Security Engineer 4

Comcast brings together the best in media and technology. We drive innovation to create the world's best entertainment and online experiences. As a Fortune 50 leader, we set the pace in a variety of innovative and fascinating businesses and create career opportunities across a wide range of locations and disciplines. We are at the forefront of change and move at an amazing pace, thanks to our remarkable people, who bring cutting-edge products and services to life for millions of customers every day. If you share in our passion for teamwork, our vision to revolutionize industries and our goal to lead the future in media and technology, we want you to fast-forward your career at Comcast.

Job Summary

"Responsible for contributing towards the build and maintenance of the organization's cyber security systems and infrastructure. Exercises solid knowledge of engineering skills and methodology with a working knowledge of applicable cyber security compliance standards. Conducts security assessments and audits to identify cybersecurity risks within the company's networks, applications and operating systems. Helps secure and protect the Network Infrastructure: Routers, Switches, Optical Devices, L2 Datacenter and cabling, Strand Mounted devices, Secure Routing protocols, DOCSIS plant (CMTS/vCMTS/PON), SDN, best practice device configuration, network automation, monitoring and troubleshooting. Tests company's internal systems to validate security and detect any computer and information security weaknesses. Performs a technical analysis of vulnerabilities and determines the impacts to the organization Reports, tracks and records findings in a comprehensive vulnerability assessment report. Identifies and recommends appropriate action to mitigate vulnerabilities and reduce potential impacts on cybersecurity resources. Applies long-term objectives and plans related to the company's technical vision to daily activity. Applies innovative solutions for cyber engineering developmental problems that are competitive with industry and company standards. Integrates knowledge of business and functional priorities. Acts as a key contributor in a complex and crucial environment. May lead teams or projects and shares expertise.

Job Description

Core Responsibilities:
 

• Hands-on experience with cloud platforms (e.g., AWS, Azure, GCP) and cloud security frameworks.
• Experience conducting threat modelling using industry-standard methodologies (e.g., STRIDE, DREAD, PASTA).
• You’re familiar with relevant security standards and norms as well as security best practices, such as NIST, ISO/IEC 2700x, BSI C5, CIS, CSA, OWASP
• Strong understanding of cybersecurity principles, threat landscapes, and mitigation strategies.
• You’re responsible to advise in the designing of complex security architecture frameworks, standards, and procedures, ideally incorporating current Zero Trust principles and SASE strategies
• Certifications such as CISSP, ISSAP, CISM, GIAC, TOGAF, or CISA will be an asset
• In-depth knowledge of endpoint security, network security, cloud security, application security, and identity & access management in cloud environments distinguishes you
• Exposure to AI technologies and understanding of their security implications is a strong plus. 

Uses advanced engineering skills and knowledge to solve complex development problems and achieve engineering goals.
Applies system architecture, design and specification within engineering projects and initiatives.
Possesses the ability to rapidly grasp new technologies and abstractions and apply them in a meaningful way.
Communicates results of applied work processes and practical application of technical standards into actionable insight.
Recommends new resources to management and utilizes resources to solve complex development problems.
Sets the tone and pace for work performance within project groups and impressionable Engineering staff.
Reports on the progress of all technical projects towards the Company's engineering goals and strategies. Communicates feedback and analyses into actionable insight.
Strives to achieve Company business objectives and engineering objectives in daily activity.
Mentors team members.
Applies background and understanding of Network protocols at all layers, Secure Routing, DNS/DNSSEC, Network Device Security for a broad spectrum of vendors and devices, experience with SDN and automation, understanding and expert ability to troubleshoot network issues and network stacks of different platforms, e.g. TCP tuning, queue management for various OSs, Experience with operations at scale, H/A architecture and strategies.
Consistent exercise of independent judgment and discretion in matters of significance.
Regular, consistent and punctual attendance. Must be able to work nights and weekends, variable schedule(s) as necessary.
Other duties and responsibilities as assigned.

We believe that benefits should connect you to the support you need when it matters most, and should help you care for those who matter most. That's why we provide an array of options, expert guidance and always-on tools that are personalized to meet the needs of your reality—to help support you physically, financially and emotionally through the big milestones and in your everyday life.

Please visit the benefits summary on our careers site for more details.

Education

Bachelor's Degree

While possessing the stated degree is preferred, Comcast also may consider applicants who hold some combination of coursework and experience, or who have extensive related professional experience.

Certifications (if applicable)

Relevant Work Experience

7-10 Years

Comcast is an equal opportunity workplace. We will consider all qualified applicants for employment without regard to race, color, religion, age, sex, sexual orientation, gender identity, national origin, disability, veteran status, genetic information, or any other basis protected by applicable law.