technology that support the IT system are hardened against all types of security threats and risks. You will provide critical expertise in the development and implementation of industry-leading cyber defense mechanisms that will protect critical infrastructure against today’s evolving threat actors. You will be responsible for leading security and compliance efforts including the following:

  • Ensuring that all Federal Information Systems Security Act (FISMA), NIST 800-53 rev. 5, and FAA security requirements are identified, implemented, maintained, tested, and compliant.

  • Coordinating System Security and Privacy Plan (SSPP) and related artifact development.

  • Supporting Assessment and Authorization (A&A) activities in order to achieve an Authorization to Operate (ATO).

  • Leading the system’s continuous monitoring program and ensuring that all related activities are completed and validated.

  • Developing and participating in an effective incident response function to detect, analyze, contain, eradicate, and recover from security events and incidents.

  • Reviewing vulnerability information and providing expertise in mitigation efforts.

  • Managing the Plan of Action and Milestone (POA&M) and communicating status to stakeholders.

  • Performing security impact analyses and making security approval decisions on changes to the system and its environment.

What we’re looking for…

You’ll need to have:

  • Bachelor's degree or four or more years of work experience.

  • Six or more years of relevant work experience.

  • Experience in an Information Security, Information Risk Management, Cyber Governance, or GRC Compliance related position supporting a FISMA IT system.

  • Must be able to pass an extensive background investigation as a condition of employment.

Even better if you have one or more of the following:

  • A Master’s degree in Information Technology, Cybersecurity, Cybersecurity Public Policy, or Cybersecurity Engineering.

  • One or more of the following professional certifications preferred: Certified Information Systems Security Professional (CISSP), Certified Information Security Auditor (CISA), Certified Information Security Manager (CISM), Certified in Risk and Information Systems Controls (CRISC), or Certified in Governance, Risk and Compliance (CGRC).

  • Knowledge of all stages of the NIST Risk Management Framework.

  • Knowledge of NIST 800-53 Rev. 5 controls and how they are implemented.

  • Knowledge of data security fundamentals and best practices with prior responsibilities of protecting information assets.

  • Experience in producing security documentation and artifacts for a FISMA IT environment.

  • Ability to coordinate and lead productive working sessions with resources from multiple application and technology teams across the enterprise.

If Verizon and this role sound like a fit for you, we encourage you to apply even if you don’t meet every “even better” qualification listed above.

This role is eligible to be considered for the Department of Defense SkillBridge Program.

Where you’ll be working

In this hybrid role, you'll have a defined work location that includes work from home and assigned office days set by your manager.

Scheduled Weekly Hours


Equal Employment Opportunity 

We’re proud to be an equal opportunity employer - and celebrate our employees’ differences, including race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, and Veteran status. At Verizon, we know that diversity makes us stronger. We are committed to a collaborative, inclusive environment that encourages authenticity and fosters a sense of belonging. We strive for everyone to feel valued, connected, and empowered to reach their potential and contribute their best. Check out our diversity and inclusion page to learn more.

Group Of Verizon Employees Smiling

Stay in touch.

Even if you’re not a V Teamer (yet), we’d love to keep you in the loop. We can’t help it—connection is kind of our thing. So be sure to sign up to become part of our network.

Join our talent network