Verizon · 9 hours ago
Network Security Principal Engineer
Southlake, TX
Full-time
Hybrid
Senior Level, Lead/Staff
$120K/yr - $231K/yr
6+ years expVerizon is a leading telecommunications company that empowers people by connecting them to what brings them joy. The Network Security Principal Engineer will play a critical role in securing and hardening Verizon's network, leveraging deep expertise in network security to shape the defense posture and lead incident response activities.
Communications InfrastructureInternetInternet of ThingsMobileTelecommunications
Responsibilities
Act as the security subject matter expert in network design reviews, ensuring that all network assets meet stringent carrier-grade security standards
Drive security architecture, lead policy implementation, manage incident response, and integrate security principles early into the development lifecycle
Analyze network logs and configurations to identify vulnerabilities, recommend & build proactive mitigations
Leverage tools or custom automation, eg, Python, Ansible playbooks to run automated audits against security benchmarks, ensuring security compliance. Develop comprehensive assessment reports and provide recommendations for remediation
Conduct proactive threat hunting across the identity, endpoint, and network telemetry to uncover adversary behavior and reduce dwell time
Build and refine incident playbooks and response runbooks, ensuring repeatable workflows for high-impact scenarios (ransomware, phishing, insider threat, DDoS, etc)
Lead network security incident response activities, including triage, containment, eradication, and recovery for disruptive threats
Execute root cause analysis for incidents, perform regular security control assessments, and lead strategic security solution implementation in a highly scalable environment
Drive continuous improvement of network visibility and telemetry collection to strengthen detection and response capabilities
Communicate clearly and effectively, articulating complex technical concepts to diverse internal and external audiences
Qualification
Required
Bachelor's degree in Computer Science, Cybersecurity, or a related field, or 6 -10+ years of equivalent relevant work or military experience
Deep expertise working in Carrier/Service Provider Network Engineering and Security, specifically securing Leaf-Spine/CLOS topologies (VXLAN, EVPN, MP-BGP) using technologies like Cisco IOS-XR/NX-OS and Nokia SR OS (TiMOS)
Expert-level understanding of routing security, including BGP and IGP security, is mandatory eg: BGP hijacking, Route injection
Hands-on experience working with internet-scale data sets such as Netflow, BGP, DNS, and IDS logs
Fluency in security frameworks, particularly the application of CIS Benchmarks (Level 1 & 2 hardening) and mitigating MITRE ATT&CK Tactics, Techniques, and Procedures (TTPs) on network devices
Solid understanding of network security fundamentals
Expertise in using Python, API, Ansible, or Terraform-type tools to automate and develop custom security 'health checks' on network devices
Demonstrated leadership skills are required, along with the ability to lead and manage cross-functional projects, build consensus, resolve conflict, negotiate, and possess strong analytical and communication skills
Preferred
CCIE (Service Provider or Security) or Nokia NRS II/SRA
Additional certifications such as Juniper JNCIE, F5 BIG-IP Specialist or Expert, CISSP, CCSP, OSCP, GCIH, and Cysa
Practical experience with Splunk, Elasticsearch, or well-recognized SIEM tools for data analysis, dashboard creation, alerting, automation, risk-based alerting, managing notable events, and defining/tuning correlation searches
Ability to run & interpret network scans using tools such as Tenable Nessus, Qualys, Rapid7 InsightVM, or OpenVAS
Knowledge of modern routing security techniques such as RPKI, MacSec, BGPSec, TCP-AO, GTSM, gNMI/gRPC
Knowledge of encryption technologies (IPsec, TLS), UNIX or Linux systems engineering expertise with a variety of variants, and security tools, including Firewalls, VPNs, IDS/IPS, DDoS mitigation, and encryption for data in transit (e.g., IPsec, or TLS) and at rest
Familiarity with Identity and Access Management (IAM) solutions, the system development lifecycle, and mitigating network/system/application layer attacks
Benefits
Medical
Dental
Vision
Short and long term disability
Basic life insurance
Supplemental life insurance
AD&D insurance
Identity theft protection
Pet insurance
Group home & auto insurance
Matched 401(k) savings plan
Up to 8 company paid holidays per year
Up to 6 personal days per year
Paid parental leave
Adoption assistance
Tuition assistance
Company
Verizon
Verizon is a broadband and telecommunications company that provides information and entertainment services.
10001+ employees
H1B Sponsorship
Verizon has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (7)
2024 (3)
2023 (2)
2022 (6)
2021 (6)
2020 (8)
Funding
Current Stage
Public CompanyTotal Funding
$34.39BKey Investors
Maryland Department of Housing and Community DevelopmentU.S. Department of DefenseConnect Maryland
2025-07-30Post Ipo Debt· $2.29B
2024-06-20Grant· $2M
2024-02-26Post Ipo Debt· $1B
Leadership Team
Daniel Schulman
Chief Executive Officer
Santiago Tenorio
SVP & CTO
Recent News
2026-01-24
2026-01-24
Company data provided by crunchbase