Security Engineer 2

Comcast brings together the best in media and technology. We drive innovation to create the world's best entertainment and online experiences. As a Fortune 50 leader, we set the pace in a variety of innovative and fascinating businesses and create career opportunities across a wide range of locations and disciplines. We are at the forefront of change and move at an amazing pace, thanks to our remarkable people, who bring cutting-edge products and services to life for millions of customers every day. If you share in our passion for teamwork, our vision to revolutionize industries and our goal to lead the future in media and technology, we want you to fast-forward your career at Comcast.

Job Summary

"Responsible for contributing towards the build and maintenance of the organization's cyber security systems and infrastructure. Exercises solid knowledge of engineering skills and methodology with a working knowledge of applicable cyber security compliance standards. Conducts security assessments and audits to identify cybersecurity risks within the company's networks, applications and operating systems. Helps secure and protect the Network Infrastructure: Routers, Switches, Optical Devices, L2 Datacenter and cabling, Strand Mounted devices, Secure Routing protocols, DOCSIS plant (CMTS/vCMTS/PON), SDN, best practice device configuration, network automation, monitoring and troubleshooting. Tests company's internal systems to validate security and detect any computer and information security weaknesses. Performs a technical analysis of vulnerabilities and determines the impacts to the organization Reports, tracks and records findings in a comprehensive vulnerability assessment report. Identifies and recommends appropriate action to mitigate vulnerabilities and reduce potential impacts on cybersecurity resources. Applies long-term objectives and plans related to the company's technical vision to daily activity. Applies innovative solutions for cyber engineering developmental problems that are competitive with industry and company standards. Works with moderate guidance in own area of knowledge.

Job Description

Cloud security engineer

In this role

You will be responsible for supporting the day-to-day cloud security operations across AWS, Azure, and GCP, helping to execute and operationalize the organization’s cloud security strategy. This role is focused on monitoring, triage, remediation, and continuous improvement of cloud security posture rather than large-scale platform engineering.

You will work closely with Cloud Security Architects, Security Operations, and Application teams to identify, analyze, and remediate cloud security risks across multiple business units. As part of the Cloud Security Operations function, you will help ensure cloud environments remain secure, compliant, and well-monitored at scale.

What you will do

• Monitor and support cloud security operations across AWS, Azure, and GCP environments
• Partner with Operations, Application, and Platform teams to triage and remediate cloud security findings identified through CSPM tools, cloud-native security services, and internal assessments
• Execute defined security runbooks and operational procedures to address misconfigurations, policy violations, and security risks
• Create, update, and maintain operational documentation related to cloud security controls, processes, and remediation guidance
• Operate and tune Cloud Security Posture Management (CSPM) and related security tooling to improve signal quality, reduce noise, and enhance visibility
• Assist application teams in understanding cloud security findings and applying approved remediation patterns
• Track and report on risk reduction metrics, remediation progress, and recurring issue trends
• Document current-state security posture and contribute to reports that demonstrate improvements over time
• Support audits, risk reviews, and compliance activities by providing evidence and operational context
• Continuously look for opportunities to improve cloud security processes, visibility, and operational efficiency

What you should possess

• Broad foundational knowledge across common security domains, with a strong operational mindset
• Hands-on experience working with cloud security controls and services in one or more public cloud platforms (AWS, Azure, and/or GCP)
• Experience operating in multi-account / multi-project / multi-subscription cloud environments
• Familiarity with cloud identity, networking, logging, monitoring, encryption, and configuration management from an operations perspective
• Working knowledge of governance, compliance, risk management, and audit controls as applied to public cloud platforms
• Experience reviewing, triaging, and remediating findings from CSPM, security scanning, or monitoring tools
• Basic scripting or automation experience (e.g., Python) to assist with operational tasks and data analysis
• Ability to work independently, follow established processes, and execute tasks with minimal oversight
• Strong attention to detail and the ability to handle sensitive information with integrity and sound judgment

What you can expect

• A collaborative and inclusive environment focused on operational excellence
• Exposure to large-scale, real-world multi-cloud environments
• Opportunities to work closely with cloud security architects, engineers, and security operations teams
• Ongoing training and mentoring to build depth in cloud security operations and tooling
• The ability to make a direct, measurable impact on reducing cloud security risk
• A dynamic, fast-changing environment with evolving threats, tools, and processes

What we require

• Bachelor’s degree in information technology, Cyber Security, Computer Engineering, or a related field (advanced degree preferred)
• Minimum 2 years of hands-on experience supporting security operations for public cloud environments
• Experience working with cloud-native security tools, CSPM platforms, or centralized security monitoring solutions
• Familiarity with Service-Oriented Architectures (SOA and REST), Infrastructure as a Service (IaaS), and Platform as a Service (PaaS)
• Experience using scripting languages (e.g., Python) and modern tools such as Git, CI/CD tooling, and issue-tracking systems
• Relevant cybersecurity or cloud certifications (AWS, Azure, GCP, CISSP, CISM, CISA, CCSP, GIAC) are highly preferred

We believe that benefits should connect you to the support you need when it matters most, and should help you care for those who matter most. That's why we provide an array of options, expert guidance and always-on tools that are personalized to meet the needs of your reality—to help support you physically, financially and emotionally through the big milestones and in your everyday life.

Please visit the benefits summary on our careers site for more details.

Education

Bachelor's Degree

While possessing the stated degree is preferred, Comcast also may consider applicants who hold some combination of coursework and experience, or who have extensive related professional experience.

Certifications (if applicable)

Relevant Work Experience

2-5 Years

Comcast is an equal opportunity workplace. We will consider all qualified applicants for employment without regard to race, color, religion, age, sex, sexual orientation, gender identity, national origin, disability, veteran status, genetic information, or any other basis protected by applicable law.