Offensive Security Engineer

You want more out of a career. A place to share your ideas freely - even if they're daring or different. Where the true you can learn, grow, and thrive. At Verizon, we power and empower how people live, work and play by connecting them to what brings them joy. We do what we love - driving innovation, creativity, and impact in the world. Our V Team is a community of people who anticipate, lead, and believe that listening is where learning begins. In crisis and in celebration, we come together - lifting our communities and building trust in how we show up, everywhere & always. Want in? Join the #VTeamLife.

As an Offensive Security Engineer in the telecommunications industry, you will play a critical role in proactively identifying vulnerabilities and security gaps within Verizon's infrastructure and applications. This role focuses on emulating real-world adversarial techniques to evaluate and improve Verizon's defensive capabilities, ensuring the security of customer data and network infrastructure.

As part of our innovative offensive security team, you will drive the development of advanced security tools by leveraging Large Language Models (LLMs) to enhance red team operations. This includes designing and building Ai-powered tools to automate vulnerability discovery, simulate sophisticated attack scenarios, and improve penetration testing efficiency. You will conduct cutting-edge red team research to identify emerging threats, develop novel attack techniques, and integrate these insights into LLM-driven solutions, ensuring Verizon security capabilities remain at the forefront of the industry.

You will collaborate closely with internal teams to scope and execute offensive engagements. As an Eng III Engineer, you will work under the direction of project leads to plan and execute tests targeting applications, devices and platforms supporting the Verizon network.

Key Responsibilities:

• Implement and support stand-along Large Language Models (LLMs)

• Tool Development: Build or customize tools and scripts to build a consistent and efficient process for testing

• Automation Development: Develop security automation frameworks

• Develop security automation frameworks to reduce red team engagement times

• Supporting the organization's overall cybersecurity strategy, and addressing the unique challenges of securing large-scale telecommunications systems

• Adversary Emulation: Execute Penetration Test or Red Team projects that identify vulnerabilities in wireline/wireless network infrastructure and supporting applications

• Vulnerability Exploitation: Identify, exploit, and report vulnerabilities in critical telco systems and infrastructure

• Test Planning: Execute Penetration Tests or Red Team campaigns that provide comprehensive feedback on the security posture and risks of applications, devices and platforms deployed to the Verizon network

• Post-Engagement Reporting: Deliver comprehensive technical reports that outline findings, supporting artifacts, and remediation recommendations.

• Collaboration and mentorship: Work closely with stakeholders to scope projects appropriately and work within the team to share information

• Threat Intelligence: Stay updated on the latest attack techniques, tactics, and procedures (TTPs) relevant to the telecommunications industry

• Continuous Improvement: Provide insights to enhance the organization's security posture through collaboration with peers in both security and operations

You'll need to have:

• Bachelor's degree or four or more years of work experience.

• Industry Knowledge: foundational knowledge of security testing processes or adversarial techniques

• Strong Linux skills

• HTML, CSS, RESTful API and JavaScript

• Python, Bash Scripting and PowerShell Scripting

• AI/ML: RAG, Ollama and Multimodal Ai Systems

• Experience with penetration testing tools such as Burp Suite, Cobalt Strike, Nmap, Metasploit, etc.

• Experience with penetration testing of embedded devices

Even better if you have one or more of the following:

• Network or cybersecurity related professional certifications.

• Familiarity with security challenges in running large enterprise-scale networks, wireless core components, cloud, and edge computing

• Expertise in network engineering, routing, switching, BGP, stateful or stateless firewalling, load balancing, or proxies

• Expertise in telecommunications systems, protocols (SIP, SS7/Diameter, TR-69, etc)

• Expertise in 4G/5G core network architecture, and supporting systems

• Coding and scripting skills (Python, Bash, PowerShell, etc.).

• Deep knowledge of network architecture and cloud environments (e.g., SD-WAN, Kubernetes, OpenStack, OpenShift)

• Soft Skills: Strong communication and teamwork skills

If Verizon and this role sound like a fit for you, we encourage you to apply even if you don't meet every "even better" qualification listed above

Verizon is an equal opportunity employer. We evaluate qualified applicants without regard to veteran status, disability or other legally protected characteristics.

Our benefits are designed to help you move forward in your career, and in areas of your life outside of Verizon. From health and wellness benefit options including: medical, dental, vision, short and long term disability, basic life insurance, supplemental life insurance, AD&D insurance, identity theft protection, pet insurance and group home & auto insurance. We also offer a matched 401(k) savings plan, stock incentive programs, up to 8 company paid holidays per year and up to 6 personal days per year, parental leave, adoption assistance and tuition assistance, plus other incentives, we've got you covered with our award-winning total rewards package. Depending on the role, employees have the opportunity to receive compensation in the form of premium pay such as overtime, shift differential, holiday pay, allowances, etc. Newly hired employees receive up to 15 days of vacation per year, which grows with additional service. For part-timers, your coverage will vary as you may be eligible for some of these benefits depending on your individual circumstances.